Formal Methods in System Design

, Volume 51, Issue 3, pp 533–544 | Cite as

NP-completeness of small conflict set generation for congruence closure

  • Andreas Fellner
  • Pascal Fontaine
  • Bruno Woltzenlogel Paleo
Open Access


The efficiency of satisfiability modulo theories (SMT) solvers is dependent on the capability of theory reasoners to provide small conflict sets, i.e. small unsatisfiable subsets from unsatisfiable sets of literals. Decision procedures for uninterpreted symbols (i.e. congruence closure algorithms) date back from the very early days of SMT. Nevertheless, to the best of our knowledge, the complexity of generating smallest conflict sets for sets of literals with uninterpreted symbols and equalities had not yet been determined, although the corresponding decision problem was believed to be NP-complete. We provide here an NP-completeness proof, using a simple reduction from SAT.


Satisfiability modulo theories Decision procedures Congruence closure Complexity 

1 Introduction

Satisfiability modulo theory solvers are nowadays based on a cooperation between a propositional satisfiability (SAT) solver and a theory reasoner for the combination of theories supported by the SMT solver. The propositional structure of the problem is handled by the SAT solver, whereas the theory reasoner only has to deal with conjunctions of literals. Very schematically (we refer to [1] for more details) the Boolean abstraction of the SMT problem is repeatedly refined by adding theory conflict clauses that eliminate spurious models of the abstraction, until either unsatisfiability is reached, or a model of the SMT formula is found. Refinements can be done by refuting models of the propositional abstraction one at a time. It is, however, much more productive to refute all propositional models that are spurious for the same reason at once. A model of the abstraction is spurious if the set of concrete literals corresponding to the abstracted literals satisfied by this model is unsatisfiable modulo the theory. Given such an unsatisfiable set of concrete literals, the disjunction of the negations of any unsatisfiable subset (a.k.a. core) is a suitable conflict clause. By backtracking and asserting the conflict clause, the SAT-solver is prevented from generating the spurious model again. The smaller the clause, the stronger it is and the more spurious models it prevents. Therefore, an optimal conflict clause, corresponding to a minimal unsatisfiable subset of literals (i.e. such that all its proper subsets are satisfiable) or even a minimum one (i.e. smallest among the minimals) is desirable. This feature of the theory reasoners to generate small conflict sets (a name adopted in [1]) from their input is also referred to as proof production [8, 9] or explanation generation [10].

Decision procedures for the theory of uninterpreted symbols and equality can be based on congruence closure [3, 7, 10]. The decision problem is polynomial and even quasi-linear [3] with respect to the number of terms and literals in the input set. Producing minimal conflict sets also takes polynomial time. Indeed, testing if a set S remains unsatisfiable after removal of one of its literals is also polynomial. It suffices then to repeatedly test the |S| literals of S to check if they can be removed. The set S pruned of its unnecessary literals is minimal. One could also profit from the incrementality of the decision procedure [6].

It has also been common knowledge that computing minimum conflict clauses for the theory of uninterpreted symbols and equality is a difficult problem. But, to our best knowledge, the complexity of finding the smallest conflict clause generation for sets of literals with uninterpreted symbols and equalities has never been established. The complexity of the corresponding decision problem (i.e. of whether there exists a conflict clause with size smaller than a given k) is mentioned to be NP-complete in [10]—with a reference to a private communication with Ashish Tiwari—but neither the authors of [10] nor Ashish Tiwari published a written proof of this fact.1

Our interest in this problem arose from our work on Skeptik [2], a tool for the compression of proofs generated by SAT and SMT solvers. For the sake of moving beyond the purely propositional level, we have developed an algorithm for compressing congruence closure proofs, which consists of regenerating (possibly smaller) congruence closure conflict clauses while traversing the proof. Congruence closure conflict clauses are typically generated from paths in the congruence graph maintained by the congruence closure algorithm [5, 9, 10]. In order to obtain small conflict clauses, and thereby small congruence closure proofs, we (dynamically) assigned weights to the congruence graph and searched for shortest paths in that graph. The weights of input equations would be 1, whereas the weight of a congruence edge would be the size of an explanation of its equation. This raised the question whether we could construct shortest conflict clauses as shortest paths in such weighted congruence graphs, by applying a polynomial time shortest path algorithm to a graph of polynomial size. We answered this question negatively by proving that the problem of deciding whether a shorter conflict clause exists is NP-hard. The goal of this article is to present this proof. The reason why the shortest path method is not able to find shortest conflict clauses is that the weights for congruence edges can not be accurately determined a priori. A preliminary version was presented at the SMT Workshop 2015 [4].

2 Preliminaries

We assume knowledge of propositional logic and quantifier-free first-order logic with equality and uninterpreted symbols, and only enumerate the notions and notations used in this article. A literal is either a propositional variable or the negation of a propositional variable. A clause is a disjunctive set of literals. A propositional variable x appears positively (negatively) in a clause C if \(x \in C\) (resp. \(\lnot x \in C\)). The notations \(\{\ell _1, \dots \ell _n\}\) and \(\ell _1 \vee \dots \vee \ell _n\) will be used interchangeably. A clause is tautological if and only if it contains a variable both positively and negatively. We shall tacitly assume that clauses are non-tautological, except when explicitly stated otherwise. Clauses being sets, they cannot contain multiple occurrences of the same literal. A formula in conjunctive normal form (CNF for short) is a conjunctive set of clauses. A total (partial) assignment \(\mathcal I\) for a formula in propositional logic assigns a value in \(\{\top , \bot \}\) to each (resp. some) propositional variable(s) in the formula. An assignment \(\mathcal I\) for a formula F is a model of F, denoted \(\mathcal{I}\models F\), if it makes the formula F true. A formula is satisfiable if it has a model, it is unsatisfiable otherwise. A total or partial assignment is perfectly defined by the set of literals it makes true. By default, an assignment is total unless explicitly said to be partial. A set of formulas E entails a (set of) formula(s) \(E'\), denoted \(E\models E'\), if every model of E is a model of \(E'\).

We now define the necessary notions for quantifier-free first-order logic.

Definition 1

(Terms and equations) A signature \(\Sigma \) is a finite set of function symbols \({\mathcal {F}}\) equipped with an arity function \({\mathcal {F}} \rightarrow {\mathbb {N}}\). A constant is a nullary function. A unary function has arity one. Given a signature \(\Sigma \), the set of terms \({\mathcal {T}}^{\Sigma }\) is the smallest set containing all constants in \({\mathcal {F}}\) and all terms of the form \(g(t_1,\ldots , t_n)\), where g is a function symbol of arity n in \({\mathcal {F}}\) and \(t_1,\ldots ,t_n\) are terms in \({\mathcal {T}}^{\Sigma }\). An equation between two terms st in \({\mathcal {T}}^{\Sigma }\) is denoted by \(s=t\).

Signatures commonly include predicate symbols. Everything extends smoothly to signatures with predicates, but to simplify, a quantifier-free first-order logic formula is here just a Boolean combination of equalities between terms; a literal is either an equation or the negation of an equation.

The terms \(t_1,\ldots ,t_n\) are direct subterms of \(g(t_1,\ldots ,t_n)\). The subterm relation is the reflexive and transitive closure of the direct subterm relation. Given a set of equations E, we denote by \({\mathcal {T}}(E)\) the set of terms and subterms occurring in the equations.

An assignment \(\mathcal{I}\) on some signature maps each constant to an element in a universe \({\mathcal {U}}\), and each function symbol to a function of appropriate arity on \({\mathcal {U}}\). By extension, it assigns an element in \({\mathcal {U}}\) to every term, and a value to every equation \(s=t\), namely \(\top \) if \({\mathcal {I}}(s) = {\mathcal {I}}(t)\) and \(\bot \) otherwise. Like in propositional logic, an assignment on some signature thus gives a truth value to every formula on this signature.

Definition 2

(Congruence relation) Given a set of terms \(\mathcal {T}\) closed under the subterm relation, a relation \(R \subseteq \mathcal {T} \times \mathcal {T}\) is a congruence if it is
  • reflexive: \((t,t) \in R\) for each \(t \in {\mathcal {T}}\);

  • symmetric: \((s,t) \in R\) if \((t,s) \in R\);

  • transitive: \((r,t) \in R\) if \((r,s) \in R\) and \((s,t) \in R\);

  • compatible: \((g(t_1,\ldots ,t_n),g(s_1,\ldots ,s_n)) \in R\) if g is a n-ary function symbol and \((t_i,s_i) \in R\) for all \(i = 1,\ldots ,n\).

A congruence relation is also an equivalence relation, since it is reflexive, transitive and symmetric. Therefore a congruence relation partitions its underlying set of terms \({\mathcal {T}}\) into congruence classes, such that two terms (st) belong to the same class if and only if \((s,t) \in R\). The relations \(\left\{ {\left( {t, t}\right) : t \in {\mathcal {T}}}\right\} \) and \({\mathcal {T}} \times {\mathcal {T}}\) are trivial congruence relations. An assignment \(\mathcal I\) on a signature \(\Sigma \) defines a congruence relation on any subset \({\mathcal {T}}\subseteq {\mathcal {T}}^{\Sigma }\), that is, \(R = \{(s,t) \ |\ {\mathcal {I}}(s = t) = \top \}\).

An equation \(s = t\) on terms in a set \({\mathcal {T}}\) can be seen as a singleton relation \(\{(s,t)\} \subseteq {\mathcal {T}} \times {\mathcal {T}}\). By extension, a set of equations can also be seen as a relation, i.e., the union of the singleton relations.

Definition 3

(Congruence closure) The congruence closure \(E^*\) of a set of equations E on a set of terms \({\mathcal {T}}\) closed under the subterm relation is the smallest congruence relation on \({\mathcal {T}}\) containing E.

Since congruence relations are closed under intersection, the congruence closure of a set of equations always exists. Also notice that, if \((s,t) \in E^{*}\), then \(E \models s = t\). We say that E is an explanation for \(s = t\).

An algorithm computing the congruence closure of a relation is also a decision procedure for the problem of satisfiability of sets of equalities and disequalities in quantifier-free first-order logic with uninterpreted (predicates and) functions. It suffices indeed to compute the congruence closure of all equalities on the terms and subterms occurring in the literals. Then, the set of literals is satisfiable if and only if there is no disequality with both terms in the same class. A model can be built from the congruence closure, on a universe with cardinality equal to the number of classes in the congruence.

3 Congruence closure in practice

The algorithms we consider in the following take as input a set of literals E. Considering complexity, not only the cardinality of the set is important, but also the number of terms and subterms as well as the number of their occurrences. Congruence closure algorithms in modern SMT solvers typically represent terms with Directed Acyclic Graphs (DAGs) using maximal sharing, and not trees. The number of term and subterm occurrences does not matter, but only the number of distinct (sub)terms. The input is also typically not a set, but successive calls to an assertion function with a literal as argument: every repetition of the same literal then matters for complexity. Let us assume, however, that the input is a set E, terms are DAGs with maximal sharing (i.e. identity of atomic symbols and complex terms can be checked in constant time). Therefore, we characterize complexity results in terms of number of literals, terms and subterms of the input set, i.e. |E| and \(|{\mathcal {T}}(E)|\).

Since congruence relations are basically partitions of equivalent terms that additionally satisfy the compatibility property, it is unsurprising that practical congruence closure algorithms, or decision procedures for ground sets of first-order logic literals, are based on some kind of union-find data-structure. Terms (and subterms) are put into equivalence classes, according to the equalities in the input. The algorithms furthermore check, every time two classes of the partition are merged, whether any new equality induced by compatibility has to be taken into account. Also, it checks that the congruence is consistent with the set of disequalities. We refer the reader to [3, 7, 10] for more details. The complexity of those algorithms depend on the internal data-structures and on the representation of terms [3]. Algorithms typically implemented in SMT solvers have complexity \({\mathcal {O}}(|E| + (|{\mathcal {T}}(E)| \cdot \log |{\mathcal {T}}(E)|))\) assuming constant time operations on the hash table being used to detect new equalities induced by compatibility.

The generation of conflict sets or explanations is based on the congruence graph: its nodes are the terms and subterms considered by the algorithm. An edge in the graph is either a full edge, linking two nodes s and t and labeled by an input equation \(s=t\), or a congruence edge (a dotted edge in the figures in this article), linking two terms with the same leading function symbol and labeled by the compatibility-deduced equality between both terms. The graph has a path between two terms if and only if they belong to the same congruence class. The equality between two terms in the same class is a logical consequence of the set of equations labeling the path. To get an explanation for the equality of two terms in the same class, that is, a set of input equations implying the equality of the two terms, it thus suffices to collect the set of equations labeling a path, and recursively replace any compatibility equation \(g(t_1,\ldots ,t_n) = g(s_1,\ldots ,s_n)\) by the explanations of \(t_1=s_1\),..., \(t_n=s_n\).
Fig. 1

An example congruence graph

Example 1

A congruence graph for two input equations \(a = f(f(f(a)))\) and \(a = f(f(f(f(f(a)))))\) is given on Fig. 1. Labeling equations are omitted for simplicity. There is a path between a and f(a), so both terms are equal if the input equations hold. To compute an explanation for \(a=f(a)\), it suffices to collect the equalities on the path, that is, the input equation \(a=f(f(f(a))))\) and the compatibility equation \(f(a)=f(f(f(a)))\). This last equation should then be replaced by the equation between the arguments, i.e., \(a=f(f(a)))\) which is consequence, by transitivity, of another compatibility equation and of the other input equation \(a = f(f(f(f(f(a)))))\). Hence the explanation will contain both equations.

Practical congruence closure algorithms with explanation build a congruence graph while computing the congruence closure. Every time the decision procedure merges two classes, either because of an input equation or because an equality was deduced due to compatibility, a full- or congruence- edge is added to the graph. Since edges between nodes are only added when their respective congruence classes are merged, the path between two terms in the same class is unique. The explanation that two terms are equal is also unique, but there is no guarantee that this explanation is the smallest one. Indeed, it may happen that the algorithm considers, e.g. equations \(a=b\) and \(b=c\) before \(a=c\), merging a, b and c before considering the last equation, and thus discarding \(a=c\) as redundant: in that case, \(a=c\) would have been the smallest proof that a and c are equal, but the congruence graph would only consider the two other equalities. There is not even a guarantee that the explanation is minimal. Again, the congruence closure algorithm can prove that \(a = f(b)\) from the input equations \(b = f(a)\), \(f(a) = f(b)\) and \(a = b\). The redundant equality \(f(a) = f(b)\) would be recorded in the congruence graph, and thus be part of the explanation, if it is considered before \(a = b\).

In practice, the congruence closure procedures implemented in SMT solvers produce explanations efficiently: the complexity of the explanation production is quasi-linear with respect to the explanation size, which is at most equal to the size of the input [10]. But the explanations are not optimal, i.e. they are not always the smallest. In fact, they are not even minimal. It is possible to compute minimal explanations in polynomial time; it suffices for instance to compute again the congruence closure iteratively removing every equation in the explanation, to see if it is redundant or not. One could (naively) hope to conceive a different congruence closure algorithm generating the smallest explanation in polynomial time. For example, one might attempt to modify the iterative removal algorithm; or attempt to modify shortest path algorithms and apply them to congruence graphs enriched with redundant equations as labels. However, such attempts would be futile. As proven in the next section, the corresponding decision problem is NP-hard.

4 NP-completeness of the small conflict set problem

The function problem of generating the smallest conflict set corresponds to the decision problem of deciding whether a conflict set with size smaller than a given k exists.

Definition 4

(Small conflict set problem) Given an unsatisfiable set E of literals in quantifier-free first-order logic with equality and \(k \in {\mathbb {N}}\), the small conflict set generation problem is the problem of deciding whether there exists an unsatisfiable set \(E' \subseteq E\) with \(|E'| \le k\).

If we had a polynomial-time algorithm \(\alpha \) capable of generating the smallest conflict set for any unsatisfiable set E, then we could decide in polynomial time any instance of the small conflict set problem by applying \(\alpha \) to E and checking whether \(\alpha (E)\) has size smaller than k. However, as proven below, the small conflict set problem is NP-complete and, therefore, polynomial time generation of conflict sets with minimum size is not possible (unless P = NP). Our proof reduces the problem of deciding the satisfiability of a propositional logic formula in conjunctive normal form (SAT) to the small explanation problem.

Definition 5

(Small explanation problem) Given a set of equations \(E = \{ s_1=t_1,\ldots s_n=t_n\}\), \(k \in {\mathbb {N}}\) and a target equation \(s = t\), the small explanation problem is the problem of answering whether there exists a set \(E'\) such that \(E' \subseteq E\), \(E' \models s = t\) and \(|E'| \le k\).

The small explanation problem and the small conflict set problem are closely related: there is a small explanation of size k of \(s=t\) from E if and only if there is a small conflict of size \(k+1\) for \(E \cup \{s\ne t\}\).

In the following we describe a polynomial translation from instances of the propositional satisfiability problem to instances of the small explanation problem. The translation consists of two parts: a translation of propositional formulas, here assumed, without loss of generality, to be in CNF (as shown in Definition 6), and a translation of assignments (as shown in Definition 7).

Definition 6

(CNF congruence translation) Let \({\mathcal {C}}\) be a set of propositional clauses \(\{C_1,\ldots C_n\}\) using variables \(x_1,\ldots ,x_m\). The congruence translation \(E_{\mathcal {C}}\) of \({\mathcal {C}}\) is defined as the set of equations
$$\begin{aligned} E_{\mathcal {C}} = { Connect}\cup \bigcup _{1 \le i \le n}{ Clause}_i \end{aligned}$$
$$\begin{aligned} { Connect}= & {} \{ c_{i}' = c_{i+1} \ \mid \ 1 \le i < n\}\\ { Clause}_i= & {} \{ c_i = t_i(\hat{x}_j) \ \mid \ x_j \text { appears in } C_i \}\\&\cup \ \{ t_i(\top _j) = c_i' \ \mid \ x_j \text { appears positively in } C_i \}\\&\cup \ \{ t_i(\bot _j) = c_i' \ \mid \ x_j \text { appears negatively in } C_i \} \end{aligned}$$
where \(c_{1},\dots c_{n},c_{1}', \dots c_{n}', \hat{x}_1, \dots \hat{x}_m, \top _1, \dots \top _m, \bot _1, \dots \bot _m\) are distinct constants, and \(t_1, \dots t_n\) are distinct unary functions.2

Remark 1

Note that the constants \(\top _i\) and \(\bot _i\) (for \(1 \le i \le m)\)) should not be confused with the Boolean values \(\top \) and \(\bot \). The intuitive relationship between these constants and the boolean values is established in Definition 7.

The translation of clauses is illustrated by the following example.

Example 2

Consider the set of clauses \(\mathcal {C}\)
$$\begin{aligned} \big \{C_1 = x_1 \vee x_2 \vee \lnot x_3, C_2 = \lnot x_2 \vee x_3, C_3 = \lnot x_1 \vee \lnot x_2\big \}. \end{aligned}$$
Figure 2 represents the congruence translation of \({\mathcal {C}}\) graphically, an edge between two nodes meaning that the set contains an equation between the terms labeling the two nodes.

Definition 7

(Assignment congruence translation) The assignment congruence translation \(E_{\mathcal {I}}\) of an assignment \({\mathcal {I}}\) on propositional variables \(x_1,\ldots ,x_m\) is the set of equations
$$\begin{aligned} E_{\mathcal {I}}= & {} \phantom {\cup }\ \{ \hat{x}_j = \top _j \ \mid \ 1 \le j \le m \text { and } {\mathcal {I}} \models x_j \} \\&\cup \ \{ \hat{x}_j = \bot _j \ \mid \ 1 \le j \le m \text {and} {\mathcal {I}} \models \lnot x_j \} \end{aligned}$$
For convenience, we also define the set
$$\begin{aligned} { AssignmentEqs}= \{ {\hat{x}}_{j} = \top _{j}, {\hat{x}}_{j} = \bot _j \ \mid \ 1 \le j \le m\}. \end{aligned}$$

An assignment congruence translation is always a subset of \({ AssignmentEqs}\). By extension, a subset of \({ AssignmentEqs}\) is said to be an assignment if it is the congruence translation of an assignment, that is, if it does not contain both \(\hat{x}_{j} = \top _{j}\) and \(\hat{x}_{j} = \bot _{j}\) for some j.

Example 3

(Example 2 continued) Consider the model \(\mathcal {I} = \{x_1, \lnot x_2, x_3\}\) of \(\mathcal {C}\). Figure 3 gives a graphical representation of \(E_{\mathcal {I}}\), whereas \({ AssignmentEqs}\) is represented in Fig. 4. Notice that \(E_{\mathcal {C}} \cup E_{\mathcal {I}} \models c_1 = c'_3\), and \(c_1\) and \(c'_3\) are connected in the congruence graph of \(E_{\mathcal {C}} \cup E_{\mathcal {I}}\) (Fig. 5), the path containing both full edges corresponding to equalities in \(E_{\mathcal {C}} \cup E_{\mathcal {I}}\), and dotted edged corresponding to equalities due to the compatibility property of the congruence relation.

Fig. 2

The congruence translation \(E_{\mathcal {C}} = { Connect}\cup \bigcup _{1 \le i \le n}{ Clause}_i\) of \({\mathcal {C}}\)

Fig. 3

Congruence translation of \({\mathcal {I}}\)

Fig. 4

\({ AssignmentEqs}\)

Fig. 5

The congruence graph for \(E_{\mathcal {C}} \cup E_{\mathcal {I}}\)

Lemma 1

Consider a (partial or total) assignment \({\mathcal {I}}\) for non-tautological clauses \({\mathcal {C}}= \{C_1, \dots C_n\}\). Then \({\mathcal {I}} \models \mathcal {C}\) if and only if \(E_{\mathcal {I}} \cup E_{\mathcal {C}} \models c_1 = c'_n\).


Let the propositional variables in \(\mathcal {C}\) be \(x_1,\ldots , x_m\).

(\(\Leftarrow \)) Consider the congruence graph induced by \(E_{\mathcal {I}} \cup E_{\mathcal {C}}\). Besides edges directly associated to equalities in the set, the only edges are congruence edges between terms \(t_{i}({\hat{x}}_{j})\) and either \(t_{i}(\top _j)\) or \(t_i(\bot _{j})\). So any path from \(c_{1}\) to \(c'_{n}\) would go through such a congruence edge for each i. And such an edge exists for i if and only if the clause i is satisfied by \({\mathcal {I}}\).

(\(\Rightarrow \)) If \({\mathcal {I}} \models {\mathcal {C}}\), then \({\mathcal {I}} \models C_{i}\) for each clause \(C_{i} \in {\mathcal {C}}\). Assume \({\mathcal {I}}\) makes true a variable \(x_{j}\), literal of \(C_{i}\) (the case of the negation of a variable is handled similarly). Then \(E_{\mathcal {I}} \models t_{i}(\hat{x}_{j}) = t_{i}(\top _{j})\), and \(E_{\mathcal {I}} \cup { Clause}_{i} \models c_{i} = c_{i}'\). This is true for each i, and thanks to the equations in Connect, one can deduce using transitivity that \(E_{\mathcal {I}} \cup E_\mathcal {C} \models c_{1} = c_{n}'\). \(\square \)

Lemma 2

Consider a (partial or total) assignment \({\mathcal {I}}\) for non-tautological clauses \(\mathcal {C}= \{C_{1}, \dots C_{n}\}\) on variables \(x_{1},\ldots , x_m\). \(|E_{\mathcal {I}} \cup E_{\mathcal {C}}|\) and \(|\mathcal {T}(E_{\mathcal {I}} \cup E_{\mathcal {C}})|\) are polynomial in n and m.


\(E_{\mathcal {I}}\) contains at most m equations, since for no j both \(\mathcal {I} \models x_{j}\) and \(\mathcal {I} \models \lnot x_{j}\). The set \({ Connect}\) contains exactly \(n-1\) equations. For every i, the set \({ Clause}_{i}\) contains at most 2m equations, resulting in 2mn equations for all clauses. In total, we thus have \(|E_{\mathcal {I}} \cup E_{\mathcal {C}}| \le n-1 + m + 2mn\).

\(E_{\mathcal {I}} \cup E_\mathcal {C}\) contains at most \(2n + 3m + 3mn\) terms: 2n for \(c_{i},c_{i}'\), 3m for \(\hat{x}_{j},\top _{j},\bot _{j}\) and 3mn for all possible combinations of \(t_{i}(\hat{x}_{j}),t_{i}(\top _{j}),t_{i}(\bot _{j})\). \(\square \)

Considering again Example 3, and particularly Figure 5, any transitivity chain from \(c_1\) to \(c'_3\) will pass through \(c'_1\), \(c_2\), \(c_2'\) and \(c_3\). Any acyclic path from \(c_1\) to \(c'_3\) will contain 11 edges: 3 congruence edges, \(3*2\) edges in \({ Clause}_i\) for \(i=1,2,3\) and 2 edges from \({ Connect}\).

Since every interpretation \(\mathcal {I}\) is such that \(E_{\mathcal {I}} \subset { AssignmentEqs}\), one can try to relate the propositional satisfiability problem for a set of clauses \(\mathcal {C}= \{C_{1}, \dots C_n\}\) to finding an explanation of \(c_1 = c_n'\) in \({ AssignmentEqs}\cup E_{\mathcal {C}}\). However, it is necessary that this explanation does not set \(\hat{x}_{j}\) equal both to \(\top _{j}\) and \(\bot _{j}\), i.e. at most one of the two equations \(\hat{x}_{j} = \top _{j}\) and \(\hat{x}_{j} = \bot _{j}\) should be in the explanation. By restricting assignments to total ones, i.e. by enforcing that at least one of the two equations \(\hat{x}_{j} = \top _{j}\) and \(\hat{x}_{j} = \bot _{j}\) belongs to the explanation, it is also possible, with a single cardinality condition on the explanation size, to require that at most one of them belong to the explanation.

Lemma 3

A set of non-tautological clauses \(\mathcal {C}= \{C_1, \dots C_n\}\) using variables \(x_1,\dots , x_m\) is satisfiable if and only if there is a set \(E'\) such that \(E' \subseteq { AssignmentEqs}\cup E_{\mathcal {C}'}\), \(E'\models c_1~=~c'_{n+m}\) and \(|E'| \le 3n+4m-1\), where \(\mathcal {C}'\) is \(\mathcal {C}\) augmented with the tautological clauses \(C_{n+i}~=~x_i \vee \lnot x_i\) for \(i=1,\dots m\).


(\(\Rightarrow \)) Consider a total model \(\mathcal {I}\) for \({\mathcal {C}}\). We show that there is a set \(E \subset E_{\mathcal {C}'}\), such that together with the congruence translation \(E_{\mathcal {I}}\) of \({\mathcal {I}}\) it follows \(E'~=~E \cup E_{\mathcal {I}} \models c_1~=~c'_{n+m}\) and \(|E'| \le 3n+4m-1\).

The set \(E_{\mathcal {I}}\) contains m equations, since it is the congruence translation of a total assignment.

For each clause \(C_{i}\) (\(i= 1\dots n + m\)), there is a literal in \(C_{i}\) that is satisfied by the model \({\mathcal {I}}\). Let \(x_{j}\) be the variable of that literal.

Suppose \({\mathcal {I}} \models x_{j}\), then the set E contains equations \(c_{i}~=~t_{i}(\hat{x}_j), t_{i}(\top _{j})~=~c'_{i}\) of \(Clause_{i}\). These equations are in \(Clause_{i}\), because \(x_{j}\) is the satisfying literal of \(C_{i}\), thus surely \(x_{j} \in C_{i}\). From compatibility and the fact that \(\hat{x}_{j}~=~\top _{j}~\in ~E_{\mathcal {I}}\) it follows that \(E \cup E_{\mathcal {I}} \models t_{i}(\hat{x}_{j})~=~t_{i}(\top _{j})\). Finally, from transitivity and the three equations \(c_{i}~=~t_{i}(\hat{x}_{j})\), \(t_{i}(\hat{x}_{j})~=~t_{i}(\top _{j})\), \(t_i(\top _j)~=~c'_i\) it follows that \(E \cup E_{\mathcal {I}} \models c_i~=~c'_i\).

The case \({\mathcal {I}} \not \models x_{j}\) is symmetric, such that via equations \(c_{i}~=~t_{i}(\hat{x}_{j})\), \(t_i(\hat{x}_{j})~=~t_i(\bot _j)\), \(t_{i}(\bot _{j})~=~c'_{i}\), it follows \(E \cup E_{\mathcal {I}} \models c_i~=~c'_i\).

In addition to 2 equations for each of the \((n~+~m)\) clauses, the set E contains all \(n + m - 1\) equations of \({ Connect}\), that is \(c'_i~=~c_{i+1}\) for \(i~=~1\dots n + m - 1\). From transitivity it follows that \(E \cup E_{\mathcal {I}} \models c_1~=~c'_{n+m}\).

In total, E contains \(2(n~+~m)\) of the sets \(Clause_i\), \(n+m-1\) equations from \({ Connect}\) and m equations from \(E_{\mathcal {I}}\), i.e. \(|E|~=~3n + 4m - 1\).

(\(\Leftarrow \)) Suppose there is a set of equations \(E' \subseteq { AssignmentEqs}\cup E_{\mathcal {C}'}\) such that \(E'\models c_1~=~c'_{n+m}\) and \(|E'| \le 3n+4m-1\). \(E'\) has to contain \(2(n~+~m)\) equations from \({ Clause}_{i}\) (\(i= 1\dots n + m\)), that is one pair of equations \(c_{i}~=~t_{i}(.)\) and \(t_{i}(.)~=~c'_{i}\) for every clause, and \(n + m - 1\) equations from \({ Connect}\), since by construction there is no other possibility to deduce \(c_i~=~c'_i\). Furthermore, thanks to the tautological clauses, \(E'\) also has to contain at least \(\hat{x}_j~=~\top _j\) or \(\hat{x}_j~=~\bot _j\) for each \(j\in \{1\dots m\}\). Therefore, the cardinality condition \(|E'| \le 3n+4m-1\) and the fact that \(E'\) contains \(3(n~+~m) - 1\) equations from \(Clause_{i}\) and \({ Connect}\), requires that the \(E'\) contains at most one \(\hat{x}_{j} = \top _{j}\) or \(\hat{x}_{j}~=~\bot _{j}\) for each \(j\in \{1\dots m\}\). Therefore, we have that \(E_{\mathcal {I}}~=~E' \cap { AssignmentEqs}\) is the congruence translation of an assignment and Lemma 1 guarantees the existence of a model for \(\mathcal {C'}\), or equivalently for the original set of clauses \(\mathcal {C}\). \(\square \)

Example 4

In Lemma 3, the input formula is augmented with tautological clauses. We demonstrate here the necessity of these extra clauses on the unsatisfiable formula \(\varphi = (x_1 \vee x_2) \wedge (\lnot x_1 \vee x_2) \wedge (x_1 \vee \lnot x_2) \wedge (\lnot x_1 \vee \lnot x_2)\).

Figure 6 shows the congruence translation of \(\varphi \) together with a subset of \({ AssignmentEqs}\) that yields an explanation for \(c_{1} = c_{4}'\). This explanation picks, besides the necessary equations from the clause and connect parts, two equations from the \({ AssignmentEqs}\) part. However, this explanation maps \(x_{1}\) to \(\bot \) and \(\top \) at the same time, and hence cannot correspond to a (consistent) assignment. With the addition of tautological clauses and because the number of equations in the explanation is upper bounded, spurious explanations of this kind are ruled out. This is illustrated in Fig. 7, depicting the congruence translation of \(\varphi \) conjoined with the tautological clauses \((x_{1}~\vee ~\lnot x_{1})\) and \((x_{2}~\vee ~\lnot x_{2})\), together with the same subset of \({ AssignmentEqs}\) used in Fig. 6. As desired, this subset is not an explanation of \(c_1 = c_6'\), since the transitivity chain stops at \(t_{6}(\hat{x}_{2})\), \(x_{2}\) being unassigned. In fact, in this congruence graph, there is no explanation of \(c_{1} = c_{6}'\) with less than 19 equations. This is as expected, since \(\varphi \) is unsatisfiable and \(3n+4m-1 = 19\) in our example with \(n=4\) clauses and \(m=2\) variables.

Fig. 6

The congruence translation of \(\varphi \) and a spurious short explanation

Fig. 7

The congruence translation of \(\varphi \) with tautological clauses

Corollary 1

(NP-hardness) The small explanation problem is NP-hard.


Propositional satisfiability is NP-hard, and can be reduced in polynomial time to the small explanation problem. \(\square \)

Lemma 4

(NP) The small explanation problem is in NP.


Let E be a set of equations and \(s=t\) be a target equation. A solution to the explanation problem for some \(k \in {\mathbb {N}}\) is a subset \(E' \subseteq E\), such that \(|E'| \le k\). Let \(n = |{\mathcal {T}}(E)| + |E|\) and \(n' = |{\mathcal {T}}(E')| + |E'|\). We have \(n' \le n\), since \(E' \subseteq E\) and every term in \(E'\) appears also in E. Checking whether \(E'\) is an explanation of \(s=t\) can be done by computing its congruence closure, which is possible in polynomial time in \(n'\) [7] and thereby also in n. \(\square \)

Theorem 1

(Small explanation NP-completeness) The small explanation problem is NP-complete.


By Corollary 1 and lemma 4.\(\square \)

Theorem 2

(Small conflict NP-completeness) The small conflict set problem is NP-complete.


The small conflict set problem is at least as hard as the small explanation problem since the small explanation problem has been showed to be reducible to the small conflict set problem. It is also in NP for exactly the same reason that the small explanation problem is. \(\square \)

5 Conclusion

The conflict set generation feature of congruence algorithms is essential for practical SMT solving. Although one could argue that the important property of the generated conflicts is minimality (i.e. no useless literal is in the conflict), it is also interesting to consider producing the smallest conflict. We have shown that the problem of deciding whether a conflict of a given size exists is NP-complete. Therefore, it is generally intractable to obtain the smallest conflict.

In [6, 8, 9], methods to obtain small conflicts, but not necessarily the smallest, are discussed. In practice, it pays off to prioritize speed of the congruence closure algorithm and conflict generation over succinctness of conflicts. However, other applications sensitive to proof size may benefit from other methods prioritizing small conflict size, at a cost of less efficient solving. Thanks to the NP-completeness, one option could be to iteratively encode the small conflict problem into SAT, and use a SAT-solver to find successively smaller conflicts, until the smallest is found. Perhaps an encoding of the problem can be found that differentiates between hard constraints representing relevant instantiations of the axioms of equality as well as the target equation, and soft constraints representing the inclusion of input equations to an explanation. In that case, Max-SAT solvers could be used to find small explanations, in order to leverage efforts that combine decision procedures and optimization techniques.


  1. 1.

    We contacted both Ashish Tiwari and the authors of [10], who confirmed this.

  2. 2.

    It would be possible to define a translation without the \(c_i'\) constants, but they ease the presentation.



Open access funding provided by Austrian Science Fund (FWF). We would like to thank Robert Nieuwenhuis and Ashish Tiwari for discussions and some preliminary ideas that led us to this proof. We are grateful to the anonymous reviewers of this paper and of [4] for their comments.


  1. 1.
    Barrett C, Sebastiani R, Seshia SA, Tinelli C (2009) Satisfiability modulo theories. In: Biere A, Heule MJH, van Maaren H, Walsh T (eds) Handbook of satisfiability, vol 185. Frontiers in artificial intelligence and applications chapter 26. IOS Press, Amsterdam, pp 825–885Google Scholar
  2. 2.
    Boudou J, Fellner A, Paleo BW (2014) Skeptik: A proof compression system. In: Demri S, Kapur D, Weidenbach C (eds) International joint conference on automated reasoning (IJCAR). Lecture notes in computer science, vol 8562. Springer, Berlin, pp 374–380Google Scholar
  3. 3.
    Downey PJ, Sethi R, Tarjan RE (1980) Variations on the common subexpressions problem. J ACM 27(4):758–771MathSciNetCrossRefMATHGoogle Scholar
  4. 4.
    Fellner A, Fontaine P, Hofferek G, Paleo BW (2015) NP-completeness of small conflict set generation for congruence closure. In: Ganesh V, Jovanović D (eds) International workshop on satisfiability modulo theories (SMT)Google Scholar
  5. 5.
    Fontaine P (2004) Techniques for verification of concurrent systems with invariants. PhD thesis, Institut Montefiore, Université de Liege, BelgiumGoogle Scholar
  6. 6.
    Fontaine P, Gribomont EP (2002) Using BDDs with combinations of theories. In: Baaz M, Voronkov A (eds) Logic for programming, artificial intelligence, and reasoning (LPAR). Lecture notes in computer science, vol 2514. Springer, Berlin, pp 190–201Google Scholar
  7. 7.
    Nelson G, Oppen DC (1980) Fast decision procedures based on congruence closure. J ACM 27(2):356–364MathSciNetCrossRefMATHGoogle Scholar
  8. 8.
    Nieuwenhuis R, Oliveras A (2004) Union-find and congruence closure algorithms that produce proofs. In: Tinelli C, Ranise S (eds) Pragmatics of decision procedures in automated reasoning (PDPAR)Google Scholar
  9. 9.
    Nieuwenhuis R, Oliveras A (2005) Proof-producing congruence closure. In: Giesl J (ed) Rewriting techniques and applications (RTA). Lecture notes in computer science, vol 3467. Springer, pp 453–468Google Scholar
  10. 10.
    Nieuwenhuis R, Oliveras A (2007) Fast congruence closure and extensions. Inf Comput 205(4):557–580MathSciNetCrossRefMATHGoogle Scholar

Copyright information

© The Author(s) 2017

Open AccessThis article is distributed under the terms of the Creative Commons Attribution 4.0 International License (, which permits unrestricted use, distribution, and reproduction in any medium, provided you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons license, and indicate if changes were made.

Authors and Affiliations

  1. 1.Austrian Institute of TechnologyWienAustria
  2. 2.Vienna University of TechnologyWienAustria
  3. 3.Inria, LoriaUniversity of LorraineNancyFrance
  4. 4.Australian National UniversityCanberraAustralia

Personalised recommendations