script: Avoid side effect in RHS operand (MISRA-C). Clarify intended logic. #13684

1. 
   practicalswift commented at 9:47 AM on July 17, 2018: contributor

   Avoid side effect in RHS operand (MISRA-C). Clarify intended logic.

   Fix MISRA-C related warning.

2. script: Avoid side effect in RHS operand (MISRA-C). Clarify intended logic.

   Fix MISRA-C related warning.

   bdd83ddbea
3. fanquake requested review from sipa on Jul 17, 2018
4. 
   Empact commented at 7:29 PM on July 17, 2018: member

   utACK bdd83dd Is this the only MISRA-C warning?

5. 
   practicalswift commented at 8:53 AM on July 18, 2018: contributor

   @Empact This is the only warning for this specific issue, but there are warnings for other issues – some of which might be worth addressing. I'll look into which ones :-)

6. laanwj added the label Refactoring on Jul 20, 2018
7. 
   laanwj commented at 4:03 PM on July 20, 2018: member

   As this is a change in critical consensus code, I don't think this is worth the risk, just to shut up a warning. (as far as I know this is not ub?)

8. 
   sipa commented at 6:10 PM on July 20, 2018: member

   Code review ACK bdd83ddbea03ce025e19fdb24e0bc120d0f8d8ae. @laanwj Agree, though it also makes things more readable.

9. 
   practicalswift commented at 7:12 PM on July 20, 2018: contributor

   @laanwj I agree in the general case that we shouldn't refactor consensus critical code just to shut up a warning, but this change is about making the author's intention clear. Making the intention clear is extra important in consensus critical code to avoid future mistakes. It is not obvious for the reader that the side effect here is intentional.

   FWIW, I thought it was a mistake when I first read it :-)

   Should I add an extra comment instead?

10. 
    practicalswift commented at 7:19 PM on July 20, 2018: contributor

    @laanwj Just to make the rationale clear – this is not UB :-)

11. 
    sdaftuar commented at 9:02 PM on July 20, 2018: member

    I agree with @laanwj that this is not worth the risk -- a comment would suffice for clarifying the logic IMO.

12. 
    practicalswift commented at 9:33 PM on July 20, 2018: contributor

    FWIW, both clang++ -S -O and g++ -S -O generate the same assembly for the before/after code.

    Some git history:

    Satoshi introduced this code in 6ff5f718b6a67797b2b3bab8905d607ad216ee21 (2010). @petertodd added a clarifying comment in 214d45b6b9a4f25d7d8bd4e5443fa2bee485353a (2013):

    commit 214d45b6b9a4f25d7d8bd4e5443fa2bee485353a
    Author: Peter Todd <pete@petertodd.org>
    Date:   Sun Aug 25 12:37:07 2013 -0400
    
        Document and test OP_RESERVED weirdness
    
        Seems it was forgotten about when IsPushOnly() and the unittests were
        written. A particular oddity is that OP_RESERVED doesn't count towards
        the >201 opcode limit unlike every other named opcode.
    
    diff --git a/src/script.cpp b/src/script.cpp
    index 2df2e9f0d..a3aae42d2 100644
    --- a/src/script.cpp
    +++ b/src/script.cpp
    @@ -327,6 +327,8 @@ bool EvalScript(vector<vector<unsigned char> >& stack, const CScript& script, co
                     return false;
                 if (vchPushValue.size() > MAX_SCRIPT_ELEMENT_SIZE)
                     return false;
    +
    +            // Note how OP_RESERVED does not count towards the opcode limit.
                 if (opcode > OP_16 && ++nOpCount > 201)
                     return false;
    

13. 
    MarcoFalke commented at 10:04 PM on July 20, 2018: member

    utACK bdd83ddbea03ce025e19fdb24e0bc120d0f8d8ae

14. MarcoFalke added the label Needs gitian build on Jul 29, 2018
15. 
    DrahtBot commented at 3:13 AM on July 30, 2018: member

    <!--a722867cd34abeea1fadc8d60700f111-->

    Gitian builds for commit e8ffec69f773e67ae82535afc87164eb8102f05e (master):

    • 358605e223a4956623f41da6e44ec62f... bitcoin-0.16.99-aarch64-linux-gnu-debug.tar.gz
    • 19b750d8df1ea13d614a4bf22d5f5e7e... bitcoin-0.16.99-aarch64-linux-gnu.tar.gz
    • e77b6a8b38f9c2a298d4fa8870da9691... bitcoin-0.16.99-arm-linux-gnueabihf-debug.tar.gz
    • 5b785cf94cf9d2632c82433a95e2e28d... bitcoin-0.16.99-arm-linux-gnueabihf.tar.gz
    • 88951687b6c9faccae192580c0c8d203... bitcoin-0.16.99-i686-pc-linux-gnu-debug.tar.gz
    • 958d89530deea212b75755cc72af4583... bitcoin-0.16.99-i686-pc-linux-gnu.tar.gz
    • 4f07ae0309676a2aa77be85146038cbc... bitcoin-0.16.99-osx-unsigned.dmg
    • eb0aa660bb8bd57d44141537161bdecb... bitcoin-0.16.99-osx64.tar.gz
    • 62d63bd9c57468149190e18ae29c2e5b... bitcoin-0.16.99-win32-debug.zip
    • 3062e8911e9310aa1faef00fcdf11520... bitcoin-0.16.99-win32-setup-unsigned.exe
    • 27701810378b583927afea230a7f2457... bitcoin-0.16.99-win32.zip
    • b68b2e4d9d08c44cf867213380a016eb... bitcoin-0.16.99-win64-debug.zip
    • 01bd60768d16ea1bc0a689bebe1c8281... bitcoin-0.16.99-win64-setup-unsigned.exe
    • 21ab31ed8504f6190797d9acde10779c... bitcoin-0.16.99-win64.zip
    • 0c4379f4e015b3f09dcb1dc440e4d76c... bitcoin-0.16.99-x86_64-linux-gnu-debug.tar.gz
    • 1ccc038285f265d1fc71a23d40862d70... bitcoin-0.16.99-x86_64-linux-gnu.tar.gz
    • 7c208dbc4bd9c1c775e00fd864d85e38... bitcoin-0.16.99.tar.gz
    • 5951f1248c7d6b1a301859903aec5227... bitcoin-linux-0.17-res.yml
    • e11564823cdbee7468a0fcf29b444175... bitcoin-linux-build.log
    • be775e40bbb4e2bc7ba1a5246532f567... bitcoin-osx-0.17-res.yml
    • 96bf0583d0f754e5e32a27024278228a... bitcoin-osx-build.log
    • f5c6249287ff188c73f2a1ffe6cd9eb3... bitcoin-win-0.17-res.yml
    • e8c65f90606f6c44ff0f33a2b2115af0... bitcoin-win-build.log

    Gitian builds for commit 1c61ee541e75a31f830e99d90bef980942abd551 (master and this pull):

    • de031636b591192e1c0bd977ff99bcaa... bitcoin-0.16.99-aarch64-linux-gnu-debug.tar.gz
    • 2bd93e8fa62e7ba631e0cf57eb0e6923... bitcoin-0.16.99-aarch64-linux-gnu.tar.gz
    • 3663440c61881136afc82eb84d0fa87b... bitcoin-0.16.99-arm-linux-gnueabihf-debug.tar.gz
    • 2fa71e85b2ec531f2cf5e98cf756206c... bitcoin-0.16.99-arm-linux-gnueabihf.tar.gz
    • 485edba7d9ecbefaa2e87c49bc0c291b... bitcoin-0.16.99-i686-pc-linux-gnu-debug.tar.gz
    • 6ff37e741b55c9e1643c92b7d0997eb6... bitcoin-0.16.99-i686-pc-linux-gnu.tar.gz
    • 2d83a29e13a24a847eddb2e4a53661c8... bitcoin-0.16.99-osx-unsigned.dmg
    • 9bb4f1acd2c0c01d2672d09b42d80ea0... bitcoin-0.16.99-osx64.tar.gz
    • e31bd8c3380a3d101ecdd7219eb00f64... bitcoin-0.16.99-win32-debug.zip
    • a5a945f27fd49bc9dab5fed7abab94c0... bitcoin-0.16.99-win32-setup-unsigned.exe
    • 7a6924f0e6311981a913997429deef11... bitcoin-0.16.99-win32.zip
    • b0bcee627eca23f55795e375aab82676... bitcoin-0.16.99-win64-debug.zip
    • 372a2fc7c5de64deb83f84a96d6ffe36... bitcoin-0.16.99-win64-setup-unsigned.exe
    • 4b12160c29b64a573abd1c03039d06e3... bitcoin-0.16.99-win64.zip
    • 1b65fa3e2b5f8229fbaa4b064c7f86b0... bitcoin-0.16.99-x86_64-linux-gnu-debug.tar.gz
    • 3fa77c3fcd4e9b0fab9bdcf99b331c1f... bitcoin-0.16.99-x86_64-linux-gnu.tar.gz
    • f92682a8b75e6e38995541f902646fc7... bitcoin-0.16.99.tar.gz
    • 4cd89f02d937ec8a9045627785205b59... bitcoin-linux-0.17-res.yml
    • ec49cc665731d2aa055995ba1c7730bf... bitcoin-linux-build.log
    • 520b7d7adc17542aca9a37000973b6f6... bitcoin-osx-0.17-res.yml
    • aa9465a25e44a6651a8dd984e1ead355... bitcoin-osx-build.log
    • 5d9a3564fac4eedf4ce634a816cb6de6... bitcoin-win-0.17-res.yml
    • 95c2b0a4259a3ccf831176584597d8ad... bitcoin-win-build.log
16. DrahtBot removed the label Needs gitian build on Jul 30, 2018
17. 
    laanwj commented at 12:00 PM on August 7, 2018: member

    Closing, as there's disagreement whether to do this.

18. laanwj closed this on Aug 7, 2018

    ---

19. practicalswift deleted the branch on Apr 10, 2021
20. DrahtBot locked this on Aug 16, 2022

Review Requested
sipa