Introduction

F* (pronounced F star) is an ML-like functional programming language aimed at program verification. Its type system includes polymorphism, dependent types, monadic effects, refinement types, and a weakest precondition calculus. Together, these features allow expressing precise and compact specifications for programs, including functional correctness properties. The F* type-checker aims to prove that programs meet their specifications using a combination of SMT solving and manual proofs. Programs written in F* can be translated to OCaml or F# for execution.

The latest version of F* is written entirely in F*, and bootstraps in OCaml and F#. It is open source and under active development on GitHub. A detailed description of this new F* version is available in a POPL 2016 paper. You can learn more about F* by following the online tutorial. Our recent ML workshop and HOPE talks on F* are available on YouTube.

Previous versions of F* could also be translated to JavaScript. We have used these previous versions in a number of projects, ranging from verifying implementations of cryptographic constructions and protocols, implementations of web browser extensions, formalizing the semantics of other languages (including JavaScript and a compiler from a subset of F* to JavaScript, and TS*, a secure subset of TypeScript), and even certifying the correctness of the core of F* type-checker itself.

Download

The sources of F* are hosted on GitHub. Binary packages are available for multiple platforms.

License

F* is distributed under the Apache 2.0 license.

F* Tutorial

Click the image below to start the F* tutorial.

Support

F* is a state-of-the-art research project under active development; as such, it contains a number of known bugs.

If you encounter a problem with F*, we encourage you to report it to the GitHub issue tracker. Please understand that we may not have the necessary manpower to address new feature requests - as an open source project, we welcome your contributions to help improve F*.

People

F* is a joint project between MSR Redmond, MSR Cambridge, the MSR-INRIA joint center, and INRIA. We have had many interns and collaborators from other institutions work on F* as well.

Current team

Karthikeyan Bhargavan (INRIA)
Antoine Delignat-Lavaud (INRIA and MSR)
Cédric Fournet (MSR Cambridge)
Cătălin Hriţcu (INRIA)
Chantal Keller (Université Paris-Sud)

Aseem Rastogi (University of Maryland)
Nikhil Swamy (MSR Redmond)
Santiago Zanella-Béguelin (MSR Cambridge)
Jean-Karim Zinzindohoue (INRIA)

Past contributors

Abhishek Anand (Cornell)
Juan Chen (MSR Redmond)

Simon Forest (INRIA and ENS Paris)
Pierre-Yves Strub (IMDEA)

Papers

9 results

2016
[9]	Dependent Types and Multi-Monadic Effects in F* (Nikhil Swamy, Cătălin Hriţcu, Chantal Keller, Aseem Rastogi, Antoine Delignat-Lavaud, Simon Forest, Karthikeyan Bhargavan, Cédric Fournet, Pierre-Yves Strub, Markulf Kohlweiss, Jean-Karim Zinzindohoue, Santiago Zanella-Béguelin), In 43nd ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages, 2016. [bibtex] [pdf]
2015
[8]	Wys*: A Verified Language Extension for Secure Multi-party Computations (Aseem Rastogi, Nikhil Swamy, and Michael Hicks), 2015. [bibtex] [pdf]
2014
[7]	Gradual typing embedded securely in JavaScript (Nikhil Swamy, Cédric Fournet, Aseem Rastogi, Karthikeyan Bhargavan, Juan Chen, Pierre-Yves Strub, Gavin M. Bierman), In The 41st Annual ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages (Suresh Jagannathan, Peter Sewell, eds.), ACM, 2014. [bibtex] [pdf] [doi]
[6]	Probabilistic relational verification for cryptographic implementations (Gilles Barthe, Cédric Fournet, Benjamin Grégoire, Pierre-Yves Strub, Nikhil Swamy, Santiago Zanella Béguelin), In The 41st Annual ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages (Suresh Jagannathan, Peter Sewell, eds.), ACM, 2014. [bibtex] [pdf] [doi]
2013
[5]	Fully Abstract Compilation to JavaScript (Cédric Fournet, Nikhil Swamy, Juan Chen, Pierre-Evariste Dagand, Pierre-Yves Strub, Benjamin Livshits), In 40th ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages, 2013. [bibtex] [pdf]
[4]	Verifying Higher-order Programs with the Dijkstra Monad (Nikhil Swamy, Joel Weinberger, Cole Schlesinger, Juan Chen, Benjamin Livshits), In Proceedings of the 34th annual ACM SIGPLAN conference on Programming Language Design and Implementation, 2013. [bibtex] [pdf]
[3]	Secure distributed programming with value-dependent types (Nikhil Swamy, Juan Chen, Cédric Fournet, Pierre-Yves Strub, Karthikeyan Bhargavan, Jean Yang), In J. Funct. Program., volume 23, 2013. [bibtex] [pdf]
2012
[2]	Self-Certification: Bootstrapping Certified Typecheckers in F* with Coq (Pierre-Yves Strub, Nikhil Swamy, Cedric Fournet, Juan Chen), In Proceedings of the 39th ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages, 2012. [bibtex] [pdf]
2011
[1]	Secure distributed programming with value-dependent types (Nikhil Swamy, Juan Chen, Cédric Fournet, Pierre-Yves Strub, Karthikeyan Bhargavan, Jean Yang), In Proceeding of the 16th ACM SIGPLAN international conference on Functional Programming (Manuel M. T. Chakravarty, Zhenjiang Hu, Olivier Danvy, eds.), ACM, 2011. [bibtex] [pdf] [doi]

Talks

F* tutorial
- Recent: Commercial Users of Functional Programming (CUFP) (2015-09-04)
- Symposium on Principles of Programming Languages (POPL) (2015-01-13): slides
- The Joint EasyCrypt-F*-CryptoVerif School 2014 (2014-11-26 and 27): slides and other materials
Recent: Full dependency and user-defined effects in F* at ML Workshop 2015 (2015-09-03): slides, video
Recent: Dependent types, effects, and efficient verification conditions in F* at HOPE 2015 (2015-08-30): video
Type Systems for Security Verification, Lecture, Saarland University, 2015-03-16 to 27