Concept behind these four lines of tricky C code
Why does this code give the output C++Sucks
? What is the concept behind it?
#include <stdio.h>
double m[] = {7709179928849219.0, 771};
int main() {
m[1]--?m[0]*=2,main():printf((char*)m);
}
Test it here.
The number 7709179928849219.0
has the following binary representation as a 64-bit double
:
01000011 00111011 01100011 01110101 01010011 00101011 00101011 01000011
+^^^^^^^ ^^^^---- -------- -------- -------- -------- -------- --------
+
shows the position of the sign; ^
of the exponent, and -
of the mantissa (ie the value without the exponent).
Since the representation uses binary exponent and mantissa, doubling the number increments the exponent by one. Your program does it precisely 771 times, so the exponent which started at 1075 (decimal representation of 10000110011
) becomes 1075 + 771 = 1846 at the end; binary representation of 1846 is 11100110110
. The resultant pattern looks like this:
01110011 01101011 01100011 01110101 01010011 00101011 00101011 01000011
-------- -------- -------- -------- -------- -------- -------- --------
0x73 's' 0x6B 'k' 0x63 'c' 0x75 'u' 0x53 'S' 0x2B '+' 0x2B '+' 0x43 'C'
This pattern corresponds to the string that you see printed, only backwards. At the same time, the second element of the array becomes zero, providing null terminator, making the string suitable for passing to printf()
.
More readable version:
double m[2] = {7709179928849219.0, 771};
// m[0] = 7709179928849219.0;
// m[1] = 771;
int main()
{
if (m[1]-- != 0)
{
m[0] *= 2;
main();
}
else
{
printf((char*) m);
}
}
It recursively calls main()
771 times.
In the beginning, m[0] = 7709179928849219.0
, which stands for C++Suc;C
. In every call, m[0]
gets doubled, to "repair" last two letters. In the last call, m[0]
contains ASCII char representation of C++Sucks
and m[1]
contains only zeros, so it has a null terminator for C++Sucks
string. All under assumption that m[0]
is stored on 8 bytes, so each char takes 1 byte.
Without recursion and illegal main()
calling it will look like this:
double m[] = {7709179928849219.0, 0};
for (int i = 0; i < 771; i++)
{
m[0] *= 2;
}
printf((char*) m);
Disclaimer: This answer was posted to the original form of the question, which mentioned only C++ and included a C++ header. The question's conversion to pure C was done by the community, without input from the original asker.
Formally speaking, it's impossible to reason about this program because it's ill-formed (ie it's not legal C++). It violates C++11[basic.start.main]p3:
The function main shall not be used within a program.
This aside, it relies on the fact that on a typical consumer computer, a double
is 8 bytes long, and uses a certain well-known internal representation. The initial values of the array are computed so that when the "algorithm" is performed, the final value of the first double
will be such that the internal representation (8 bytes) will be the ASCII codes of the 8 characters C++Sucks
. The second element in the array is then 0.0
, whose first byte is 0
in the internal representation, making this a valid C-style string. This is then sent to output using printf()
.
Running this on HW where some of the above doesn't hold would result in garbage text (or perhaps even an access out of bounds) instead.
链接地址: http://www.djcxy.com/p/73600.html上一篇: Fgets编译错误
下一篇: 这些四行棘手的C代码背后的概念