ECE750T-28: Computer-aided Reasoning for Software Engineering...

ECE750T-28:Computer-aided Reasoning for Software Engineering

Lecture 2:Normal Forms and DPLL

Vijay Ganesh(Original notes from Isil Dillig)

Vijay Ganesh(Original notes from Isil Dillig), ECE750T-28: Computer-aided Reasoning for Software Engineering Lecture 2: Normal Forms and DPLL 1/39

Overview

I Last lecture:

I Two simple techniques for proving satisfiability and validity in propositionallogic: truth tables and semantic argument

I Neither very useful for practical automated reasoning

I This Lecture:

I An algorithm called DPLL for determining satisfiability

I Many SAT solvers used today based on DPLL (more precisely,conflict-driven clause-learning)

I However, requires converting formulas to a respresentation called normalforms

I The plan: First talk about normal forms, then discuss DPLL

Overview

I Last lecture:

I This Lecture:

Overview

I Last lecture:

I This Lecture:

Overview

I Last lecture:

I This Lecture:

Overview

I Last lecture:

I This Lecture:

Overview

I Last lecture:

I This Lecture:

Normal Forms

I A normal form of a formula F is another formula F ′ such that F isequivalent to F ′, but F ′ obeys certain syntactic restrictions.

I There are three kinds of normal forms that are interesting in propositionallogic:

I Negation Normal Form (NNF)

I Disjunctive Normal Form (DNF)

I Conjunctive Normal Form (CNF)

Normal Forms

Negation Normal Form (NNF)

Negation Normal Form requires two syntactic restrictions:

I The only logical connectives are ¬,∧,∨ (i.e., no →, ↔)

I Negations appear only in literals

I i.e., negations not allowed inside ∧, ∨, or any other ¬

I i.e., negations can only appear in front of variables

I Is formula p ∨ (¬q ∧ (r ∨ ¬s)) in NNF?

I What about p ∨ (¬q ∧ ¬(¬r ∧ s))?

I What about p ∨ (¬q ∧ (¬¬r ∨ ¬s))?

I Is formula p ∨ (¬q ∧ (r ∨ ¬s)) in NNF? Yes!

I What about p ∨ (¬q ∧ ¬(¬r ∧ s))? No!

I What about p ∨ (¬q ∧ (¬¬r ∨ ¬s))? No!

Conversion to NNF I

I To make sure the only logical connectives are ¬,∧,∨, need to eliminate →and ↔

I How do we express F1 → F2 using ∨,∧,¬?

F1 → F2 ⇔ ¬F1 ∨ F2

I How do we express F1 ↔ F2 using only ¬,∧.∨?

F1 ↔ F2 ⇔ (¬F1 ∨ F2) ∧ (¬F2 ∨ F1)

Conversion to NNF I

F1 → F2 ⇔ ¬F1 ∨ F2

F1 ↔ F2 ⇔ (¬F1 ∨ F2) ∧ (¬F2 ∨ F1)

Conversion to NNF I

F1 → F2 ⇔ ¬F1 ∨ F2

F1 ↔ F2 ⇔ (¬F1 ∨ F2) ∧ (¬F2 ∨ F1)

Conversion to NNF I

F1 → F2 ⇔ ¬F1 ∨ F2

F1 ↔ F2 ⇔ (¬F1 ∨ F2) ∧ (¬F2 ∨ F1)

Conversion to NNF I

F1 → F2 ⇔ ¬F1 ∨ F2

F1 ↔ F2 ⇔ (¬F1 ∨ F2) ∧ (¬F2 ∨ F1)

Conversion to NNF II

I Also need to ensure negations appear only in literals: push negations in

I Use DeMorgan’s laws to distribute ¬ over ∧ and ∨:

¬(F1 ∧ F2)⇔ ¬F1 ∨ ¬F2

¬(F1 ∨ F2)⇔ ¬F1 ∧ ¬F2

I We also disallow double negations:

¬¬F ⇔ F

¬(F1 ∧ F2)⇔ ¬F1 ∨ ¬F2

¬(F1 ∨ F2)⇔ ¬F1 ∧ ¬F2

¬¬F ⇔ F

¬(F1 ∧ F2)⇔ ¬F1 ∨ ¬F2

¬(F1 ∨ F2)⇔ ¬F1 ∧ ¬F2

¬¬F ⇔ F

¬(F1 ∧ F2)⇔ ¬F1 ∨ ¬F2

¬(F1 ∨ F2)⇔ ¬F1 ∧ ¬F2

¬¬F ⇔ F

¬(F1 ∧ F2)⇔ ¬F1 ∨ ¬F2

¬(F1 ∨ F2)⇔ ¬F1 ∧ ¬F2

¬¬F ⇔ F

¬(F1 ∧ F2)⇔ ¬F1 ∨ ¬F2

¬(F1 ∨ F2)⇔ ¬F1 ∧ ¬F2

¬¬F ⇔ F

NNF Example

Convert F : ¬(p → (p ∧ q)) to NNF

F1 : ¬(¬p ∨ (p ∧ q))F2 : ¬¬p ∧ ¬(p ∧ q)F3 : ¬¬p ∧ (¬p ∨ ¬q)F4 : p ∧ (¬p ∨ ¬q)

F4 is equivalent to F and is in NNF

NNF Example

F1 : ¬(¬p ∨ (p ∧ q))

F2 : ¬¬p ∧ ¬(p ∧ q)F3 : ¬¬p ∧ (¬p ∨ ¬q)F4 : p ∧ (¬p ∨ ¬q)

NNF Example

F1 : ¬(¬p ∨ (p ∧ q))F2 : ¬¬p ∧ ¬(p ∧ q)

F3 : ¬¬p ∧ (¬p ∨ ¬q)F4 : p ∧ (¬p ∨ ¬q)

NNF Example

F1 : ¬(¬p ∨ (p ∧ q))F2 : ¬¬p ∧ ¬(p ∧ q)F3 : ¬¬p ∧ (¬p ∨ ¬q)

F4 : p ∧ (¬p ∨ ¬q)

NNF Example

Disjunctive Normal Form (DNF)

I A formula in disjunctive normal form is a disjunction of conjunction ofliterals. ∨

`i,j for literals `i,j

I i.e., ∨ can never appear inside ∧ or ¬

I Called disjunctive normal form because disjuncts are at the outer level

I Each inner conjunction is called a clause

I Question: If a formula is in DNF, is it also in NNF?

Conversion to DNF

I To convert formula to DNF, first convert it to NNF.

I Then, distribute ∧ over ∨:

(F1 ∨ F2) ∧ F3 ⇔ (F1 ∧ F3) ∨ (F2 ∧ F3)

F1 ∧ (F2 ∨ F3) ⇔ (F1 ∧ F2) ∨ (F1 ∧ F3)

Conversion to DNF

(F1 ∨ F2) ∧ F3 ⇔ (F1 ∧ F3) ∨ (F2 ∧ F3)

F1 ∧ (F2 ∨ F3) ⇔ (F1 ∧ F2) ∨ (F1 ∧ F3)

Conversion to DNF

(F1 ∨ F2) ∧ F3

⇔ (F1 ∧ F3) ∨ (F2 ∧ F3)

F1 ∧ (F2 ∨ F3) ⇔ (F1 ∧ F2) ∨ (F1 ∧ F3)

Conversion to DNF

(F1 ∨ F2) ∧ F3 ⇔ (F1 ∧ F3) ∨ (F2 ∧ F3)

F1 ∧ (F2 ∨ F3) ⇔ (F1 ∧ F2) ∨ (F1 ∧ F3)

Conversion to DNF

(F1 ∨ F2) ∧ F3 ⇔ (F1 ∧ F3) ∨ (F2 ∧ F3)

F1 ∧ (F2 ∨ F3)

⇔ (F1 ∧ F2) ∨ (F1 ∧ F3)

Conversion to DNF

(F1 ∨ F2) ∧ F3 ⇔ (F1 ∧ F3) ∨ (F2 ∧ F3)

F1 ∧ (F2 ∨ F3) ⇔ (F1 ∧ F2) ∨ (F1 ∧ F3)

Example

Convert F : (q1 ∨ ¬¬q2) ∧ (¬r1 → r2) into DNF

F1 : (q1 ∨ ¬¬q2) ∧ (¬¬r1 ∨ r2) remove→F2 : (q1 ∨ q2) ∧ (r1 ∨ r2) in NNFF3 : (q1 ∧ (r1 ∨ r2)) ∨ (q2 ∧ (r1 ∨ r2)) distF4 : (q1 ∧ r1) ∨ (q1 ∧ r2) ∨ (q2 ∧ r1) ∨ (q2 ∧ r2) dist

F4 equivalent to F and is in DNF

Example

F1 : (q1 ∨ ¬¬q2) ∧ (¬¬r1 ∨ r2) remove→

F2 : (q1 ∨ q2) ∧ (r1 ∨ r2) in NNFF3 : (q1 ∧ (r1 ∨ r2)) ∨ (q2 ∧ (r1 ∨ r2)) distF4 : (q1 ∧ r1) ∨ (q1 ∧ r2) ∨ (q2 ∧ r1) ∨ (q2 ∧ r2) dist

Example

F1 : (q1 ∨ ¬¬q2) ∧ (¬¬r1 ∨ r2) remove→F2 : (q1 ∨ q2) ∧ (r1 ∨ r2) in NNF

F3 : (q1 ∧ (r1 ∨ r2)) ∨ (q2 ∧ (r1 ∨ r2)) distF4 : (q1 ∧ r1) ∨ (q1 ∧ r2) ∨ (q2 ∧ r1) ∨ (q2 ∧ r2) dist

Example

F1 : (q1 ∨ ¬¬q2) ∧ (¬¬r1 ∨ r2) remove→F2 : (q1 ∨ q2) ∧ (r1 ∨ r2) in NNFF3 : (q1 ∧ (r1 ∨ r2)) ∨ (q2 ∧ (r1 ∨ r2)) dist

F4 : (q1 ∧ r1) ∨ (q1 ∧ r2) ∨ (q2 ∧ r1) ∨ (q2 ∧ r2) dist

Example

DNF and Satisfiability

I Claim: If formula is in DNF, trivial to determine satisfiability. How?

I Since disjunction of clauses, formula is satisfied if any clause is satisifed.

I If there is any clause that neither contains ⊥ nor a literal and is and itsnegation, then the formula is satisfiable.

I Idea: To determine satisfiability, convert formula to DNF and just do asyntactic check.

DNF and Blow-up in formula size

I This idea is completely impractical. Why?

I Consider formula: (F1 ∨ F2) ∧ (F3 ∨ F4)

I In DNF:

(F1 ∧ F3) ∨ (F1 ∧ F4) ∨ (F2 ∧ F3) ∨ (F2 ∧ F4)

I Every time we distribute, formula size doubles!

I Moral: DNF conversion causes exponential blow-up in size!

I Checking satisfiability by converting to DNF is almost as bad as truthtables!

I In DNF:

(F1 ∧ F3) ∨ (F1 ∧ F4) ∨ (F2 ∧ F3) ∨ (F2 ∧ F4)

I In DNF:(F1 ∧ F3) ∨ (F1 ∧ F4) ∨ (F2 ∧ F3) ∨ (F2 ∧ F4)

Conjunctive Normal Form (CNF)

I A formula in conjuctive normal form is a conjunction of disjunction ofliterals. ∧

I i.e., ∧ not allowed inside ∨,¬.

I Called conjunctive normal form because conjucts are at the outer level

I Each inner disjunction is called a clause

I Is formula in CNF also in NNF?

Conversion to CNF

I To convert formula to CNF, first convert it to NNF.

I Then, distribute ∨ over ∧:

(F1 ∧ F2) ∨ F3 ⇔ (F1 ∨ F3) ∧ (F2 ∨ F3)

F1 ∨ (F2 ∧ F3) ⇔ (F1 ∨ F2) ∧ (F1 ∨ F3)

Conversion to CNF

(F1 ∧ F2) ∨ F3 ⇔ (F1 ∨ F3) ∧ (F2 ∨ F3)

F1 ∨ (F2 ∧ F3) ⇔ (F1 ∨ F2) ∧ (F1 ∨ F3)

Conversion to CNF

(F1 ∧ F2) ∨ F3

⇔ (F1 ∨ F3) ∧ (F2 ∨ F3)

F1 ∨ (F2 ∧ F3) ⇔ (F1 ∨ F2) ∧ (F1 ∨ F3)

Conversion to CNF

(F1 ∧ F2) ∨ F3 ⇔ (F1 ∨ F3) ∧ (F2 ∨ F3)

F1 ∨ (F2 ∧ F3) ⇔ (F1 ∨ F2) ∧ (F1 ∨ F3)

Conversion to CNF

(F1 ∧ F2) ∨ F3 ⇔ (F1 ∨ F3) ∧ (F2 ∨ F3)

F1 ∨ (F2 ∧ F3)

⇔ (F1 ∨ F2) ∧ (F1 ∨ F3)

Conversion to CNF

(F1 ∧ F2) ∨ F3 ⇔ (F1 ∨ F3) ∧ (F2 ∨ F3)

F1 ∨ (F2 ∧ F3) ⇔ (F1 ∨ F2) ∧ (F1 ∨ F3)

CNF Conversion Example

Convert F : (p ↔ (q → r)) into CNF

F1 : (p → (q → r)) ∧ ((q → r)→ p) remove ↔F2 : (¬p ∨ (q → r)) ∧ (¬(q → r) ∨ p) remove →F3 : (¬p ∨ (¬q ∨ r)) ∧ (¬(¬q ∨ r) ∨ p) remove →F4 : (¬p ∨ ¬q ∨ r) ∧ ((q ∧ ¬r) ∨ p) De MorganF5 : (¬p ∨ ¬q ∨ r) ∧ (q ∨ p) ∧ (¬r ∨ p) Distribute ∨ over ∧

F5 is equivalent to F and is in CNF

F1 : (p → (q → r)) ∧ ((q → r)→ p) remove ↔

F2 : (¬p ∨ (q → r)) ∧ (¬(q → r) ∨ p) remove →F3 : (¬p ∨ (¬q ∨ r)) ∧ (¬(¬q ∨ r) ∨ p) remove →F4 : (¬p ∨ ¬q ∨ r) ∧ ((q ∧ ¬r) ∨ p) De MorganF5 : (¬p ∨ ¬q ∨ r) ∧ (q ∨ p) ∧ (¬r ∨ p) Distribute ∨ over ∧

F1 : (p → (q → r)) ∧ ((q → r)→ p) remove ↔F2 : (¬p ∨ (q → r)) ∧ (¬(q → r) ∨ p) remove →

F3 : (¬p ∨ (¬q ∨ r)) ∧ (¬(¬q ∨ r) ∨ p) remove →F4 : (¬p ∨ ¬q ∨ r) ∧ ((q ∧ ¬r) ∨ p) De MorganF5 : (¬p ∨ ¬q ∨ r) ∧ (q ∨ p) ∧ (¬r ∨ p) Distribute ∨ over ∧

F1 : (p → (q → r)) ∧ ((q → r)→ p) remove ↔F2 : (¬p ∨ (q → r)) ∧ (¬(q → r) ∨ p) remove →F3 : (¬p ∨ (¬q ∨ r)) ∧ (¬(¬q ∨ r) ∨ p) remove →

F4 : (¬p ∨ ¬q ∨ r) ∧ ((q ∧ ¬r) ∨ p) De MorganF5 : (¬p ∨ ¬q ∨ r) ∧ (q ∨ p) ∧ (¬r ∨ p) Distribute ∨ over ∧

F1 : (p → (q → r)) ∧ ((q → r)→ p) remove ↔F2 : (¬p ∨ (q → r)) ∧ (¬(q → r) ∨ p) remove →F3 : (¬p ∨ (¬q ∨ r)) ∧ (¬(¬q ∨ r) ∨ p) remove →F4 : (¬p ∨ ¬q ∨ r) ∧ ((q ∧ ¬r) ∨ p) De Morgan

F5 : (¬p ∨ ¬q ∨ r) ∧ (q ∨ p) ∧ (¬r ∨ p) Distribute ∨ over ∧

DNF vs. CNF

I Fact: Unlike DNF, it is not trivial to determine satisfiability of formula inCNF.

I Does CNF conversion cause exponential blow-up in size?

I News: But almost all SAT solvers first convert formula to CNF beforesolving!

DNF vs. CNF

I Does CNF conversion cause exponential blow-up in size?

DNF vs. CNF

I Does CNF conversion cause exponential blow-up in size? Yes

DNF vs. CNF

I Does CNF conversion cause exponential blow-up in size? Yes

Why CNF?

I Interesting Question: If it is just as expensive to convert formula to CNFas to DNF, why do solvers convert to CNF although it is much easier todetermine satisfiability in DNF?

I Two reasons:

1. Possible to convert to equisatisfiable (not equivalent) CNF formula withonly linear increase in size!

2. CNF makes it possible to perform interesting deductions (resolution)

Why CNF?

I Two reasons:

Why CNF?

I Two reasons:

Why CNF?

I Two reasons:

Equisatisfiability

I Two formulas F and F ′ are equisatisfiable iff:

F is satisfiable if and only if F ′ is satisfiable

I If two formulas are equisatisfiable, are they equivalent?

I Example:

Any satisfiable formula (e.g., p) is equisat as >

I But clearly, p is not equivalent to >! Why?

I Equisatisfiability is a much weaker notion than equivalence.

I But useful if all we want to do is determine satisfiability.

Equisatisfiability

I If two formulas are equisatisfiable, are they equivalent?

I Example:

Equisatisfiability

I If two formulas are equisatisfiable, are they equivalent? No!

I Example:

Equisatisfiability

I Example: Any satisfiable formula (e.g., p) is equisat as >

Equisatisfiability

The Plan

I To determine satisfiability of F , convert formula to equisatisfiable formulaF ′ in CNF

I Use an algorithm (DPLL) to decide satisfiability of F ′

I Since F ′ is equisatisfiable to F , F is satifiable iff algorithm decides F ′ issatisfiable

I Big question: How do we convert formula to equisatisfiable formulawithout causing exponential blow-up in size?

The Plan

Tseitin’s Transformation

Tseitin’s transformation converts formula Fto equisatisfiable formula F ′ in CNFwith only a linear increase in size.

Tseitin’s Transformation I

I Step 1: Introduce a new variable pG for every subformula G of F (unlessG is already an atom).

I For instance, if F = G1 ∧G2, introduce two variables pG1 and pG2

representing G1 and G2 respectively.

I pG1 is said to be representative of G1 and pG2 is representative of G2.

Tseitin’s Transformation II

I Step 2: Consider each subformula

G : G1 ◦G2 (◦ arbitrary boolean connective)

I Stipulate representative of G is equivalent to representative of G1 ◦G2

pG ↔ pG1 ◦ pG2

I Step 3: Convert pG ↔ pG1 ◦ pG2 to equivalent CNF (by converting toNNF and distributing ∨’s over ∧’s).

I Observe: Since pG ↔ pG1 ◦ pG2 contains at most three propositionalvariables and exactly two connectives, size of this formula in CNF is boundby a constant.

pG ↔ pG1 ◦ pG2

I Given original formula F , let pF be its representative and let SF be the setof all subformulas of F (including F itself).

I Then, introduce the formula

pF ∧∧

G=(G1◦G2)∈SF

CNF (pg ↔ pg1 ◦ pg2)

I Claim: This formula is equisatisfiable to F .

I The proof is by structural induction

I Formula is also in CNF because conjunction of CNF formulas is in CNF.

pF ∧∧

G=(G1◦G2)∈SF

pF ∧∧

G=(G1◦G2)∈SF

pF ∧∧

G=(G1◦G2)∈SF

pF ∧∧

G=(G1◦G2)∈SF

Tseitin’s Transformation and Size

I Using this transformation, we converted F to an equisatisfiable CNFformula F ′.

I What about the size of F ′?

pF ∧∧

G=(G1◦G2)∈SF

I |SF | is bound by the number of connectives in F .

I Each formula CNF (pg ↔ pg1 ◦ pg2) has constant size.

I Thus, trasformation causes only linear increase in formula size.

I More precisely, the size of resulting formula is bound by 30n + 2 where nis size of original formula

pF ∧∧

G=(G1◦G2)∈SF

pF ∧∧

G=(G1◦G2)∈SF

pF ∧∧

G=(G1◦G2)∈SF

pF ∧∧

G=(G1◦G2)∈SF

pF ∧∧

G=(G1◦G2)∈SF

Tseitin’s Transformation Example

Convert F : (p ∨ q)→ (p ∧ ¬r) to equisatisfiable CNF formula.

1. For each subformula, introduce new variables: p1 for F , p2 for p ∨ q , p3for p ∧ ¬r , and p4 for ¬r .

2. Stipulate equivalences and convert them to CNF:

p1 ↔ (p2 → p3) ⇒ F1 : (¬p1 ∨ ¬p2 ∨ p3) ∧ (p2 ∨ p1) ∧ (¬p3 ∨ p1)p2 ↔ (p ∨ q) ⇒ F2 : (¬p2 ∨ p ∨ q) ∧ (¬p ∨ p2) ∧ (¬q ∨ p2)p3 ↔ (p ∧ p4) ⇒ F3 : (¬p3 ∨ p) ∧ (¬p3 ∨ p4) ∧ (¬p ∨ ¬p4 ∨ p3)