Step
*
of Lemma
pv11_p1_A4_C1
∀Cmd:ValueAllType. ∀f:pv11_p1_headers_type{i:l}(Cmd). ∀es:EO+(Message(f)). ∀e1,e2:E. ∀accpts,ldrs:bag(Id).
∀ldrs_uid:Id ─→ ℤ. ∀reps:bag(Id). ∀bnum1,bnum2:pv11_p1_Ballot_Num(). ∀accepted1,accepted2:(pv11_p1_Ballot_Num()
× ℤ
× Cmd) List. ∀i1,i2,l:Id.
∀b:pv11_p1_Ballot_Num(). ∀s:ℤ. ∀p1,p2:Cmd.
(Inj(Id;ℤ;ldrs_uid)
⇒ pv11_p1_message-constraint{paxos-v11-part1.esh:o}(Cmd; accpts; ldrs; ldrs_uid; reps; f; es)
⇒ ((<bnum1, accepted1> ∈ pv11_p1_AcceptorState(Cmd;ldrs_uid;f)(e1)
∧ <bnum2, accepted2> ∈ pv11_p1_AcceptorState(Cmd;ldrs_uid;f)(e2)
∧ (<b, s, p1> ∈ accepted1)
∧ (<b, s, p2> ∈ accepted2))
∨ (pv11_p1_p2a'send(Cmd;f) i1 <l, b, s, p1> ∈ pv11_p1_main(Cmd;accpts;ldrs;ldrs_uid;reps;f)(e1)
∧ pv11_p1_p2a'send(Cmd;f) i2 <l, b, s, p2> ∈ pv11_p1_main(Cmd;accpts;ldrs;ldrs_uid;reps;f)(e2)))
⇒ (p1 = p2 ∈ Cmd))
BY
{ StartEmlProof }
1
1. Cmd : {T:Type| valueall-type(T)} @i'
2. f : pv11_p1_headers_type{i:l}(Cmd)@i'
3. (f [decision]) = (ℤ × Cmd) ∈ Type
4. (f [propose]) = (ℤ × Cmd) ∈ Type
5. (f ``pv11_p1 adopted``) = (pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List)) ∈ Type
6. (f ``pv11_p1 preempted``) = pv11_p1_Ballot_Num() ∈ Type
7. (f ``pv11_p1 p2b``) = (Id × pv11_p1_Ballot_Num() × ℤ × pv11_p1_Ballot_Num()) ∈ Type
8. (f ``pv11_p1 p2a``) = (Id × pv11_p1_Ballot_Num() × ℤ × Cmd) ∈ Type
9. (f ``pv11_p1 p1b``)
= (Id × pv11_p1_Ballot_Num() × pv11_p1_Ballot_Num() × ((pv11_p1_Ballot_Num() × ℤ × Cmd) List))
∈ Type
10. (f ``pv11_p1 p1a``) = (Id × pv11_p1_Ballot_Num()) ∈ Type
11. f ∈ Name ─→ Type
12. es : EO+(Message(f))@i'
13. e1 : E@i
14. e2 : E@i
15. accpts : bag(Id)@i
16. ldrs : bag(Id)@i
17. ldrs_uid : Id ─→ ℤ@i
18. reps : bag(Id)@i
19. bnum1 : pv11_p1_Ballot_Num()@i
20. bnum2 : pv11_p1_Ballot_Num()@i
21. accepted1 : (pv11_p1_Ballot_Num() × ℤ × Cmd) List@i
22. accepted2 : (pv11_p1_Ballot_Num() × ℤ × Cmd) List@i
23. i1 : Id@i
24. i2 : Id@i
25. l : Id@i
26. b : pv11_p1_Ballot_Num()@i
27. s : ℤ@i
28. p1 : Cmd@i
29. p2 : Cmd@i
30. Inj(Id;ℤ;ldrs_uid)@i
31. pv11_p1_message-constraint{paxos-v11-part1.esh:o}(Cmd; accpts; ldrs; ldrs_uid; reps; f; es)@i
32. (<bnum1, accepted1> ∈ pv11_p1_AcceptorState(Cmd;ldrs_uid;f)(e1)
∧ <bnum2, accepted2> ∈ pv11_p1_AcceptorState(Cmd;ldrs_uid;f)(e2)
∧ (<b, s, p1> ∈ accepted1)
∧ (<b, s, p2> ∈ accepted2))
∨ (pv11_p1_p2a'send(Cmd;f) i1 <l, b, s, p1> ∈ pv11_p1_main(Cmd;accpts;ldrs;ldrs_uid;reps;f)(e1)
∧ pv11_p1_p2a'send(Cmd;f) i2 <l, b, s, p2> ∈ pv11_p1_main(Cmd;accpts;ldrs;ldrs_uid;reps;f)(e2))@i
⊢ p1 = p2 ∈ Cmd
Latex:
Latex:
\mforall{}Cmd:ValueAllType. \mforall{}f:pv11\_p1\_headers\_type\{i:l\}(Cmd). \mforall{}es:EO+(Message(f)). \mforall{}e1,e2:E.
\mforall{}accpts,ldrs:bag(Id). \mforall{}ldrs$_{uid}$:Id {}\mrightarrow{} \mBbbZ{}. \mforall{}reps:bag(Id). \mforall{}bnum1,bnum2:pv11\_p1\000C\_Ballot\_Num().
\mforall{}accepted1,accepted2:(pv11\_p1\_Ballot\_Num() \mtimes{} \mBbbZ{} \mtimes{} Cmd) List. \mforall{}i1,i2,l:Id. \mforall{}b:pv11\_p1\_Ballot\_Num().
\mforall{}s:\mBbbZ{}. \mforall{}p1,p2:Cmd.
(Inj(Id;\mBbbZ{};ldrs$_{uid}$)
{}\mRightarrow{} pv11\_p1\_message-constraint\{paxos-v11-part1.esh:o\}(Cmd; accpts; ldrs; ldrs$_{uid\mbackslash{}ff7\000Cd$; reps; f; es)
{}\mRightarrow{} ((<bnum1, accepted1> \mmember{} pv11\_p1\_AcceptorState(Cmd;ldrs$_{uid}$;f)(e1)
\mwedge{} <bnum2, accepted2> \mmember{} pv11\_p1\_AcceptorState(Cmd;ldrs$_{uid}$;f)(e2)
\mwedge{} (<b, s, p1> \mmember{} accepted1)
\mwedge{} (<b, s, p2> \mmember{} accepted2))
\mvee{} (pv11\_p1\_p2a'send(Cmd;f) i1 <l, b, s, p1> \mmember{} pv11\_p1\_main(Cmd;accpts;ldrs;ldrs$_{u\000Cid}$;reps;f)(e1)
\mwedge{} pv11\_p1\_p2a'send(Cmd;f) i2 <l, b, s, p2> \mmember{} pv11\_p1\_main(Cmd;accpts;ldrs;ldrs$_{\000Cuid}$;reps;f)(e2)))
{}\mRightarrow{} (p1 = p2))
By
Latex:
StartEmlProof
Home
Index