Step
*
1
of Lemma
pv11_p1_ldr_state_eq2
1. Cmd : {T:Type| valueall-type(T)} @i'
2. f : pv11_p1_headers_type{i:l}(Cmd)@i'
3. (f [decision]) = (ℤ × Cmd) ∈ Type
4. (f [propose]) = (ℤ × Cmd) ∈ Type
5. (f ``pv11_p1 adopted``) = (pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)) ∈ Type
6. (f ``pv11_p1 preempted``) = pv11_p1_Ballot_Num() ∈ Type
7. (f ``pv11_p1 p2b``) = (Id × pv11_p1_Ballot_Num() × ℤ × pv11_p1_Ballot_Num()) ∈ Type
8. (f ``pv11_p1 p2a``) = (Id × pv11_p1_Ballot_Num() × ℤ × Cmd) ∈ Type
9. (f ``pv11_p1 p1b``)
= (Id × pv11_p1_Ballot_Num() × pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List))
∈ Type
10. (f ``pv11_p1 p1a``) = (Id × pv11_p1_Ballot_Num()) ∈ Type
11. f ∈ Name ⟶ Type
12. es : EO+(Message(f))@i'
13. e : E@i
14. ldrs_uid : Id ⟶ ℤ@i
15. v : pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)@i
⊢ uiff(v ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(e);if first(e)
then v
= (pv11_p1_init_leader(Cmd) loc(e))
∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))
if pred(e) ∈b pv11_p1_propose'base(Cmd;f)
then ∃x:ℤ × Cmd
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_propose'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_on_propose(Cmd) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
if pred(e) ∈b pv11_p1_adopted'base(Cmd;f)
then ∃x:pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_adopted'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_when_adopted(Cmd;ldrs_uid) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
if pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
then ∃x:pv11_p1_Ballot_Num()
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_preempted'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_when_preempted(Cmd;ldrs_uid) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
else v ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
fi )
BY
{ ((RW (AddrC [1] (LemmaC `pv11_p1_LeaderState-classrel`)) 0 THENA Auto)
THEN (RWO "pv11_p1_ldr_state_fun_eq" 0 THENA Auto)
THEN Repeat (AutoSplit)
THEN (D 0 THEN Auto)
THEN ProveFunctional) }
1
1. Cmd : {T:Type| valueall-type(T)} @i'
2. f : pv11_p1_headers_type{i:l}(Cmd)@i'
3. (f [decision]) = (ℤ × Cmd) ∈ Type
4. (f [propose]) = (ℤ × Cmd) ∈ Type
5. (f ``pv11_p1 adopted``) = (pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)) ∈ Type
6. (f ``pv11_p1 preempted``) = pv11_p1_Ballot_Num() ∈ Type
7. (f ``pv11_p1 p2b``) = (Id × pv11_p1_Ballot_Num() × ℤ × pv11_p1_Ballot_Num()) ∈ Type
8. (f ``pv11_p1 p2a``) = (Id × pv11_p1_Ballot_Num() × ℤ × Cmd) ∈ Type
9. (f ``pv11_p1 p1b``)
= (Id × pv11_p1_Ballot_Num() × pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List))
∈ Type
10. (f ``pv11_p1 p1a``) = (Id × pv11_p1_Ballot_Num()) ∈ Type
11. f ∈ Name ⟶ Type
12. es : EO+(Message(f))@i'
13. e : E@i
14. ¬↑first(e)
15. ldrs_uid : Id ⟶ ℤ@i
16. v : pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)@i
17. ↑pred(e) ∈b pv11_p1_propose'base(Cmd;f)
18. v
= (pv11_p1_on_propose(Cmd) loc(e) pv11_p1_propose'base(Cmd;f)@pred(e) pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e)))
∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))
⊢ ∃x:ℤ × Cmd
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_propose'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_on_propose(Cmd) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
2
1. Cmd : {T:Type| valueall-type(T)} @i'
2. f : pv11_p1_headers_type{i:l}(Cmd)@i'
3. (f [decision]) = (ℤ × Cmd) ∈ Type
4. (f [propose]) = (ℤ × Cmd) ∈ Type
5. (f ``pv11_p1 adopted``) = (pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)) ∈ Type
6. (f ``pv11_p1 preempted``) = pv11_p1_Ballot_Num() ∈ Type
7. (f ``pv11_p1 p2b``) = (Id × pv11_p1_Ballot_Num() × ℤ × pv11_p1_Ballot_Num()) ∈ Type
8. (f ``pv11_p1 p2a``) = (Id × pv11_p1_Ballot_Num() × ℤ × Cmd) ∈ Type
9. (f ``pv11_p1 p1b``)
= (Id × pv11_p1_Ballot_Num() × pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List))
∈ Type
10. (f ``pv11_p1 p1a``) = (Id × pv11_p1_Ballot_Num()) ∈ Type
11. f ∈ Name ⟶ Type
12. es : EO+(Message(f))@i'
13. e : E@i
14. ¬↑first(e)
15. ldrs_uid : Id ⟶ ℤ@i
16. v : pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)@i
17. ↑pred(e) ∈b pv11_p1_propose'base(Cmd;f)
18. ∃x:ℤ × Cmd
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_propose'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_on_propose(Cmd) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
⊢ v
= (pv11_p1_on_propose(Cmd) loc(e) pv11_p1_propose'base(Cmd;f)@pred(e) pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e)))
∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))
3
1. Cmd : {T:Type| valueall-type(T)} @i'
2. f : pv11_p1_headers_type{i:l}(Cmd)@i'
3. (f [decision]) = (ℤ × Cmd) ∈ Type
4. (f [propose]) = (ℤ × Cmd) ∈ Type
5. (f ``pv11_p1 adopted``) = (pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)) ∈ Type
6. (f ``pv11_p1 preempted``) = pv11_p1_Ballot_Num() ∈ Type
7. (f ``pv11_p1 p2b``) = (Id × pv11_p1_Ballot_Num() × ℤ × pv11_p1_Ballot_Num()) ∈ Type
8. (f ``pv11_p1 p2a``) = (Id × pv11_p1_Ballot_Num() × ℤ × Cmd) ∈ Type
9. (f ``pv11_p1 p1b``)
= (Id × pv11_p1_Ballot_Num() × pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List))
∈ Type
10. (f ``pv11_p1 p1a``) = (Id × pv11_p1_Ballot_Num()) ∈ Type
11. f ∈ Name ⟶ Type
12. es : EO+(Message(f))@i'
13. e : E@i
14. ¬↑pred(e) ∈b pv11_p1_propose'base(Cmd;f)
15. ¬↑first(e)
16. ldrs_uid : Id ⟶ ℤ@i
17. v : pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)@i
18. ↑pred(e) ∈b pv11_p1_adopted'base(Cmd;f)
19. v
= (pv11_p1_when_adopted(Cmd;ldrs_uid) loc(e) pv11_p1_adopted'base(Cmd;f)@pred(e)
pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e)))
∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))
⊢ ∃x:pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_adopted'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_when_adopted(Cmd;ldrs_uid) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
4
1. Cmd : {T:Type| valueall-type(T)} @i'
2. f : pv11_p1_headers_type{i:l}(Cmd)@i'
3. (f [decision]) = (ℤ × Cmd) ∈ Type
4. (f [propose]) = (ℤ × Cmd) ∈ Type
5. (f ``pv11_p1 adopted``) = (pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)) ∈ Type
6. (f ``pv11_p1 preempted``) = pv11_p1_Ballot_Num() ∈ Type
7. (f ``pv11_p1 p2b``) = (Id × pv11_p1_Ballot_Num() × ℤ × pv11_p1_Ballot_Num()) ∈ Type
8. (f ``pv11_p1 p2a``) = (Id × pv11_p1_Ballot_Num() × ℤ × Cmd) ∈ Type
9. (f ``pv11_p1 p1b``)
= (Id × pv11_p1_Ballot_Num() × pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List))
∈ Type
10. (f ``pv11_p1 p1a``) = (Id × pv11_p1_Ballot_Num()) ∈ Type
11. f ∈ Name ⟶ Type
12. es : EO+(Message(f))@i'
13. e : E@i
14. ¬↑pred(e) ∈b pv11_p1_propose'base(Cmd;f)
15. ¬↑first(e)
16. ldrs_uid : Id ⟶ ℤ@i
17. v : pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)@i
18. ↑pred(e) ∈b pv11_p1_adopted'base(Cmd;f)
19. ∃x:pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_adopted'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_when_adopted(Cmd;ldrs_uid) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
⊢ v
= (pv11_p1_when_adopted(Cmd;ldrs_uid) loc(e) pv11_p1_adopted'base(Cmd;f)@pred(e)
pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e)))
∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))
5
1. Cmd : {T:Type| valueall-type(T)} @i'
2. f : pv11_p1_headers_type{i:l}(Cmd)@i'
3. (f [decision]) = (ℤ × Cmd) ∈ Type
4. (f [propose]) = (ℤ × Cmd) ∈ Type
5. (f ``pv11_p1 adopted``) = (pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)) ∈ Type
6. (f ``pv11_p1 preempted``) = pv11_p1_Ballot_Num() ∈ Type
7. (f ``pv11_p1 p2b``) = (Id × pv11_p1_Ballot_Num() × ℤ × pv11_p1_Ballot_Num()) ∈ Type
8. (f ``pv11_p1 p2a``) = (Id × pv11_p1_Ballot_Num() × ℤ × Cmd) ∈ Type
9. (f ``pv11_p1 p1b``)
= (Id × pv11_p1_Ballot_Num() × pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List))
∈ Type
10. (f ``pv11_p1 p1a``) = (Id × pv11_p1_Ballot_Num()) ∈ Type
11. f ∈ Name ⟶ Type
12. es : EO+(Message(f))@i'
13. e : E@i
14. ¬↑pred(e) ∈b pv11_p1_adopted'base(Cmd;f)
15. ¬↑pred(e) ∈b pv11_p1_propose'base(Cmd;f)
16. ¬↑first(e)
17. ldrs_uid : Id ⟶ ℤ@i
18. v : pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)@i
19. ↑pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
20. v
= (pv11_p1_when_preempted(Cmd;ldrs_uid) loc(e) pv11_p1_preempted'base(Cmd;f)@pred(e)
pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e)))
∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))
⊢ ∃x:pv11_p1_Ballot_Num()
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_preempted'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_when_preempted(Cmd;ldrs_uid) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
6
1. Cmd : {T:Type| valueall-type(T)} @i'
2. f : pv11_p1_headers_type{i:l}(Cmd)@i'
3. (f [decision]) = (ℤ × Cmd) ∈ Type
4. (f [propose]) = (ℤ × Cmd) ∈ Type
5. (f ``pv11_p1 adopted``) = (pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)) ∈ Type
6. (f ``pv11_p1 preempted``) = pv11_p1_Ballot_Num() ∈ Type
7. (f ``pv11_p1 p2b``) = (Id × pv11_p1_Ballot_Num() × ℤ × pv11_p1_Ballot_Num()) ∈ Type
8. (f ``pv11_p1 p2a``) = (Id × pv11_p1_Ballot_Num() × ℤ × Cmd) ∈ Type
9. (f ``pv11_p1 p1b``)
= (Id × pv11_p1_Ballot_Num() × pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List))
∈ Type
10. (f ``pv11_p1 p1a``) = (Id × pv11_p1_Ballot_Num()) ∈ Type
11. f ∈ Name ⟶ Type
12. es : EO+(Message(f))@i'
13. e : E@i
14. ¬↑pred(e) ∈b pv11_p1_adopted'base(Cmd;f)
15. ¬↑pred(e) ∈b pv11_p1_propose'base(Cmd;f)
16. ¬↑first(e)
17. ldrs_uid : Id ⟶ ℤ@i
18. v : pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)@i
19. ↑pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
20. ∃x:pv11_p1_Ballot_Num()
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_preempted'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_when_preempted(Cmd;ldrs_uid) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
⊢ v
= (pv11_p1_when_preempted(Cmd;ldrs_uid) loc(e) pv11_p1_preempted'base(Cmd;f)@pred(e)
pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e)))
∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))
7
1. Cmd : {T:Type| valueall-type(T)} @i'
2. f : pv11_p1_headers_type{i:l}(Cmd)@i'
3. (f [decision]) = (ℤ × Cmd) ∈ Type
4. (f [propose]) = (ℤ × Cmd) ∈ Type
5. (f ``pv11_p1 adopted``) = (pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)) ∈ Type
6. (f ``pv11_p1 preempted``) = pv11_p1_Ballot_Num() ∈ Type
7. (f ``pv11_p1 p2b``) = (Id × pv11_p1_Ballot_Num() × ℤ × pv11_p1_Ballot_Num()) ∈ Type
8. (f ``pv11_p1 p2a``) = (Id × pv11_p1_Ballot_Num() × ℤ × Cmd) ∈ Type
9. (f ``pv11_p1 p1b``)
= (Id × pv11_p1_Ballot_Num() × pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List))
∈ Type
10. (f ``pv11_p1 p1a``) = (Id × pv11_p1_Ballot_Num()) ∈ Type
11. f ∈ Name ⟶ Type
12. es : EO+(Message(f))@i'
13. e : E@i
14. ¬↑pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
15. ¬↑pred(e) ∈b pv11_p1_adopted'base(Cmd;f)
16. ¬↑pred(e) ∈b pv11_p1_propose'base(Cmd;f)
17. ¬↑first(e)
18. ldrs_uid : Id ⟶ ℤ@i
19. v : pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)@i
20. v = pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e)) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))
⊢ v ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
8
1. Cmd : {T:Type| valueall-type(T)} @i'
2. f : pv11_p1_headers_type{i:l}(Cmd)@i'
3. (f [decision]) = (ℤ × Cmd) ∈ Type
4. (f [propose]) = (ℤ × Cmd) ∈ Type
5. (f ``pv11_p1 adopted``) = (pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)) ∈ Type
6. (f ``pv11_p1 preempted``) = pv11_p1_Ballot_Num() ∈ Type
7. (f ``pv11_p1 p2b``) = (Id × pv11_p1_Ballot_Num() × ℤ × pv11_p1_Ballot_Num()) ∈ Type
8. (f ``pv11_p1 p2a``) = (Id × pv11_p1_Ballot_Num() × ℤ × Cmd) ∈ Type
9. (f ``pv11_p1 p1b``)
= (Id × pv11_p1_Ballot_Num() × pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List))
∈ Type
10. (f ``pv11_p1 p1a``) = (Id × pv11_p1_Ballot_Num()) ∈ Type
11. f ∈ Name ⟶ Type
12. es : EO+(Message(f))@i'
13. e : E@i
14. ¬↑pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
15. ¬↑pred(e) ∈b pv11_p1_adopted'base(Cmd;f)
16. ¬↑pred(e) ∈b pv11_p1_propose'base(Cmd;f)
17. ¬↑first(e)
18. ldrs_uid : Id ⟶ ℤ@i
19. v : pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)@i
20. v ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
⊢ v = pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e)) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))
9
1. Cmd : {T:Type| valueall-type(T)} @i'
2. f : pv11_p1_headers_type{i:l}(Cmd)@i'
3. (f [decision]) = (ℤ × Cmd) ∈ Type
4. (f [propose]) = (ℤ × Cmd) ∈ Type
5. (f ``pv11_p1 adopted``) = (pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)) ∈ Type
6. (f ``pv11_p1 preempted``) = pv11_p1_Ballot_Num() ∈ Type
7. (f ``pv11_p1 p2b``) = (Id × pv11_p1_Ballot_Num() × ℤ × pv11_p1_Ballot_Num()) ∈ Type
8. (f ``pv11_p1 p2a``) = (Id × pv11_p1_Ballot_Num() × ℤ × Cmd) ∈ Type
9. (f ``pv11_p1 p1b``)
= (Id × pv11_p1_Ballot_Num() × pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List))
∈ Type
10. (f ``pv11_p1 p1a``) = (Id × pv11_p1_Ballot_Num()) ∈ Type
11. f ∈ Name ⟶ Type
12. es : EO+(Message(f))@i'
13. e : E@i
14. ¬↑first(e)
15. ldrs_uid : Id ⟶ ℤ@i
16. v : pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)@i
17. if pred(e) ∈b pv11_p1_propose'base(Cmd;f)
then ∃x:ℤ × Cmd
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_propose'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_on_propose(Cmd) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
if pred(e) ∈b pv11_p1_adopted'base(Cmd;f)
then ∃x:pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_adopted'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_when_adopted(Cmd;ldrs_uid) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
if pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
then ∃x:pv11_p1_Ballot_Num()
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_preempted'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_when_preempted(Cmd;ldrs_uid) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
else v ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
fi
supposing v
= if pred(e) ∈b pv11_p1_propose'base(Cmd;f)
then pv11_p1_on_propose(Cmd) loc(e) pv11_p1_propose'base(Cmd;f)@pred(e)
pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
if pred(e) ∈b pv11_p1_adopted'base(Cmd;f)
then pv11_p1_when_adopted(Cmd;ldrs_uid) loc(e) pv11_p1_adopted'base(Cmd;f)@pred(e)
pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
if pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
then pv11_p1_when_preempted(Cmd;ldrs_uid) loc(e) pv11_p1_preempted'base(Cmd;f)@pred(e)
pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
else pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
fi
∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))
18. v
= if pred(e) ∈b pv11_p1_propose'base(Cmd;f)
then pv11_p1_on_propose(Cmd) loc(e) pv11_p1_propose'base(Cmd;f)@pred(e)
pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
if pred(e) ∈b pv11_p1_adopted'base(Cmd;f)
then pv11_p1_when_adopted(Cmd;ldrs_uid) loc(e) pv11_p1_adopted'base(Cmd;f)@pred(e)
pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
if pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
then pv11_p1_when_preempted(Cmd;ldrs_uid) loc(e) pv11_p1_preempted'base(Cmd;f)@pred(e)
pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
else pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
fi
∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))
supposing if pred(e) ∈b pv11_p1_propose'base(Cmd;f)
then ∃x:ℤ × Cmd
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_propose'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_on_propose(Cmd) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
if pred(e) ∈b pv11_p1_adopted'base(Cmd;f)
then ∃x:pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_adopted'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_when_adopted(Cmd;ldrs_uid) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
if pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
then ∃x:pv11_p1_Ballot_Num()
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_preempted'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_when_preempted(Cmd;ldrs_uid) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
else v ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
fi
19. ff ∈ 𝔹
20. pred(e) ∈b pv11_p1_propose'base(Cmd;f) ∈ 𝔹
21. ↑pred(e) ∈b pv11_p1_propose'base(Cmd;f)
22. e1 : E@i
23. v1 : ℤ × Cmd@i
24. v2 : ℤ × Cmd@i
25. v1 ∈ pv11_p1_propose'base(Cmd;f)(e1)@i
26. v2 ∈ pv11_p1_propose'base(Cmd;f)(e1)@i
⊢ v1 = v2 ∈ (ℤ × Cmd)
10
1. Cmd : {T:Type| valueall-type(T)} @i'
2. f : pv11_p1_headers_type{i:l}(Cmd)@i'
3. (f [decision]) = (ℤ × Cmd) ∈ Type
4. (f [propose]) = (ℤ × Cmd) ∈ Type
5. (f ``pv11_p1 adopted``) = (pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)) ∈ Type
6. (f ``pv11_p1 preempted``) = pv11_p1_Ballot_Num() ∈ Type
7. (f ``pv11_p1 p2b``) = (Id × pv11_p1_Ballot_Num() × ℤ × pv11_p1_Ballot_Num()) ∈ Type
8. (f ``pv11_p1 p2a``) = (Id × pv11_p1_Ballot_Num() × ℤ × Cmd) ∈ Type
9. (f ``pv11_p1 p1b``)
= (Id × pv11_p1_Ballot_Num() × pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List))
∈ Type
10. (f ``pv11_p1 p1a``) = (Id × pv11_p1_Ballot_Num()) ∈ Type
11. f ∈ Name ⟶ Type
12. es : EO+(Message(f))@i'
13. e : E@i
14. ¬↑pred(e) ∈b pv11_p1_propose'base(Cmd;f)
15. ¬↑first(e)
16. ldrs_uid : Id ⟶ ℤ@i
17. v : pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)@i
18. if pred(e) ∈b pv11_p1_adopted'base(Cmd;f)
then ∃x:pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_adopted'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_when_adopted(Cmd;ldrs_uid) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
if pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
then ∃x:pv11_p1_Ballot_Num()
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_preempted'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_when_preempted(Cmd;ldrs_uid) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
else v ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
fi
supposing v
= if pred(e) ∈b pv11_p1_adopted'base(Cmd;f)
then pv11_p1_when_adopted(Cmd;ldrs_uid) loc(e) pv11_p1_adopted'base(Cmd;f)@pred(e)
pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
if pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
then pv11_p1_when_preempted(Cmd;ldrs_uid) loc(e) pv11_p1_preempted'base(Cmd;f)@pred(e)
pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
else pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
fi
∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))
19. v
= if pred(e) ∈b pv11_p1_adopted'base(Cmd;f)
then pv11_p1_when_adopted(Cmd;ldrs_uid) loc(e) pv11_p1_adopted'base(Cmd;f)@pred(e)
pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
if pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
then pv11_p1_when_preempted(Cmd;ldrs_uid) loc(e) pv11_p1_preempted'base(Cmd;f)@pred(e)
pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
else pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
fi
∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))
supposing if pred(e) ∈b pv11_p1_adopted'base(Cmd;f)
then ∃x:pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_adopted'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v
= (pv11_p1_when_adopted(Cmd;ldrs_uid) loc(e) x s)
∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
if pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
then ∃x:pv11_p1_Ballot_Num()
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_preempted'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_when_preempted(Cmd;ldrs_uid) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
else v ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
fi
20. ff ∈ 𝔹
21. ff ∈ 𝔹
22. pred(e) ∈b pv11_p1_adopted'base(Cmd;f) ∈ 𝔹
23. ↑pred(e) ∈b pv11_p1_adopted'base(Cmd;f)
24. e1 : E@i
25. v1 : pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)@i
26. v2 : pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)@i
27. v1 ∈ pv11_p1_adopted'base(Cmd;f)(e1)@i
28. v2 ∈ pv11_p1_adopted'base(Cmd;f)(e1)@i
⊢ v1 = v2 ∈ (pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List))
11
1. Cmd : {T:Type| valueall-type(T)} @i'
2. f : pv11_p1_headers_type{i:l}(Cmd)@i'
3. (f [decision]) = (ℤ × Cmd) ∈ Type
4. (f [propose]) = (ℤ × Cmd) ∈ Type
5. (f ``pv11_p1 adopted``) = (pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)) ∈ Type
6. (f ``pv11_p1 preempted``) = pv11_p1_Ballot_Num() ∈ Type
7. (f ``pv11_p1 p2b``) = (Id × pv11_p1_Ballot_Num() × ℤ × pv11_p1_Ballot_Num()) ∈ Type
8. (f ``pv11_p1 p2a``) = (Id × pv11_p1_Ballot_Num() × ℤ × Cmd) ∈ Type
9. (f ``pv11_p1 p1b``)
= (Id × pv11_p1_Ballot_Num() × pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List))
∈ Type
10. (f ``pv11_p1 p1a``) = (Id × pv11_p1_Ballot_Num()) ∈ Type
11. f ∈ Name ⟶ Type
12. es : EO+(Message(f))@i'
13. e : E@i
14. ¬↑pred(e) ∈b pv11_p1_adopted'base(Cmd;f)
15. ¬↑pred(e) ∈b pv11_p1_propose'base(Cmd;f)
16. ¬↑first(e)
17. ldrs_uid : Id ⟶ ℤ@i
18. v : pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)@i
19. if pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
then ∃x:pv11_p1_Ballot_Num()
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_preempted'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_when_preempted(Cmd;ldrs_uid) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
else v ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
fi
supposing v
= if pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
then pv11_p1_when_preempted(Cmd;ldrs_uid) loc(e) pv11_p1_preempted'base(Cmd;f)@pred(e)
pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
else pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
fi
∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))
20. v
= if pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
then pv11_p1_when_preempted(Cmd;ldrs_uid) loc(e) pv11_p1_preempted'base(Cmd;f)@pred(e)
pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
else pv11_p1_LeaderStateFun(Cmd;ldrs_uid;f;es;pred(e))
fi
∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))
supposing if pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
then ∃x:pv11_p1_Ballot_Num()
∃s:pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List)
(x ∈ pv11_p1_preempted'base(Cmd;f)(pred(e))
∧ s ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
∧ (v = (pv11_p1_when_preempted(Cmd;ldrs_uid) loc(e) x s) ∈ (pv11_p1_Ballot_Num() × 𝔹 × ((ℤ × Cmd) List))))
else v ∈ pv11_p1_LeaderState(Cmd;ldrs_uid;f)(pred(e))
fi
21. ff ∈ 𝔹
22. ff ∈ 𝔹
23. ff ∈ 𝔹
24. pred(e) ∈b pv11_p1_preempted'base(Cmd;f) ∈ 𝔹
25. ↑pred(e) ∈b pv11_p1_preempted'base(Cmd;f)
26. e1 : E@i
27. v1 : pv11_p1_Ballot_Num()@i
28. v2 : pv11_p1_Ballot_Num()@i
29. v1 ∈ pv11_p1_preempted'base(Cmd;f)(e1)@i
30. v2 ∈ pv11_p1_preempted'base(Cmd;f)(e1)@i
⊢ v1 = v2 ∈ pv11_p1_Ballot_Num()
Latex:
Latex:
1. Cmd : \{T:Type| valueall-type(T)\} @i'
2. f : pv11\_p1\_headers\_type\{i:l\}(Cmd)@i'
3. (f [decision]) = (\mBbbZ{} \mtimes{} Cmd)
4. (f [propose]) = (\mBbbZ{} \mtimes{} Cmd)
5. (f ``pv11\_p1 adopted``) = (pv11\_p1\_Ballot\_Num() \mtimes{} ((pv11\_p1\_Ballot\_Num() \mtimes{} \mBbbZ{} \mtimes{} Cmd) List))
6. (f ``pv11\_p1 preempted``) = pv11\_p1\_Ballot\_Num()
7. (f ``pv11\_p1 p2b``) = (Id \mtimes{} pv11\_p1\_Ballot\_Num() \mtimes{} \mBbbZ{} \mtimes{} pv11\_p1\_Ballot\_Num())
8. (f ``pv11\_p1 p2a``) = (Id \mtimes{} pv11\_p1\_Ballot\_Num() \mtimes{} \mBbbZ{} \mtimes{} Cmd)
9. (f ``pv11\_p1 p1b``)
= (Id \mtimes{} pv11\_p1\_Ballot\_Num() \mtimes{} pv11\_p1\_Ballot\_Num() \mtimes{} ((pv11\_p1\_Ballot\_Num() \mtimes{} \mBbbZ{} \mtimes{} Cmd) List))
10. (f ``pv11\_p1 p1a``) = (Id \mtimes{} pv11\_p1\_Ballot\_Num())
11. f \mmember{} Name {}\mrightarrow{} Type
12. es : EO+(Message(f))@i'
13. e : E@i
14. ldrs$_{uid}$ : Id {}\mrightarrow{} \mBbbZ{}@i
15. v : pv11\_p1\_Ballot\_Num() \mtimes{} \mBbbB{} \mtimes{} ((\mBbbZ{} \mtimes{} Cmd) List)@i
\mvdash{} uiff(v \mmember{} pv11\_p1\_LeaderState(Cmd;ldrs$_{uid}$;f)(e);if first(e)
then v = (pv11\_p1\_init\_leader(Cmd) loc(e))
if pred(e) \mmember{}\msubb{} pv11\_p1\_propose'base(Cmd;f)
then \mexists{}x:\mBbbZ{} \mtimes{} Cmd
\mexists{}s:pv11\_p1\_Ballot\_Num() \mtimes{} \mBbbB{} \mtimes{} ((\mBbbZ{} \mtimes{} Cmd) List)
(x \mmember{} pv11\_p1\_propose'base(Cmd;f)(pred(e))
\mwedge{} s \mmember{} pv11\_p1\_LeaderState(Cmd;ldrs$_{uid}$;f)(pred(e))
\mwedge{} (v = (pv11\_p1\_on\_propose(Cmd) loc(e) x s)))
if pred(e) \mmember{}\msubb{} pv11\_p1\_adopted'base(Cmd;f)
then \mexists{}x:pv11\_p1\_Ballot\_Num() \mtimes{} ((pv11\_p1\_Ballot\_Num() \mtimes{} \mBbbZ{} \mtimes{} Cmd) List)
\mexists{}s:pv11\_p1\_Ballot\_Num() \mtimes{} \mBbbB{} \mtimes{} ((\mBbbZ{} \mtimes{} Cmd) List)
(x \mmember{} pv11\_p1\_adopted'base(Cmd;f)(pred(e))
\mwedge{} s \mmember{} pv11\_p1\_LeaderState(Cmd;ldrs$_{uid}$;f)(pred(e))
\mwedge{} (v = (pv11\_p1\_when\_adopted(Cmd;ldrs$_{uid}$) loc(e) x s)))
if pred(e) \mmember{}\msubb{} pv11\_p1\_preempted'base(Cmd;f)
then \mexists{}x:pv11\_p1\_Ballot\_Num()
\mexists{}s:pv11\_p1\_Ballot\_Num() \mtimes{} \mBbbB{} \mtimes{} ((\mBbbZ{} \mtimes{} Cmd) List)
(x \mmember{} pv11\_p1\_preempted'base(Cmd;f)(pred(e))
\mwedge{} s \mmember{} pv11\_p1\_LeaderState(Cmd;ldrs$_{uid}$;f)(pred(e))
\mwedge{} (v = (pv11\_p1\_when\_preempted(Cmd;ldrs$_{uid}$) loc(e) x s)))
else v \mmember{} pv11\_p1\_LeaderState(Cmd;ldrs$_{uid}$;f)(pred(e))
fi )
By
Latex:
((RW (AddrC [1] (LemmaC `pv11\_p1\_LeaderState-classrel`)) 0 THENA Auto)
THEN (RWO "pv11\_p1\_ldr\_state\_fun\_eq" 0 THENA Auto)
THEN Repeat (AutoSplit)
THEN (D 0 THEN Auto)
THEN ProveFunctional)
Home
Index