A prototype tool for developing programs by stepwise refinement based on the PVS proof assistant

developed by Jens Knappmann

Requirements

PVS alpha-plus with Allegro-Lisp (see SRI's formal methods page)
Tcl/Tk 7.4/4.0 or higher (see Sun's Tcl/Tk page)
much RAM and much CPU speed (required by PVS anyway ;-)
1.8 MB of free disk space for the tool, 1.6 MB for the thesis

Installation

Move the gnuzipped archive reftool.tar.gz to some directory (e.g. ~/reftool). Uncompress the archive using
```
  gzip -d reftool.tar.gz
```
and expand the archive using
```
  tar -xvf reftool.tar 
```
This creates a subdirectory rt-pvs containing the theories and strategies and a subdirectory rt-tcl containing the Tcl/Tk code for the interface. The current directory will contain the Emacs-Lisp file rc_tcl_pipe.el and the README file.
Set the environment variable RC_INTERFACE to the path that contains the interface; if you are using the C-shell and the path is ~/reftool/rt-tcl then add the following to .cshrc:
```
  setenv RC_INTERFACE ~/reftool/rt-tcl 
```
Move the Emacs-Lisp file rc_tcl_pipe.el to some directory (e.g. ~/elisp) and add the following to .pvsemacs:
```
  (load "rc_tcl_pipe")
```
in case this file isn't found, insert the following line to .pvsemacs before loading rc_tcl_pipe
```
  (setq load-path (cons (expand-file-name "~/elisp") load-path))
```

The file rc_tcl_pipe.el contains the definition of an Emacs-Lisp function x-show-ref-prog used for starting the user interface of our refinement tool from within Emacs. This function as well as the user interface uses the environment variable RC_INTERFACE to locate the interface code.

Checking whether the installed tool works

Start up PVS and change the context to the directory rt-pvs created in step 1 above.

Open the file rc_bag_ex.pvs which contains an example specification.

Start the prove-checker for the specification spec2. Do not rerun the proof. When starting the prover PVS should report that it defines several strategies.

In the initial goal do a (SKOSIMP).

Now start the user interface by

  M-x x-show-ref-prog

A separate window with title `refinement tool' should appear. If this does not work look at buffer if-buffer for error-messages. Check if Tcl/Tk (versions 7.4/4.0 or higher) is installed on your system and make sure that the environment variable RC_INTERFACE is set properly.

To check the Tcl version enter the unix command tclsh in a shell and enter puts $tcl_version at the %-prompt of Tcl; leave Tcl with exit; this should look like

  sokrates{jkm} tclsh 
  % puts $tcl_version
  7.4
  % exit
  sokrates{jkm}

where the unix shell prompt in this case is sokrates{jkm}. The Tk-version can be checked similarly:

  sokrates{jkm} wish
  % puts $tk_version
  4.0
  % exit
  sokrates{jkm}

If the user interface is displayed you can click onto the button `From PVS' in the lower left corner of the window. This should insert two prover commands into buffer *pvs* and execute them. After some seconds the upper text window labeled `Current Program' should contain the following:

PROGRAM
    VAR
        l : list[real] ;
        av : real
BEGIN
    IF cons?(l)
    THEN
        { cons?(l) } av := mean(l)
    ELSE
        SKIP
    END-IF
END

If all this works properly, you have installed the tool successfully! Use the save-context command of PVS to create the .bin files. Otherwise PVS type-checks all the theories whenever invoking the prover.

Using the tool

The tool is documented in my master thesis. (Click here to download the gnuzipped postscript file, 280kB.)

Support

Unfortunately, I will leave university soon and will not be able to provide additional support. Simple questions may be answered by Kai Engelhardt. Check out the web page on PVS usage at the software technology chair in Kiel.

Maintained by: Kai Engelhardt

Last modified: Mon Nov 11 16:57:22 1996