Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[sonar] Short-circuit logic should be used in boolean contexts #2264

Closed
wants to merge 2 commits into from
Closed

[sonar] Short-circuit logic should be used in boolean contexts #2264

wants to merge 2 commits into from

Conversation

strehle
Copy link
Member

@strehle strehle commented Mar 29, 2023

@cf-gitbot
Copy link

We have created an issue in Pivotal Tracker to manage this:

https://www.pivotaltracker.com/story/show/184821669

The labels on this github issue will be updated when the story is started.

hsinn0
hsinn0 reviewed Mar 30, 2023
View reviewed changes
Copy link
Contributor

@hsinn0 hsinn0 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actually, let me review if not executing the add operation is OK here.

@hsinn0 hsinn0 self-requested a review March 30, 2023 00:17
hsinn0
hsinn0 requested changes Mar 30, 2023
View reviewed changes
...va/org/cloudfoundry/identity/uaa/provider/ldap/extension/NestedLdapAuthoritiesPopulator.java Outdated
@@ -145,7 +145,7 @@ protected void performNestedSearch(String userDn, String username, Set<GrantedAu
role = role.toUpperCase();
}
role = getRolePrefix() + role;
circular = circular | (!authorities.add(new LdapAuthority(role,dn,record)));
circular = circular || (!authorities.add(new LdapAuthority(role, dn, record)));
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It does appear that changing | to || affects the outcome of the executing this line. In previous code, new LdapAuthroity is always added to authorities. In the changed code, new LdapAuthroity is not added if circular is true.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

hi @hsinn0 i rotated, but it is not wanted to get this merged.

This code is not covered with junit or integration tests yet, so I wont touch it.
I wanted highlight the sonar findings and that sonars marks it as dangerous to use bit-wise OR .

There is another finding where we working on a fix because there is a test available

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

My understanding of the intention of the existing code is that it wants to always execute authorities.add(new LdapAuthority(role,dn,record)) and combine the resulting boolean value with circular. So it is proper use of bit-wise OR in my opinion. Of course, it can be written as:
circular |= !authorities.add(new LdapAuthority(role,dn,record)); // maybe the intention is clearer this way
or
circular = !authorities.add(new LdapAuthority(role,dn,record)) || circular; // to accomplish the same with ||

@strehle strehle changed the title fix: Short-circuit logic should be used in boolean contexts [sonar] Short-circuit logic should be used in boolean contexts Mar 30, 2023
@strehle strehle requested a review from hsinn0 March 30, 2023 14:25
hsinn0
hsinn0 approved these changes Mar 30, 2023
View reviewed changes
Copy link
Contributor

@hsinn0 hsinn0 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I made another comment before seeing this change, so you can ignore that another comment. This change looks good except the commit message, which just says "rotate". Approving, assuming that you will make the commit message better when merging.

@strehle
Copy link
Member Author

strehle commented Mar 31, 2023
edited
Loading

I made another comment before seeing this change, so you can ignore that another comment. This change looks good except the commit message, which just says "rotate". Approving, assuming that you will make the commit message better when merging.

@hsinn0 About commit messages. I always merge to UAA with squashed commit, so finally you dont see the seperate commits not in git history, only in the single commit they are visible in the commit text, therefore I dont care really about the intermediate commits.....
You can do your merged with git history but I prefere the squash since this is our working mode in company and it helps if you have changes which are many years old,.... here you dont have to check the many small commits in between but only the story is relevant
Here is an example from past:
#2161 only a single commit to uaa develop 4f5443e and the changed file has only one entry for git log https://github.com/cloudfoundry/uaa/commits/develop/.github/workflows/unit-tests.yml

@strehle strehle closed this Apr 14, 2023
@strehle strehle deleted the fix/ldapBoolean branch April 14, 2023 10:07
@cf-gitbot cf-gitbot added accepted Accepted the issue and removed delivered labels Jun 27, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@hsinn0 hsinn0 hsinn0 approved these changes

Assignees
No one assigned
Labels
accepted Accepted the issue
Projects
Foundational Infrastructure Working Group
Archived in project
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@strehle @cf-gitbot @hsinn0