Can we prove this will actually converge? Can we create a pathological case where the analysis alternates between two different constraint sets forever?

It must converge now because we simply drop extra things in approximateAnd. If we did something more complex, we'd need to be careful and define a total order, I think.

I'm worried that a sequence of ORs (control flow merges) and ANDs (from the contents of blocks) could change the order of constraints so that the one that is dropped is not stable.

Why not keep the beginning constraints instead? Then when we can get to the end of a block, we can merge the current constraints (and eventually any additional constraints due to the specific control flow edge) into the beginning constraints of each successor block and only process that successor block again if its starting constraints are different.

In contrast, the current approach may reprocess successor blocks even if they don't learn anything new from the single predecessor that was updated.

Storing the beginning constraints would also let us avoid re-merging all the predecessors for each block in the optimization phase.

This would also help prove convergence. If we can show that the merge operation on constraint sets is monotonic on some partial order on constraint sets and converges after a bounded number of steps, then we will know the analysis will converge. In contrast, it's hard to say anything about how the end constraints will change over time because they are the result of non-monotonic meet operations over the course of the block.

Interesting, yeah, storing the start might have benefits. It does mean adding a bottom element though, so we can merge incrementally like that.

However, about the very last point: storing the beginning or the end is NFC, so I don't see how it helps with convergence?

Instead of a bottom element it might be cleaner to use std::optional in the pass. That is, there is no logical (as in mathematical logic) meaning to the bottom element - it is not a logical constraint - so a "null" can be handled by the users, rather than inside constraint.h.

However - thinking more on this, I'm not sure it's right. We can't simply keep merging in content as it flows around. The input to a block is, effectively, X || Y || Z, and it matters which of those we update. If we update X three times with a == 10 that is very different than if we update X, Y, Z to that constraint - only then we can apply something.

So I think it is best to do this as it is written: merge the inputs in a loop, seeing them all at once.

Instead of a bottom element it might be cleaner to use std::optional in the pass. That is, there is no logical (as in mathematical logic) meaning to the bottom element - it is not a logical constraint - so a "null" can be handled by the users, rather than inside constraint.h.

Sure, bottom is not literally a bounded set of constraints like other values would be, but it is certainly a meaningful point in the space of possible known constraints. Representing it in constraint.h keeps the analysis code simpler while ensuring that we can never "forget" that we have observed a contradiction. It also lets us write unit tests for it.

If we update X three times with a == 10 that is very different than if we update X, Y, Z to that constraint - only then we can apply something.

I'm not sure what you mean here.

If we receive data from blocks X, Y, and Z, then we only have a valid state after seeing all of X, Y, and Z. That is, if our state starts at some null/bottom, and X arrives, we cannot flow X onward.

Concretely, if X has a == 10 but we haven't seen Y or Z yet, then we don't know if a == 10 is true in this block, and it would be invalid to apply a == 10 in the block and/or to flow it onward.

We only find the valid state of inputs to the block after merging X, Y, and Z. Doing so at once is the simplest way to get the valid state.

If we had a bottom value to initialize constraints to, then we wouldn't have to distinguish the first constraints like this.

True, yeah. Maybe worth adding, though this might be the only place it helps?

Probably better to canonicalize to have e.g. the lower local index on the LHS of the constraint.

Yeah, I was thinking about that too. A later PR will add these local-local operations, we can pick the best thing there.

These lambdas can also be pulled out as helpers in an anonymous namespace.

These might also be nice places to use match.h.

Sorry, I'm not following this - why is "argument" improving the name?

I don't feel strongly about moving these out to a namespace, but I like that they are enclosed here, which is the one place they might ever be used?

I experimented with match.h but it didn't really shorten much.

Sorry, I'm not following this - why is "argument" improving the name?

Based on the current name I was expecting the lambda to look for an eqz node and I was confused when it didn't. What it's doing is parsing the argument to an eqz (or similar) node.

I don't feel strongly about moving these out to a namespace, but I like that they are enclosed here, which is the one place they might ever be used?

I think it would help the reader keep less in mind at once, but I don't feel too strongly about this instance. It's fine as-is.

Oh, I see. Yes, you're right, argument does help here, I renamed this and parseBinaryArgument.