• Top
    • Documentation
    • Books
    • Boolean-reasoning
    • Projects
      • Apt
      • Acre
      • Milawa
      • Smtlink
      • Aleobft
        • Aleobft-static
        • Aleobft-stake2
        • Aleobft-dynamic
        • Aleobft-stake
          • Correctness
            • Unequivocal-dags-def-and-init
            • Same-committees-def-and-implied
            • Signer-records
            • Dag-omni-paths
            • Unequivocal-dags-next
            • Quorum-intersection
            • Previous-quorum-def-and-init-and-next
            • Unequivocal-signed-certificates
            • Same-associated-certificates
            • Nonforking-anchors-def-and-init-and-next
            • Signed-previous-quorum
            • Successor-predecessor-intersection
            • Fault-tolerance
            • Last-anchor-voters-def-and-init-and-next
            • Signer-quorum
            • Committed-redundant-def-and-init-and-next
            • Nonforking-blockchains-def-and-init
            • Dag-committees
            • No-self-messages
            • Blockchain-redundant-def-and-init-and-next
            • Backward-closure
            • Anchors-extension
            • Nonforking-blockchains-next
            • No-self-endorsed
            • Associated-certificates
            • Last-anchor-present
            • No-self-buffer
            • Signed-certificates
            • Last-blockchain-round
            • Dag-certificate-next
            • Omni-paths-def-and-implied
            • Simultaneous-induction
              • Invariants-of-events-next
              • Ordered-even-blocks
              • Last-anchor-def-and-init
              • Last-anchor-next
              • Previous-quorum
              • Committed-anchors-sequences
              • Omni-paths
              • Last-anchor-voters
              • Unequivocal-dag
              • Signed-and-associated-cerificates
              • Nonforking-blockchains
              • Nonforking-anchors
              • Committed-redundant
              • Same-committees
              • Blockchain-redundant
            • Definition
          • Library-extensions
        • Abnf
        • Vwsim
        • Isar
        • Wp-gen
        • Dimacs-reader
        • Pfcs
        • Legacy-defrstobj
        • Proof-checker-array
        • Soft
        • Farray
        • Rp-rewriter
        • Instant-runoff-voting
        • Imp-language
        • Sidekick
        • Leftist-trees
        • C
        • Java
        • Taspi
        • Bitcoin
        • Des
        • Ethereum
        • X86isa
        • Sha-2
        • Riscv
        • Yul
        • Zcash
        • Proof-checker-itp13
        • Regex
        • ACL2-programming-language
        • Json
        • Jfkr
        • Equational
        • Cryptography
        • Poseidon
        • Where-do-i-place-my-book
        • Bigmems
        • Builtins
        • Axe
        • Execloader
        • Solidity
        • Leo
        • Paco
        • Concurrent-programs
      • Debugging
      • Std
      • Proof-automation
      • Macro-libraries
      • ACL2
      • Interfacing-tools
      • Hardware-verification
      • Software-verification
      • Math
      • Testing-utilities
    • Simultaneous-induction

    Invariants-of-events-next

    Preservation of a number of invariants by any sequence of zero or more events.

    This is proved by simultaneous induction, involving all of the invariants.

    A critical assumption is fault tolerance: all the committees that arise during the execution must be fault-tolerant.

    Definitions and Theorems

    Theorem: invariants-of-events-next

    (defthm invariants-of-events-next
 (implies
      (and (all-system-committees-fault-tolerant-p systate events)
           (backward-closed-p systate)
           (last-blockchain-round-p systate)
           (ordered-even-p systate)
           (same-associated-certs-p systate)
           (signed-previous-quorum-p systate)
           (no-self-endorsed-p systate)
           (signer-records-p systate)
           (unequivocal-signed-certs-p systate)
           (dag-committees-p systate)
           (signer-quorum-p systate)
           (unequivocal-dags-p systate)
           (nonforking-blockchains-p systate)
           (same-committees-p systate)
           (previous-quorum-p systate)
           (last-anchor-present-p systate)
           (last-anchor-voters-p systate)
           (omni-paths-p systate)
           (nonforking-anchors-p systate)
           (committed-redundant-p systate)
           (blockchain-redundant-p systate)
           (events-possiblep events systate))
      (and (backward-closed-p (events-next events systate))
           (last-blockchain-round-p (events-next events systate))
           (ordered-even-p (events-next events systate))
           (same-associated-certs-p (events-next events systate))
           (signed-previous-quorum-p (events-next events systate))
           (no-self-endorsed-p (events-next events systate))
           (signer-records-p (events-next events systate))
           (unequivocal-signed-certs-p (events-next events systate))
           (dag-committees-p (events-next events systate))
           (signer-quorum-p (events-next events systate))
           (unequivocal-dags-p (events-next events systate))
           (nonforking-blockchains-p (events-next events systate))
           (same-committees-p (events-next events systate))
           (previous-quorum-p (events-next events systate))
           (last-anchor-present-p (events-next events systate))
           (last-anchor-voters-p (events-next events systate))
           (omni-paths-p (events-next events systate))
           (nonforking-anchors-p (events-next events systate))
           (committed-redundant-p (events-next events systate))
           (blockchain-redundant-p (events-next events systate)))))