|
|
|---|
|
|
|
|---|
Create messages for a certificate with given destinations.
(make-certificate-messages cert dests) → msgs
For each given address, we create a message with the certificate and with the address as destination.
These are the messages broadcasted to the network when a certificate is created.
Function:
(defun make-certificate-messages (cert dests) (declare (xargs :guard (and (certificatep cert) (address-setp dests)))) (let ((__function__ 'make-certificate-messages)) (declare (ignorable __function__)) (cond ((emptyp dests) nil) (t (insert (make-message :certificate cert :destination (head dests)) (make-certificate-messages cert (tail dests)))))))
Theorem:
(defthm message-setp-of-make-certificate-messages (b* ((msgs (make-certificate-messages cert dests))) (message-setp msgs)) :rule-classes :rewrite)
Theorem:
(defthm make-certificate-messages-of-certificate-fix-cert (equal (make-certificate-messages (certificate-fix cert) dests) (make-certificate-messages cert dests)))
Theorem:
(defthm make-certificate-messages-certificate-equiv-congruence-on-cert (implies (certificate-equiv cert cert-equiv) (equal (make-certificate-messages cert dests) (make-certificate-messages cert-equiv dests))) :rule-classes :congruence)
Theorem:
(defthm in-of-make-certificate-messages (implies (address-setp dests) (equal (in msg (make-certificate-messages cert dests)) (and (messagep msg) (equal (message->certificate msg) (certificate-fix cert)) (in (message->destination msg) dests)))))
Theorem:
(defthm message-set->certificate-set-of-make-certificate-messages (equal (message-set->certificate-set (make-certificate-messages cert dests)) (if (emptyp dests) nil (insert (certificate-fix cert) nil))))