Formulog: Datalog for SMT-based static analysis

Aaron Bembenek; Michael Greenberg; Stephen Chong

doi:10.1145/3428209

Formulog: Datalog for SMT-based static analysis

Aaron Bembenek
, Michael Greenberg
, Stephen Chong

Department of Computer Science

Harvard University

Research output: Contribution to journal › Article › peer-review

22 Scopus citations

Abstract

Satisfiability modulo theories (SMT) solving has become a critical part of many static analyses, including symbolic execution, refinement type checking, and model checking. We propose Formulog, a domain-specific language that makes it possible to write a range of SMT-based static analyses in a way that is both close to their formal specifications and amenable to high-level optimizations and efficient evaluation. Formulog extends the logic programming language Datalog with a first-order functional language and mechanisms for representing and reasoning about SMT formulas; a novel type system supports the construction of expressive formulas, while ensuring that neither normal evaluation nor SMT solving goes wrong. Our case studies demonstrate that a range of SMT-based analyses can naturally and concisely be encoded in Formulog, and that - thanks to this encoding - high-level Datalog-style optimizations can be automatically and advantageously applied to these analyses.

Original language	English
Article number	141
Journal	Proceedings of the ACM on Programming Languages
Volume	4
Issue number	OOPSLA
DOIs	https://doi.org/10.1145/3428209
State	Published - 13 Nov 2020

Keywords

Datalog
SMT solving

Access to Document

10.1145/3428209

Cite this

@article{1b41ed7116a6489293b6f3ed9ef7d9a0,

title = "Formulog: Datalog for SMT-based static analysis",

abstract = "Satisfiability modulo theories (SMT) solving has become a critical part of many static analyses, including symbolic execution, refinement type checking, and model checking. We propose Formulog, a domain-specific language that makes it possible to write a range of SMT-based static analyses in a way that is both close to their formal specifications and amenable to high-level optimizations and efficient evaluation. Formulog extends the logic programming language Datalog with a first-order functional language and mechanisms for representing and reasoning about SMT formulas; a novel type system supports the construction of expressive formulas, while ensuring that neither normal evaluation nor SMT solving goes wrong. Our case studies demonstrate that a range of SMT-based analyses can naturally and concisely be encoded in Formulog, and that - thanks to this encoding - high-level Datalog-style optimizations can be automatically and advantageously applied to these analyses.",

keywords = "Datalog, SMT solving",

author = "Aaron Bembenek and Michael Greenberg and Stephen Chong",

note = "Publisher Copyright: {\textcopyright} 2020 Owner/Author.",

year = "2020",

month = nov,

day = "13",

doi = "10.1145/3428209",

language = "English",

volume = "4",

number = "OOPSLA",

}

TY - JOUR

T1 - Formulog

T2 - Datalog for SMT-based static analysis

AU - Bembenek, Aaron

AU - Greenberg, Michael

AU - Chong, Stephen

PY - 2020/11/13

Y1 - 2020/11/13

N2 - Satisfiability modulo theories (SMT) solving has become a critical part of many static analyses, including symbolic execution, refinement type checking, and model checking. We propose Formulog, a domain-specific language that makes it possible to write a range of SMT-based static analyses in a way that is both close to their formal specifications and amenable to high-level optimizations and efficient evaluation. Formulog extends the logic programming language Datalog with a first-order functional language and mechanisms for representing and reasoning about SMT formulas; a novel type system supports the construction of expressive formulas, while ensuring that neither normal evaluation nor SMT solving goes wrong. Our case studies demonstrate that a range of SMT-based analyses can naturally and concisely be encoded in Formulog, and that - thanks to this encoding - high-level Datalog-style optimizations can be automatically and advantageously applied to these analyses.

AB - Satisfiability modulo theories (SMT) solving has become a critical part of many static analyses, including symbolic execution, refinement type checking, and model checking. We propose Formulog, a domain-specific language that makes it possible to write a range of SMT-based static analyses in a way that is both close to their formal specifications and amenable to high-level optimizations and efficient evaluation. Formulog extends the logic programming language Datalog with a first-order functional language and mechanisms for representing and reasoning about SMT formulas; a novel type system supports the construction of expressive formulas, while ensuring that neither normal evaluation nor SMT solving goes wrong. Our case studies demonstrate that a range of SMT-based analyses can naturally and concisely be encoded in Formulog, and that - thanks to this encoding - high-level Datalog-style optimizations can be automatically and advantageously applied to these analyses.

KW - Datalog

KW - SMT solving

UR - https://www.scopus.com/pages/publications/85097575819

UR - https://www.scopus.com/pages/publications/85097575819#tab=citedBy

U2 - 10.1145/3428209

DO - 10.1145/3428209

M3 - Article

AN - SCOPUS:85097575819

VL - 4

JO - Proceedings of the ACM on Programming Languages

JF - Proceedings of the ACM on Programming Languages

IS - OOPSLA

M1 - 141

ER -

Formulog: Datalog for SMT-based static analysis

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this