A wrapper around an SMT Lib 2(.5)-compliant SMT solver.

Solvers run in a separate process and communication is achieved via system pipes.

This library does not have a structure for S-expressions. It should be provided by the user, as well as the relevant printing and parsing functions.

async versus sync

The functions corresponding to SMT Lib 2 queries come in two flavors, asynchronous and synchronous.

Synchronous means that the query is printed on the solver's stdin, and the result is parsed right away. Users get control back whenever the solver is done working and parsing is done. In other words, synchronous queries are blocking.

Asynchronous means that after the query is printed and control is given back to the user. To retrieve the result, users must call the relevant parse_... function. For instance, parse_sat for check_sat. In other words, asynchronous queries are non-blocking. Not that parse_... functions are blocking though.

The example below uses synchronous queries.


The worflow is introduced below on a running example. It uses a structure for S-expressions representing the unrolling of some predicates over discrete time-steps.

N.B. this example is very naïve and should not be used as is.

S-expressions are defined as follows:

/** Under the hood a symbol is a string. */
type Sym = String ;

/** A variable wraps a symbol. */
enum Var {
  /** Variable constant in time (Non-Stateful Var: SVar). */
  /** State variable in the current step. */
  /** State variable in the next step. */

/** A constant. */
enum Const {
  /** Boolean constant. */
  /** Integer constant. */
  /** Rational constant. */

/** An S-expression. */
enum SExpr {
  /** A variable. */
  /** A constant. */
  /** An application of function symbol. */
  App(Sym, Vec<SExpr>),

We then use Offset to specify what the index of the current and next step are:

/** An offset gives the index of current and next step. */
struct Offset(usize, usize) ;

/** A symbol is a variable and an offset. */
struct Symbol<'a, 'b>(& 'a Var, & 'b Offset) ;

/** An unrolled SExpr. */
struct Unrolled<'a, 'b>(& 'a SExpr, & 'b Offset) ;

Since the structure for S-expressions is provided by the users, they also need to provide functions to print it in SMT Lib 2.

To use all SMT Lib 2 commands in a type-safe manner, the library requires printers over

  • sorts: Sort2Smt trait (e.g. for declare-fun),
  • symbols: Sym2Smt trait (e.g. for declare-fun),
  • expressions: Expr2Smt trait (e.g. for assert).

The last two are parameterized by a Type for the information at print time. Commands using the user's structure for printing are enriched with a field to pass information down to the printer.

For convenience, all these traits are implemented for & str. This is useful for testing and maybe very simple application.

In our example, printing a symbol / an expression requires an offset. The idea is that Symbol (Unrolled) will implement Sym2Smt (Expr2Smt). For sorts we will use & str for simplicity.

We begin by writing printing functions taking an offset for our structure, as well as simple helper funtions:

extern crate rsmt2 ;

use std::io::Write ;

use rsmt2::* ;

use Var::* ;
use Const::* ;
use SExpr::* ;

impl Var {
  pub fn nsvar(s: & str) -> Self { NSVar(s.to_string()) }
  pub fn svar0(s: & str) -> Self { SVar0(s.to_string()) }
  pub fn svar1(s: & str) -> Self { SVar1(s.to_string()) }
  /** Given an offset, a variable can be printed in SMT Lib 2. */
  pub fn to_smt2(& self, writer: & mut Write, off: & Offset) -> IoResUnit {
    match * self {
      NSVar(ref sym) => write!(writer, "|{}|", sym),
      /** SVar at 0, we use the index of the current step. */
      SVar0(ref sym) => write!(writer, "|{}@{}|", sym, off.0),
      /** SVar at 1, we use the index of the next step. */
      SVar1(ref sym) => write!(writer, "|{}@{}|", sym, off.1),
  /** Given an offset, a variable can become a Symbol. */
  pub fn to_sym<'a, 'b>(& 'a self, off: & 'b Offset) -> Symbol<'a, 'b> {
    Symbol(self, off)

impl Const {
  /** A constant can be printed in SMT Lib 2. */
  pub fn to_smt2(& self, writer: & mut Write) -> IoResUnit {
    match * self {
      BConst(ref b) => write!(writer, "{}", b),
      IConst(ref i) => write!(writer, "{}", i),
      RConst(ref num, ref den) => write!(writer, "(/ {} {})", num, den),

impl SExpr {
  pub fn app(sym: & str, args: Vec<SExpr>) -> Self {
    App(sym.to_string(), args)
  /** Given an offset, an S-expression can be printed in SMT Lib 2. */
  pub fn to_smt2(& self, writer: & mut Write, off: & Offset) -> IoResUnit {
    match * self {
      Id(ref var) => var.to_smt2(writer, off),
      Val(ref cst) => cst.to_smt2(writer),
      App(ref sym, ref args) => {
        try!( write!(writer, "({}", sym) ) ;
        for ref arg in args {
          try!( write!(writer, " ") ) ;
          try!( arg.to_smt2(writer, off) )
        } ;
        write!(writer, ")")
  /** Given an offset, an S-expression can be unrolled. */
  pub fn unroll<'a, 'b>(& 'a self, off: & 'b Offset) -> Unrolled<'a,'b> {
    Unrolled(self, off)

It is now easy to implement Sym2Smt and Expr2Smt:

/** A symbol can be printed in SMT Lib 2. */
impl<'a, 'b> Sym2Smt<()> for Symbol<'a,'b> {
  fn sym_to_smt2(& self, writer: & mut Write, _: & ()) -> IoResUnit {
    self.0.to_smt2(writer, self.1)

/** An unrolled SExpr can be printed in SMT Lib 2. */
impl<'a, 'b> Expr2Smt<()> for Unrolled<'a,'b> {
  fn expr_to_smt2(& self, writer: & mut Write, _: & ()) -> IoResUnit {
    self.0.to_smt2(writer, self.1)

Before writing the parsers...

...we can actually already test our structure. To create a solver, one must give an implementation of ParseSmt2. But we can define a dummy parser as long as we don't actually need to parse anything specific to our structure.

That is, as long as we only use the check-sat and check-sat-assuming queries. On the other hand, we will not be able to call, say, get-model for now because then we would need to provide a parser for symbols and values.

So, we define a dummy parser for now and perform a check-sat:

/* Parser library. */
extern crate nom ;

use nom::IResult ;

/** Dummy parser. */
struct Parser ;
impl ParseSmt2 for Parser {
  type Ident = Var ;
  type Value = Const ;
  type Expr = SExpr ;
  type Proof = () ;
  type I = () ;

  fn parse_ident<'a>(
    & self, array: & 'a [u8]
  ) -> IResult<& 'a [u8], Var> {
    panic!("not implemented")
  fn parse_value<'a>(
    & self, array: & 'a [u8]
  ) -> IResult<& 'a [u8], Const> {
    panic!("not implemented")
  fn parse_expr<'a>(
    & self, array: & 'a [u8], _: & ()
  ) -> IResult<& 'a [u8], SExpr> {
    panic!("not implemented")
  fn parse_proof<'a>(
    & self, _: & 'a [u8]
  ) -> IResult<& 'a [u8], ()> {
    panic!("not implemented")

/** Convenience macro. */
macro_rules! smtry {
  ($e:expr, failwith $( $msg:expr ),+) => (
    match $e {
      Ok(something) => something,
      Err(e) => panic!( $($msg),+ , e)
  ) ;

fn main() {
  use rsmt2::* ;

  let conf = SolverConf::z3() ;

  let mut kid = match Kid::mk(conf) {
    Ok(kid) => kid,
    Err(e) => panic!("Could not spawn solver kid: {:?}", e)
  } ;


    let mut solver = smtry!(
      solver(& mut kid, Parser),
      failwith "could not create solver: {:?}"
    ) ;

    let nsv = Var::nsvar("non stateful var") ;
    let s_nsv = Id(nsv.clone()) ;
    let sv_0 = Var::svar0("stateful var") ;
    let s_sv_0 = Id(sv_0.clone()) ;
    let app2 = SExpr::app("not", vec![ s_sv_0.clone() ]) ;
    let app1 = SExpr::app("and", vec![ s_nsv.clone(), app2.clone() ]) ;
    let offset1 = Offset(0,1) ;

    let sym = nsv.to_sym(& offset1) ;
      solver.declare_fun(& sym, &[], & "bool", & ()),
      failwith "declaration failed: {:?}"
    ) ;

    let sym = sv_0.to_sym(& offset1) ;
      solver.declare_fun(& sym, &[], & "bool", & ()),
      failwith "declaration failed: {:?}"
    ) ;

    let expr = app1.unroll(& offset1) ;
      solver.assert(& expr, & ()),
      failwith "assert failed: {:?}"
    ) ;

    match smtry!(
      failwith "error in checksat: {:?}"
    ) {
      true => (),
      false => panic!("expected sat, got unsat"),


    failwith "error while killing solver: {:?}"
  ) ;


This library uses the nom parser combinator library. Users can use whatever they want as long as they implement the ParseSmt2 trait.

Note that there is no reason a priori for the structures returned by the parsers to be the same as the one used for printing. In our running example, parsing a variable with an offset of 6 (in a get-values for example) as an SExpr is ambiguous. Is 6 the index of the current or next step? What's the other index?

For this simple example however, we will use the same structures. Despite the fact that it makes little sense.

The implementation of the parser trait follows, as well as an example using get-model and get-values:

/* Parser library. */
extern crate nom ;
extern crate rsmt2 ;

use std::io::Write ;
use std::str::FromStr ;
use std::str ;

use nom::{ IResult, digit, multispace } ;

use rsmt2::* ;
/** Helper function, from `& [u8]` to `str`. */
fn to_str(bytes: & [u8]) -> & str {
  match str::from_utf8(bytes) {
    Ok(string) => string,
    Err(e) => panic!("can't convert {:?} to string ({:?})", bytes, e),

/** Helper function, from `& [u8]` to `String`. */
fn to_string(bytes: & [u8]) -> String {

/** Helper function, from `& [u8]` to `usize`. */
fn to_usize(bytes: & [u8]) -> usize {
  let string = to_str(bytes) ;
  match FromStr::from_str( string ) {
    Ok(int) => int,
    Err(e) => panic!("can't convert {} to usize ({:?})", string, e),

/** Parser for variables. */
named!{ var<Var>,
  // Pipe-delimited symbol.
        // State variable.
          id: is_not!("@|") ~
          char!('@') ~
          off: one_of!("01"),
          || match off {
            '0' => SVar0(to_string(id)),
            '1' => SVar1(to_string(id)),
            _ => unreachable!(),
        ) |
        // Non-stateful variable.
        map!( is_not!("|"), |id| NSVar(to_string(id)) )

/** Parser for constants. */
named!{ cst<Const>,
      // Boolean.
          map!( tag!("true"), |_| true ) | map!( tag!("false"), |_| false )
        |b| BConst(b)
      ) |
      // Integer.
        digit, |i| IConst( to_usize(i) )
      ) |
      // Rational.
        char!('(') ~
        opt!(multispace) ~
        char!('/') ~
        multispace ~
        num: digit ~
        multispace ~
        den: digit ~
        opt!(multispace) ~
        || RConst(to_usize(num), to_usize(den))

/** Parser for function symbol applications. */
named!{ app<SExpr>,
      // Open paren.
      char!('(') ~
      opt!(multispace) ~
      // A symbol.
      sym: alt!(
        map!( one_of!("+/-*<>"), |c: char| c.to_string() ) |
            tag!("<=") |
            tag!(">=") |
            tag!("and") |
            tag!("or") |
          |s| to_string(s)
      ) ~
      multispace ~
      // Some arguments (`s_expr` is defined below).
      args: separated_list!(
        multispace, s_expr
      ) ~
      opt!(multispace) ~
      || App(sym, args)

/** Parser for S-expressions. */
named!{ s_expr<SExpr>,
    map!( var, |v| Id(v) ) |
    map!( cst, |c| Val(c) ) |

/** Parser structure for S-expressions. */
struct Parser ;
impl ParseSmt2 for Parser {
  type Ident = Var ;
  type Value = Const ;
  type Expr = SExpr ;
  type Proof = () ;
  type I = () ;

  fn parse_ident<'a>(
    & self, array: & 'a [u8]
  ) -> IResult<& 'a [u8], Var> {
  fn parse_value<'a>(
    & self, array: & 'a [u8]
  ) -> IResult<& 'a [u8], Const> {
  fn parse_expr<'a>(
    & self, array: & 'a [u8], _ : & ()
  ) -> IResult<& 'a [u8], SExpr> {
  fn parse_proof<'a>(
    & self, _: & 'a [u8]
  ) -> IResult<& 'a [u8], ()> {
    panic!("proof parsing is not supported")

/** Convenience macro. */
macro_rules! smtry {
  ($e:expr, failwith $( $msg:expr ),+) => (
    match $e {
      Ok(something) => something,
      Err(e) => panic!( $($msg),+ , e)
  ) ;

fn main() {
  use rsmt2::* ;

  let conf = SolverConf::z3() ;

  let mut kid = match Kid::mk(conf) {
    Ok(kid) => kid,
    Err(e) => panic!("Could not spawn solver kid: {:?}", e)
  } ;


    let mut solver = smtry!(
      solver(& mut kid, Parser),
      failwith "could not create solver: {:?}"
    ) ;

    let nsv = Var::nsvar("non stateful var") ;
    let s_nsv = Id(nsv.clone()) ;
    let sv_0 = Var::svar0("stateful var") ;
    let s_sv_0 = Id(sv_0.clone()) ;
    let app2 = SExpr::app("not", vec![ s_sv_0.clone() ]) ;
    let app1 = SExpr::app("and", vec![ s_nsv.clone(), app2.clone() ]) ;
    let offset1 = Offset(0,1) ;

    let sym = nsv.to_sym(& offset1) ;
      solver.declare_fun(& sym, &[], & "bool", & ()),
      failwith "declaration failed: {:?}"
    ) ;

    let sym = sv_0.to_sym(& offset1) ;
      solver.declare_fun(& sym, &[], & "bool", & ()),
      failwith "declaration failed: {:?}"
    ) ;

    let expr = app1.unroll(& offset1) ;
      solver.assert(& expr, & ()),
      failwith "assert failed: {:?}"
    ) ;

    match smtry!(
      failwith "error in checksat: {:?}"
    ) {
      true => println!("> sat"),
      false => panic!("expected sat, got unsat"),
    } ;

    let model = smtry!(
      failwith "could not retrieve model: {:?}"
    ) ;
    for (id,v) in model.into_iter() {
      let res = if id == sv_0 {
      } else {
        if id == nsv { BConst(true) } else {
          panic!("expected {:?} or {:?}, got {:?}", sv_0, nsv, id)
      } ;
      if v != res {
        panic!("expected {:?} for {:?}, got {:?}", res, id, v)
    } ;

    let values = smtry!(
        & [ app1.unroll(& offset1), app2.unroll(& offset1)], & ()
      failwith "error in get-values: {:?}"
    ) ;
    for (e,v) in values.into_iter() {
      let res = if e == app1 || e == app2 { BConst(true) } else {
        panic!("expected {:?} or {:?}, got {:?}", app1, app2, e)
      } ;
      if v != res {
        panic!("expected {:?} for {:?}, got {:?}", res, e, v)


    failwith "error while killing solver: {:?}"
  ) ;


About the example

This example is part of the tests of this library. It is presented incrementally for readability, but you can access the full code in the tests directory of the repo. It also showcases asynchronous queries.



