This clang analyzer checker uses taint analysis to look for integer overflows in various kernels. You can read about it here.
Run FreeBSD/Linux/XNU/Android builds using the same commands as here but replace the enabled checker with
alpha.security.taint. This is not production-worthy code, there is a lot of hacking around ConstraintManager limitations.
To run tests, run