CoreTrace · SizzleUnrlsd · Jan 30, 2026 · Jan 30, 2026 · Jan 30, 2026 · Jan 30, 2026
diff --git a/.clang-format b/.clang-format
@@ -0,0 +1,12 @@
+BasedOnStyle: LLVM
+Standard: c++17
+IndentWidth: 4
+TabWidth: 4
+UseTab: Never
+BreakBeforeBraces: Allman
+AllowShortFunctionsOnASingleLine: Empty
+ColumnLimit: 100
+PointerAlignment: Left
+NamespaceIndentation: All
+SortIncludes: Never
+ReflowComments: false
diff --git a/.github/workflows/clang-format.yml b/.github/workflows/clang-format.yml
@@ -0,0 +1,22 @@
+name: clang-format
+
+on:
+  push:
+    branches: [main, master]
+  pull_request:
+
+jobs:
+  format-check:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Install clang-format 17
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y clang-format-17
+          sudo update-alternatives --install /usr/bin/clang-format clang-format /usr/bin/clang-format-17 100
+
+      - name: Run format-check
+        run: ./scripts/format-check.sh
diff --git a/CMakeLists.txt b/CMakeLists.txt
@@ -126,3 +126,16 @@ if(BUILD_CLI)
         # il est déjà dans la lib
     )
 endif()
+
+# ============
+#  FORMATTING
+# ============
+add_custom_target(format
+  COMMAND "${CMAKE_CURRENT_SOURCE_DIR}/scripts/format.sh"
+  WORKING_DIRECTORY "${CMAKE_CURRENT_SOURCE_DIR}"
+  COMMENT "Run clang-format on source files")
+
+add_custom_target(format-check
+  COMMAND "${CMAKE_CURRENT_SOURCE_DIR}/scripts/format-check.sh"
+  WORKING_DIRECTORY "${CMAKE_CURRENT_SOURCE_DIR}"
+  COMMENT "Verify clang-format compliance")
diff --git a/README.md b/README.md
@@ -6,6 +6,14 @@
 ./build.sh
 ```
 
+### Code style (clang-format)
+
+- Version cible : `clang-format` 17 (utilisée dans la CI).
+- Formater localement : `./scripts/format.sh`
+- Vérifier sans modifier : `./scripts/format-check.sh`
+- CMake : `cmake --build build --target format` ou `--target format-check`
+- CI : le job GitHub Actions `clang-format` échoue si un fichier n’est pas formaté.
+
 #### CORETRACE-STACK-USAGE CLI
 
 ```zsh

diff --git a/include/StackUsageAnalyzer.hpp b/include/StackUsageAnalyzer.hpp
@@ -13,181 +13,162 @@ namespace llvm
     class Module;
     class LLVMContext;
     class SMDiagnostic;
-}
+} // namespace llvm
 
 namespace ctrace::stack
 {
 
-using StackSize = std::uint64_t;
+    using StackSize = std::uint64_t;
 
-enum class AnalysisMode
-{
-    IR,
-    ABI
-};
+    enum class AnalysisMode
+    {
+        IR,
+        ABI
+    };
 
-// Configuration de l'analyse (mode + limite de stack)
-struct AnalysisConfig
-{
-    AnalysisMode mode       = AnalysisMode::IR;
-    StackSize    stackLimit = 8ull * 1024ull * 1024ull; // 8 MiB par défaut
-    bool quiet              = false;
-    bool warningsOnly       = false;
-};
-
-// Résultat par fonction
-struct FunctionResult
-{
-    std::string name;
-    StackSize   localStack = 0;   // taille frame locale (suivant le mode)
-    StackSize   maxStack   = 0;   // max stack incluant les callees
-    bool        localStackUnknown = false; // taille locale inconnue (alloca dynamique)
-    bool        maxStackUnknown   = false; // max stack inconnue (propagée via appels)
-    bool        hasDynamicAlloca  = false; // alloca dynamique détectée dans la fonction
-
-    bool isRecursive              = false; // dans un cycle F <-> G ...
-    bool hasInfiniteSelfRecursion = false; // heuristique DominatorTree
-    bool exceedsLimit             = false; // maxStack > config.stackLimit
-};
-
-/*
+    // Configuration de l'analyse (mode + limite de stack)
+    struct AnalysisConfig
+    {
+        AnalysisMode mode = AnalysisMode::IR;
+        StackSize stackLimit = 8ull * 1024ull * 1024ull; // 8 MiB par défaut
+        bool quiet = false;
+        bool warningsOnly = false;
+    };
+
+    // Résultat par fonction
+    struct FunctionResult
+    {
+        std::string name;
+        StackSize localStack = 0;       // taille frame locale (suivant le mode)
+        StackSize maxStack = 0;         // max stack incluant les callees
+        bool localStackUnknown = false; // taille locale inconnue (alloca dynamique)
+        bool maxStackUnknown = false;   // max stack inconnue (propagée via appels)
+        bool hasDynamicAlloca = false;  // alloca dynamique détectée dans la fonction
+
+        bool isRecursive = false;              // dans un cycle F <-> G ...
+        bool hasInfiniteSelfRecursion = false; // heuristique DominatorTree
+        bool exceedsLimit = false;             // maxStack > config.stackLimit
+    };
+
+    /*
     DiagnosticSeverity EnumTraits specialization
 */
 
-enum class LanguageType
-{
-    Unknown = 0,
-    LLVM_IR = 1,
-    C       = 2,
-    CXX     = 3
-};
-
-template<>
-struct EnumTraits<LanguageType>
-{
-    static constexpr std::array<std::string_view, 4> names = {
-        "UNKNOWN",
-        "LLVM_IR",
-        "C",
-        "CXX"
+    enum class LanguageType
+    {
+        Unknown = 0,
+        LLVM_IR = 1,
+        C = 2,
+        CXX = 3
     };
-};
 
-/*
+    template <> struct EnumTraits<LanguageType>
+    {
+        static constexpr std::array<std::string_view, 4> names = {"UNKNOWN", "LLVM_IR", "C", "CXX"};
+    };
+
+    /*
     DiagnosticSeverity EnumTraits specialization
 */
 
-enum class DiagnosticSeverity
-{
-    Info    = 0,
-    Warning = 1,
-    Error   = 2
-};
+    enum class DiagnosticSeverity
+    {
+        Info = 0,
+        Warning = 1,
+        Error = 2
+    };
 
-template<>
-struct EnumTraits<DiagnosticSeverity>
-{
-    static constexpr std::array<std::string_view, 3> names = {
-        "INFO",
-        "WARNING",
-        "ERROR"
+    template <> struct EnumTraits<DiagnosticSeverity>
+    {
+        static constexpr std::array<std::string_view, 3> names = {"INFO", "WARNING", "ERROR"};
     };
-};
 
-/*
+    /*
     DescriptiveErrorCode EnumTraits specialization
 */
 
-enum class DescriptiveErrorCode
-{
-    None                        = 0,
-    StackBufferOverflow         = 1,
-    NegativeStackIndex          = 2,
-    VLAUsage                    = 3,
-    StackPointerEscape          = 4,
-    MemcpyWithStackDest         = 5,
-    MultipleStoresToStackBuffer = 6,
-    AllocaUserControlled        = 7,
-    AllocaTooLarge              = 8,
-    AllocaUsageWarning          = 9,
-    InvalidBaseReconstruction   = 10,
-    ConstParameterNotModified   = 11
-};
-
-template<>
-struct EnumTraits<DescriptiveErrorCode>
-{
-    static constexpr std::array<std::string_view, 12> names = {
-        "None",
-        "StackBufferOverflow",
-        "NegativeStackIndex",
-        "VLAUsage",
-        "StackPointerEscape",
-        "MemcpyWithStackDest",
-        "MultipleStoresToStackBuffer",
-        "AllocaUserControlled",
-        "AllocaTooLarge",
-        "AllocaUsageWarning",
-        "InvalidBaseReconstruction",
-        "ConstParameterNotModified"
+    enum class DescriptiveErrorCode
+    {
+        None = 0,
+        StackBufferOverflow = 1,
+        NegativeStackIndex = 2,
+        VLAUsage = 3,
+        StackPointerEscape = 4,
+        MemcpyWithStackDest = 5,
+        MultipleStoresToStackBuffer = 6,
+        AllocaUserControlled = 7,
+        AllocaTooLarge = 8,
+        AllocaUsageWarning = 9,
+        InvalidBaseReconstruction = 10,
+        ConstParameterNotModified = 11
     };
-};
 
-/*
+    template <> struct EnumTraits<DescriptiveErrorCode>
+    {
+        static constexpr std::array<std::string_view, 12> names = {"None",
+                                                                   "StackBufferOverflow",
+                                                                   "NegativeStackIndex",
+                                                                   "VLAUsage",
+                                                                   "StackPointerEscape",
+                                                                   "MemcpyWithStackDest",
+                                                                   "MultipleStoresToStackBuffer",
+                                                                   "AllocaUserControlled",
+                                                                   "AllocaTooLarge",
+                                                                   "AllocaUsageWarning",
+                                                                   "InvalidBaseReconstruction",
+                                                                   "ConstParameterNotModified"};
+    };
+
+    /*
     Diagnostic struct
 */
 
-struct Diagnostic
-{
-    std::string funcName;
-    unsigned line                   = 0;
-    unsigned column                 = 0;
-
-    // for SARIF / structured reporting
-    unsigned startLine   = 0;
-    unsigned startColumn = 0;
-    unsigned endLine     = 0;
-    unsigned endColumn   = 0;
-
-    DiagnosticSeverity severity     = DiagnosticSeverity::Warning;
-    DescriptiveErrorCode errCode    = DescriptiveErrorCode::None;
-    std::string ruleId;
-    std::vector<std::string> variableAliasingVec;
-    std::string message;
-};
-
-// Résultat global pour un module
-struct AnalysisResult
-{
-    AnalysisConfig              config;
-    std::vector<FunctionResult> functions;
-    // Human-readable diagnostics (buffer overflows, VLAs, memcpy issues, escapes, etc.)
-    // All messages are formatted and then printed in main().
-    // std::vector<std::string> diagnostics;
-    std::vector<Diagnostic> diagnostics;
-};
-
-// Serialize an AnalysisResult to a simple JSON format (pour CI / GitHub Actions).
-// `inputFile` : chemin du fichier analysé (celui que tu passes à analyzeFile).
-std::string toJson(const AnalysisResult &result,
-                   const std::string &inputFile);
-
-// Serialize an AnalysisResult to SARIF 2.1.0 (compatible GitHub Code Scanning).
-// `inputFile` : chemin du fichier analysé.
-// `toolName` / `toolVersion` : metadata du tool dans le SARIF.
-std::string toSarif(const AnalysisResult &result,
-                    const std::string &inputFile,
-                    const std::string &toolName  = "coretrace-stack-analyzer",
-                    const std::string &toolVersion = "0.1.0");
-
-// Analyse un module déjà chargé (tu peux réutiliser dans d'autres outils)
-AnalysisResult analyzeModule(llvm::Module &mod,
-                             const AnalysisConfig &config);
-
-// Helper pratique : charge un .ll et appelle analyzeModule()
-AnalysisResult analyzeFile(const std::string &filename,
-                           const AnalysisConfig &config,
-                           llvm::LLVMContext &ctx,
-                           llvm::SMDiagnostic &err);
+    struct Diagnostic
+    {
+        std::string funcName;
+        unsigned line = 0;
+        unsigned column = 0;
+
+        // for SARIF / structured reporting
+        unsigned startLine = 0;
+        unsigned startColumn = 0;
+        unsigned endLine = 0;
+        unsigned endColumn = 0;
+
+        DiagnosticSeverity severity = DiagnosticSeverity::Warning;
+        DescriptiveErrorCode errCode = DescriptiveErrorCode::None;
+        std::string ruleId;
+        std::vector<std::string> variableAliasingVec;
+        std::string message;
+    };
+
+    // Résultat global pour un module
+    struct AnalysisResult
+    {
+        AnalysisConfig config;
+        std::vector<FunctionResult> functions;
+        // Human-readable diagnostics (buffer overflows, VLAs, memcpy issues, escapes, etc.)
+        // All messages are formatted and then printed in main().
+        // std::vector<std::string> diagnostics;
+        std::vector<Diagnostic> diagnostics;
+    };
+
+    // Serialize an AnalysisResult to a simple JSON format (pour CI / GitHub Actions).
+    // `inputFile` : chemin du fichier analysé (celui que tu passes à analyzeFile).
+    std::string toJson(const AnalysisResult& result, const std::string& inputFile);
+
+    // Serialize an AnalysisResult to SARIF 2.1.0 (compatible GitHub Code Scanning).
+    // `inputFile` : chemin du fichier analysé.
+    // `toolName` / `toolVersion` : metadata du tool dans le SARIF.
+    std::string toSarif(const AnalysisResult& result, const std::string& inputFile,
+                        const std::string& toolName = "coretrace-stack-analyzer",
+                        const std::string& toolVersion = "0.1.0");
+
+    // Analyse un module déjà chargé (tu peux réutiliser dans d'autres outils)
+    AnalysisResult analyzeModule(llvm::Module& mod, const AnalysisConfig& config);
+
+    // Helper pratique : charge un .ll et appelle analyzeModule()
+    AnalysisResult analyzeFile(const std::string& filename, const AnalysisConfig& config,
+                               llvm::LLVMContext& ctx, llvm::SMDiagnostic& err);
 
 } // namespace ctrace::stack