• Top
    • Documentation
    • Books
    • Boolean-reasoning
    • Projects
      • Apt
      • Acre
      • Milawa
      • Smtlink
      • Aleobft
        • Aleobft-static
        • Aleobft-dynamic
          • Correctness
          • Definition
            • Initialization
            • Transitions
              • Transitions-receive-certificate
              • Transitions-create-certificate
              • Dags
              • Transitions-advance-round
              • Events-next
              • Events-possiblep
              • Event-next
                • Elections
                • Transitions-commit-anchors
                • Transitions-store-certificate
                • Event-possiblep
                • Anchors
                • Blockchains
                • Transitions-timer-expires
              • States
              • Events
          • Aleobft-stake2
          • Aleobft-stake
          • Library-extensions
        • Abnf
        • Vwsim
        • Isar
        • Wp-gen
        • Dimacs-reader
        • Pfcs
        • Legacy-defrstobj
        • Proof-checker-array
        • Soft
        • Farray
        • Rp-rewriter
        • Instant-runoff-voting
        • Imp-language
        • Sidekick
        • Leftist-trees
        • C
        • Java
        • Taspi
        • Bitcoin
        • Des
        • Ethereum
        • X86isa
        • Sha-2
        • Yul
        • Riscv
        • Zcash
        • Proof-checker-itp13
        • Regex
        • ACL2-programming-language
        • Json
        • Jfkr
        • Equational
        • Cryptography
        • Poseidon
        • Where-do-i-place-my-book
        • Bigmems
        • Builtins
        • Axe
        • Execloader
        • Solidity
        • Leo
        • Paco
        • Concurrent-programs
      • Debugging
      • Std
      • Proof-automation
      • Macro-libraries
      • ACL2
      • Interfacing-tools
      • Hardware-verification
      • Software-verification
      • Math
      • Testing-utilities
    • Transitions

    Event-next

    New state resulting from an event.

    Signature
    (event-next event systate) → new-systate
    Arguments
    event — Guard (eventp event).
    systate — Guard (system-statep systate).
    Returns
    new-systate — Type (system-statep new-systate).

    Based on the event, we use the appropriate function.

    Definitions and Theorems

    Function: event-next

    (defun event-next (event systate)
 (declare (xargs :guard (and (eventp event)
                             (system-statep systate))))
 (declare (xargs :guard (event-possiblep event systate)))
 (let ((__function__ 'event-next))
  (declare (ignorable __function__))
  (event-case
      event
      :create-certificate
      (create-certificate-next event.certificate systate)
      :receive-certificate
      (receive-certificate-next event.message systate)
      :store-certificate
      (store-certificate-next event.validator
                              event.certificate systate)
      :advance-round (advance-round-next event.validator systate)
      :commit-anchors (commit-anchors-next event.validator systate)
      :timer-expires (timer-expires-next event.validator systate))))

    Theorem: system-statep-of-event-next

    (defthm system-statep-of-event-next
  (b* ((new-systate (event-next event systate)))
    (system-statep new-systate))
  :rule-classes :rewrite)

    Theorem: all-addresses-of-event-next

    (defthm all-addresses-of-event-next
  (implies (event-possiblep event systate)
           (b* ((?new-systate (event-next event systate)))
             (equal (all-addresses new-systate)
                    (all-addresses systate)))))

    Theorem: correct-addresses-of-event-next

    (defthm correct-addresses-of-event-next
  (implies (event-possiblep event systate)
           (b* ((?new-systate (event-next event systate)))
             (equal (correct-addresses new-systate)
                    (correct-addresses systate)))))

    Theorem: faulty-addresses-of-event-next

    (defthm faulty-addresses-of-event-next
  (implies (event-possiblep event systate)
           (b* ((?new-systate (event-next event systate)))
             (equal (faulty-addresses new-systate)
                    (faulty-addresses systate)))))

    Theorem: event-next-of-event-fix-event

    (defthm event-next-of-event-fix-event
  (equal (event-next (event-fix event) systate)
         (event-next event systate)))

    Theorem: event-next-event-equiv-congruence-on-event

    (defthm event-next-event-equiv-congruence-on-event
  (implies (event-equiv event event-equiv)
           (equal (event-next event systate)
                  (event-next event-equiv systate)))
  :rule-classes :congruence)

    Theorem: event-next-of-system-state-fix-systate

    (defthm event-next-of-system-state-fix-systate
  (equal (event-next event (system-state-fix systate))
         (event-next event systate)))

    Theorem: event-next-system-state-equiv-congruence-on-systate

    (defthm event-next-system-state-equiv-congruence-on-systate
  (implies (system-state-equiv systate systate-equiv)
           (equal (event-next event systate)
                  (event-next event systate-equiv)))
  :rule-classes :congruence)