• Top
    • Documentation
    • Books
    • Boolean-reasoning
    • Projects
      • Apt
      • Acre
      • Milawa
      • Smtlink
      • Aleobft
        • Aleobft-static
        • Aleobft-dynamic
          • Correctness
          • Definition
            • Initialization
            • Transitions
              • Transitions-receive-certificate
              • Transitions-create-certificate
              • Dags
              • Transitions-advance-round
              • Events-next
              • Events-possiblep
              • Event-next
              • Elections
                • Tally-leader-votes
                • Leader-at-round
                • Transitions-commit-anchors
                • Transitions-store-certificate
                • Event-possiblep
                • Anchors
                • Blockchains
                • Transitions-timer-expires
              • States
              • Events
          • Aleobft-stake2
          • Aleobft-stake
          • Library-extensions
        • Abnf
        • Vwsim
        • Isar
        • Wp-gen
        • Dimacs-reader
        • Pfcs
        • Legacy-defrstobj
        • Proof-checker-array
        • Soft
        • Farray
        • Rp-rewriter
        • Instant-runoff-voting
        • Imp-language
        • Sidekick
        • Leftist-trees
        • C
        • Java
        • Taspi
        • Bitcoin
        • Des
        • Ethereum
        • X86isa
        • Sha-2
        • Yul
        • Riscv
        • Zcash
        • Proof-checker-itp13
        • Regex
        • ACL2-programming-language
        • Json
        • Jfkr
        • Equational
        • Cryptography
        • Poseidon
        • Where-do-i-place-my-book
        • Bigmems
        • Builtins
        • Axe
        • Execloader
        • Solidity
        • Leo
        • Paco
        • Concurrent-programs
      • Debugging
      • Std
      • Proof-automation
      • Macro-libraries
      • ACL2
      • Interfacing-tools
      • Hardware-verification
      • Software-verification
      • Math
      • Testing-utilities
    • Elections

    Leader-at-round

    Leader at a round, given a committee active at that round.

    We introduce a constrained function that, given a round number and a committee, returns an address in the committee. This is the chosen leader at that round.

    An AleoBFT implementation may, for example, hash the round number, reduce it modulo the number of validators, and pick the validator corresponding to that index according to some ordering of the validators in the committee. But in our model we can just use a constrained function, as the details do not matter, at least for the kind of properties that we are proving in the near future.

    Definitions and Theorems

    Theorem: addressp-of-leader-at-round

    (defthm addressp-of-leader-at-round
  (addressp (leader-at-round round commtt)))

    Theorem: leader-in-committee

    (defthm leader-in-committee
  (in (leader-at-round round commtt)
      (committee-members commtt)))

    Theorem: leader-at-round-of-pos-fix

    (defthm leader-at-round-of-pos-fix
  (equal (leader-at-round (pos-fix round) commtt)
         (leader-at-round round commtt)))

    Theorem: leader-at-round-of-committee-fix

    (defthm leader-at-round-of-committee-fix
  (equal (leader-at-round round (committee-fix commtt))
         (leader-at-round round commtt)))