Proof of Nuprl Lemma : cs-ref-map-changed

Step * of Lemma cs-ref-map-changed

∀[V:Type]
  ((∀v1,v2:V.  Dec(v1 = v2 ∈ V))
  ⇒ {∃v,v':V. (¬(v = v' ∈ V))}
  ⇒ (∀A:Id List. ∀W:{a:Id| (a ∈ A)}  List List.
        (two-intersection(A;W)
        ⇒ (∀f:ConsensusState ─→ (consensus-state3(V) List)
              (cs-ref-map-constraints(V;A;W;f)
              ⇒ (∀x,y:ts-reachable(consensus-ts4(V;A;W)).
                    ((x ts-rel(consensus-ts4(V;A;W)) y)
                    ⇒ (∀i:ℕ
                          (∀v:V

                             ((in state x, inning i could commit v  ∧ (¬in state y, inning i could commit v ))

⇒ ((f y[i] = WITHDRAWN ∈ consensus-state3(V))
∨ ((f x[i] = INITIAL ∈ consensus-state3(V))

                                  ∧ ((f y[i] = INITIAL ∈ consensus-state3(V))

∨ (∃v':V

                                        ((∀j:ℕi. (¬(f x[j] = INITIAL ∈ consensus-state3(V))))

                                        ∧ ((f y[i] = CONSIDERING[v'] ∈ consensus-state3(V))

                                          ∨ (f y[i] = COMMITED[v'] ∈ consensus-state3(V)))

∧ (∀j:ℕi. ∀v'':V.

                                             (((f x[j] = CONSIDERING[v''] ∈ consensus-state3(V))

                                             ∨ (f x[j] = COMMITED[v''] ∈ consensus-state3(V)))

                                             ⇒ (v'' = v' ∈ V)))))))))) supposing
                             (i < ||f y|| and
                             i < ||f x||)))))))))
BY
{ (RepeatFor 10 ((D 0 THENA Auto))
   THEN (Assert (x ∈ ConsensusState) ∧ (y ∈ ConsensusState) BY

               ((DVar `x' THEN DVar `y') THEN All (RepUR ``ts-type consensus-ts4``) THEN Complete (Auto)))

   THEN D -1
   THEN Auto) }

1
1. [V] : Type
2. ∀v1,v2:V.  Dec(v1 = v2 ∈ V)@i
3. {∃v,v':V. (¬(v = v' ∈ V))}@i
4. A : Id List@i
5. W : {a:Id| (a ∈ A)}  List List@i
6. two-intersection(A;W)@i
7. f : ConsensusState ─→ (consensus-state3(V) List)@i
8. cs-ref-map-constraints(V;A;W;f)@i
9. x : ts-reachable(consensus-ts4(V;A;W))@i
10. y : ts-reachable(consensus-ts4(V;A;W))@i
11. x ∈ ConsensusState
12. y ∈ ConsensusState
13. x ts-rel(consensus-ts4(V;A;W)) y@i
14. i : ℕ@i
15. i < ||f x||
16. i < ||f y||
17. v : V@i
18. in state x, inning i could commit v @i
19. ¬in state y, inning i could commit v @i
⊢ (f y[i] = WITHDRAWN ∈ consensus-state3(V))
∨ ((f x[i] = INITIAL ∈ consensus-state3(V))
  ∧ ((f y[i] = INITIAL ∈ consensus-state3(V))
    ∨ (∃v':V
        ((∀j:ℕi. (¬(f x[j] = INITIAL ∈ consensus-state3(V))))

        ∧ ((f y[i] = CONSIDERING[v'] ∈ consensus-state3(V)) ∨ (f y[i] = COMMITED[v'] ∈ consensus-state3(V)))

∧ (∀j:ℕi. ∀v'':V.

             (((f x[j] = CONSIDERING[v''] ∈ consensus-state3(V)) ∨ (f x[j] = COMMITED[v''] ∈ consensus-state3(V)))

⇒ (v'' = v' ∈ V)))))))

Latex:

\mforall{}[V:Type] ((\mforall{}v1,v2:V. Dec(v1 = v2)) {}\mRightarrow{} \{\mexists{}v,v':V. (\mneg{}(v = v'))\} {}\mRightarrow{} (\mforall{}A:Id List. \mforall{}W:\{a:Id| (a \mmember{} A)\} List List. (two-intersection(A;W) {}\mRightarrow{} (\mforall{}f:ConsensusState {}\mrightarrow{} (consensus-state3(V) List) (cs-ref-map-constraints(V;A;W;f) {}\mRightarrow{} (\mforall{}x,y:ts-reachable(consensus-ts4(V;A;W)). ((x ts-rel(consensus-ts4(V;A;W)) y) {}\mRightarrow{} (\mforall{}i:\mBbbN{} (\mforall{}v:V ((in state x, inning i could commit v \mwedge{} (\mneg{}in state y, inning i could commit v )) {}\mRightarrow{} ((f y[i] = WITHDRAWN) \mvee{} ((f x[i] = INITIAL) \mwedge{} ((f y[i] = INITIAL) \mvee{} (\mexists{}v':V ((\mforall{}j:\mBbbN{}i. (\mneg{}(f x[j] = INITIAL))) \mwedge{} ((f y[i] = CONSIDERING[v']) \mvee{} (f y[i] = COMMITED[v'])) \mwedge{} (\mforall{}j:\mBbbN{}i. \mforall{}v'':V. (((f x[j] = CONSIDERING[v'']) \mvee{} (f x[j] = COMMITED[v''])) {}\mRightarrow{} (v'' = v')))))))))) supposing (i < ||f y|| and i < ||f x||))))))))) By (RepeatFor 10 ((D 0 THENA Auto)) THEN (Assert (x \mmember{} ConsensusState) \mwedge{} (y \mmember{} ConsensusState) BY ((DVar `x' THEN DVar `y') THEN All (RepUR ``ts-type consensus-ts4``) THEN Complete (Auto))) THEN D -1 THEN Auto) Home Index