• Top
  • Documentation
  • Books
  • Boolean-reasoning
  • Projects
    • Apt
    • Zfc
    • Acre
    • Milawa
    • Smtlink
    • Abnf
    • Vwsim
    • Isar
    • Wp-gen
    • Dimacs-reader
    • Pfcs
    • Legacy-defrstobj
    • Proof-checker-array
    • Soft
    • C
    • Farray
    • Rp-rewriter
    • Instant-runoff-voting
    • Imp-language
    • Sidekick
    • Leftist-trees
    • Java
    • Taspi
    • Bitcoin
    • Riscv
    • Des
    • Ethereum
    • X86isa
    • Sha-2
    • Yul
    • Zcash
    • Proof-checker-itp13
    • Regex
    • ACL2-programming-language
    • Json
    • Jfkr
    • Equational
    • Cryptography
    • Poseidon
    • Where-do-i-place-my-book
    • Axe
    • Bigmems
    • Builtins
    • Execloader
    • Aleo
      • Aleobft
        • Aleobft-static
        • Aleobft-stake2
        • Aleobft-dynamic
          • Correctness
            • Unequivocal-accepted-certificates-def-and-init
            • Signer-records
            • Same-committees-def-and-implied
            • Dag-omni-paths
            • Unequivocal-accepted-certificates-next
            • Unequivocal-signed-certificates
            • Nonforking-anchors-def-and-init-and-next
            • Signer-quorum
            • Quorum-intersection
            • Successor-predecessor-intersection
            • Same-owned-certificates
            • Previous-quorum
            • Last-anchor-voters-def-and-init-and-next
            • Certificates-of-validators
            • Committed-redundant-def-and-init-and-next
            • Nonforking-blockchains-def-and-init
            • Fault-tolerance
            • Rounds-in-committees
            • No-self-messages
            • Blockchain-redundant-def-and-init-and-next
            • Backward-closure
            • Accepted-certificate-committee
            • Nonforking-blockchains-next
            • Anchors-extension
            • No-self-endorsed
            • Last-anchor-present
            • Committees-in-system
            • Last-blockchain-round
            • No-self-buffer
            • Dag-certificate-next
            • Omni-paths-def-and-implied
            • Simultaneous-induction
              • Invariants-of-events-next
            • Ordered-even-blocks
            • Last-anchor-def-and-init
            • Same-committees
            • Committed-anchors-sequences
            • Last-anchor-next
            • Unequivocal-accepted-certificates
            • Omni-paths
            • Last-anchor-voters
            • Committed-redundant
            • Nonforking-blockchains
            • Nonforking-anchors
            • Blockchain-redundant
          • Definition
        • Aleobft-stake
        • Aleobft-proposals
        • Library-extensions
      • Leo
    • Solidity
    • Paco
    • Concurrent-programs
    • Bls12-377-curves
  • Debugging
  • Std
  • Proof-automation
  • Macro-libraries
  • ACL2
  • Interfacing-tools
  • Hardware-verification
  • Software-verification
  • Math
  • Testing-utilities

• Simultaneous-induction

Invariants-of-events-next

Preservation of a number of invariants by any sequence of zero or more events.

This is proved by simultaneous induction, involving all of the invariants.

The hypothesis that the genesis committee consists of validators in the system serves to prove the committees-in-system-p invariant.

A critical assumption is fault tolerance: all the committees that arise during the execution must be fault-tolerant.

Definitions and Theorems

Theorem: invariants-of-events-next

(defthm invariants-of-events-next
 (implies
  (and (subset (committee-members (genesis-committee))
               (all-addresses systate))
       (same-committees-p systate)
       (unequivocal-accepted-certificates-p systate)
       (last-anchor-voters-p systate)
       (omni-paths-p systate)
       (nonforking-anchors-p systate)
       (committed-redundant-p systate)
       (blockchain-redundant-p systate)
       (nonforking-blockchains-p systate)
       (same-owned-certificates-p systate)
       (no-self-messages-p systate)
       (no-self-buffer-p systate)
       (no-self-endorsed-p systate)
       (signer-records-p systate)
       (last-blockchain-round-p systate)
       (ordered-even-p systate)
       (accepted-certificate-committee-p systate)
       (signer-quorum-p systate)
       (previous-quorum-p systate)
       (backward-closed-p systate)
       (unequivocal-signed-certificates-p systate)
       (last-anchor-present-p systate)
       (committees-in-system-p systate)
       (rounds-in-committees-p systate)
       (events-possiblep events systate)
       (all-system-fault-tolerant-p events systate))
  (and
    (same-committees-p (events-next events systate))
    (unequivocal-accepted-certificates-p
         (events-next events systate))
    (last-anchor-voters-p (events-next events systate))
    (omni-paths-p (events-next events systate))
    (nonforking-anchors-p (events-next events systate))
    (committed-redundant-p (events-next events systate))
    (blockchain-redundant-p (events-next events systate))
    (nonforking-blockchains-p (events-next events systate))
    (same-owned-certificates-p (events-next events systate))
    (no-self-messages-p (events-next events systate))
    (no-self-buffer-p (events-next events systate))
    (no-self-endorsed-p (events-next events systate))
    (signer-records-p (events-next events systate))
    (last-blockchain-round-p (events-next events systate))
    (ordered-even-p (events-next events systate))
    (accepted-certificate-committee-p (events-next events systate))
    (signer-quorum-p (events-next events systate))
    (previous-quorum-p (events-next events systate))
    (backward-closed-p (events-next events systate))
    (unequivocal-signed-certificates-p (events-next events systate))
    (last-anchor-present-p (events-next events systate))
    (committees-in-system-p (events-next events systate))
    (rounds-in-committees-p (events-next events systate)))))