Why not wrap the ` _balances[to] += amount` instruction in an `unchecked` block?

So for the record I want to explain why we did not have this optimization before and why we’re going to merge it now.

The reasoning until now was that we use unchecked when lack of overflow can be proven through local reasoning. For example:

require(amount <= balances[to]);
unchecked {
    balances[to] -= amount;
}

We know b - a will not overflow because a <= b is asserted immediately before.

The property that balances[to] + amount does not overflow is not a local one in this sense. It can’t be shown by reasoning about the function. It can only be proven by reasoning about the entire contract, and observing that: 1) the values in the balances mapping are only increased in _mint, 2) any increase in one account’s balance is reflected in an equivalent increase in the _totalSupply and this is capped by 2**256 thanks to overflow checks, 3) all updates to the balances mapping preserve this invariant (the cap).

What is happening now is we’re relaxing the requirements to use unchecked to allow it when lack of overflow can be proven through reasoning about one file/contract. Note that this is still “local” in another sense, just “less” local than before.

This makes the case for private variables versus internal ones even stronger. We need to be able to guarantee that the balances mapping is not updated outside of this file.

For future reference, this optimization of ~130 gas, in my opinion, only barely meets the threshold to be worth the extra complexity (complexity to prove the correctness of the contract!).

Fixed in https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3513.