Salto: Static Analyses for Trustworthy OCaml

camel robot — A painting-style depiction of an armored camel standing in a desert.
(image produced by DALL·E)

The expressive type system of OCaml brings strong static safety guarantees by ensuring data is used in a consistent way by a program. The Salto project aims at providing OCaml programs with additional guarantees, by answering questions such as:

Can a program raise an exception?
Can arithmetic operations overflow?
Are all the array accesses performed within the array bounds?
Can a program break some user-defined invariant or assertion?
Which data might be modified by a program?

Those questions are beyond the scope of the OCaml type system, but are within reach of abstract interpretation-based static analyses.

The goal of the Salto project is to define sound static analyses that help answer the above questions as automatically as possible. The analysis will help a programmer have better confidence in her programs, by bringing increased safety and security guarantees.

News

November 2024: The funding from Inria/Nomadic Labs has ended. These two years have been fruitful, and the funding helped the project make great progress. Great thanks!
The Salto project has received a 1 year funding from the OCaml Software Foundation. Many thanks to the foundation!
October 2024: The article The Salto Project: Static Analysis of OCaml Programs By Abstract Interpretation was accepted for publication in ERCIM News! Special issue on Software Security, number 139.
December 2023: The paper "Detection of Uncaught Exceptions in Functional Programs by Abstract Interpretation" (by Pierre Lermusiaux and Benoît Montagu) has been accepted at ESOP2024!
[ DOI | Extended version | Artifact ]
December 2023: release of salto-IL, the intermediate language that is used by the Salto analyser, and the transformation from the OCaml Typedtree to this language. The intermediate language is still subject to changes, so this should be considered as experimental. Any feedback is welcome!
[ Repository ]
September 2023: research talk on Salto at the ML workshop (co-located with ICFP'23, Seattle)
The Design and Implementation of an Abstract Interpreter for OCaml Programs: A Preliminary Report on the Salto Analyser
[ Extended abstract | Slides | Video ]
November 2022: official start of the project

Contributors

Thomas Jensen, senior researcher at Inria, team Épicure
Thomas Genet, full professor at Université Rennes, team Épicure
Pierre Lermusiaux, research engineer at Inria, team Épicure
Benoît Montagu (lead), researcher at Inria, team Épicure

Former contributors

Tom Goalard, L3 student, ENS Rennes

Funding

The Salto project initially started as a partnership between Nomadic Labs and Inria, and was funded for 2 years by the Tezos Foundation.
Since November 2024, the Salto project was granted a 1 year funding from the OCaml Software Foundation.