rspec/rules/S3900/csharp/rule.adoc

== Why is this an issue?

Methods declared as `public`, `protected`, or `protected internal` can be accessed from other assemblies, which means you should validate parameters to be within the expected constraints. In general, checking against `null` is recommended in defensive programming.


This rule raises an issue when a parameter of a publicly accessible method is not validated against `null` before being dereferenced.


=== Noncompliant code example

[source,csharp]
----
public class MyClass
{
    private MyOtherClass other;

    public void Foo(MyOtherClass other)
    {
        this.other = other.Clone(); // Noncompliant
    }

    protected void Bar(MyOtherClass other)
    {
        this.other = other.Clone(); // Noncompliant
    }
}
----


=== Compliant solution

[source,csharp]
----
public class MyClass
{
    private MyOtherClass other;

    public void Foo(MyOtherClass other)
    {
        if (other != null)
        {
            this.other = other.Clone();
        }
    }

    protected void Bar(MyOtherClass other)
    {
        if (other != null)
        {
            this.other = other.Clone();
        }
    }

    public void Baz(MyOtherClass other)
    {
        ArgumentNullException.ThrowIfNull(other);

        this.other = other.Clone();
    }

    public void Qux(MyOtherClass other)
    {
        this.other = other; // Compliant: "other" is not being dereferenced
    }

    private void Xyzzy(MyOtherClass other)
    {
        this.other = other.Clone(); // Compliant: method is not publicly accessible
    }
}
----


=== Exceptions
* Arguments validated for `null` via helper methods should be annotated with the https://learn.microsoft.com/en-us/dotnet/csharp/language-reference/attributes/nullable-analysis#postconditions-maybenull-and-notnull[`[NotNull]`] attribute.
* Method parameters marked with the `[NotNull]` https://www.jetbrains.com/help/resharper/Reference__Code_Annotation_Attributes.html#ItemNotNullAttribute[Resharper code annotation attribute] are supported as well.
* To create a custom null validation method declare an attribute with name `ValidatedNotNullAttribute` and mark the parameter that is validated for null in your method declaration with it:

[source,csharp]
----
using System;

[AttributeUsage(AttributeTargets.Parameter, Inherited=false)]
public sealed class ValidatedNotNullAttribute : Attribute { }

public static class Guard
{
    public static void NotNull<T>([ValidatedNotNullAttribute] T value, [CallerArgumentExpression("value")] string name = "") where T : class
    {
        if (value == null)
            throw new ArgumentNullException(name);
    }
}

public static class Utils
{
    public static string ToUpper(string value)
    {
        Guard.NotNull(value);

        return value.ToUpper(); // Compliant
    }
}
----


include::../rspecator.adoc[]
migrate rule descriptions to new education format 2023-05-03 11:06:20 +02:00			`== Why is this an issue?`

S3900: Update rule description and message (#1597) https://github.com/SonarSource/sonar-dotnet/issues/2643 2023-04-13 10:48:47 +02:00			Methods declared as `public`, `protected`, or `protected internal` can be accessed from other assemblies, which means you should validate parameters to be within the expected constraints. In general, checking against `null` is recommended in defensive programming.
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00

S3900: Update rule description and message (#1597) https://github.com/SonarSource/sonar-dotnet/issues/2643 2023-04-13 10:48:47 +02:00			This rule raises an issue when a parameter of a publicly accessible method is not validated against `null` before being dereferenced.
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00
Fix the missing default metadata fields 2021-04-28 18:08:03 +02:00
migrate rule descriptions to new education format 2023-05-03 11:06:20 +02:00			`=== Noncompliant code example`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00
RULEAPI-661: Add syntax coloring 2022-02-04 17:28:24 +01:00			`[source,csharp]`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`----`
			`public class MyClass`
			`{`
			`private MyOtherClass other;`

Rule S3900: Add VB.NET (#1731) 2023-04-13 11:50:57 +02:00			`public void Foo(MyOtherClass other)`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`{`
			`this.other = other.Clone(); // Noncompliant`
			`}`

S3900: Update rule description and message (#1597) https://github.com/SonarSource/sonar-dotnet/issues/2643 2023-04-13 10:48:47 +02:00			`protected void Bar(MyOtherClass other)`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`{`
			`this.other = other.Clone(); // Noncompliant`
			`}`
			`}`
			`----`

Fix the missing default metadata fields 2021-04-28 18:08:03 +02:00
migrate rule descriptions to new education format 2023-05-03 11:06:20 +02:00			`=== Compliant solution`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00
RULEAPI-661: Add syntax coloring 2022-02-04 17:28:24 +01:00			`[source,csharp]`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`----`
			`public class MyClass`
			`{`
			`private MyOtherClass other;`

Rule S3900: Add VB.NET (#1731) 2023-04-13 11:50:57 +02:00			`public void Foo(MyOtherClass other)`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`{`
Rule S3900: Add VB.NET (#1731) 2023-04-13 11:50:57 +02:00			`if (other != null)`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`{`
			`this.other = other.Clone();`
			`}`
			`}`

Rule S3900: Add VB.NET (#1731) 2023-04-13 11:50:57 +02:00			`protected void Bar(MyOtherClass other)`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`{`
Rule S3900: Add VB.NET (#1731) 2023-04-13 11:50:57 +02:00			`if (other != null)`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`{`
			`this.other = other.Clone();`
			`}`
			`}`
S3900: Update rule description and message (#1597) https://github.com/SonarSource/sonar-dotnet/issues/2643 2023-04-13 10:48:47 +02:00
Rule S3900: Add VB.NET (#1731) 2023-04-13 11:50:57 +02:00			`public void Baz(MyOtherClass other)`
S3900: Update rule description and message (#1597) https://github.com/SonarSource/sonar-dotnet/issues/2643 2023-04-13 10:48:47 +02:00			`{`
			`ArgumentNullException.ThrowIfNull(other);`

			`this.other = other.Clone();`
			`}`

Rule S3900: Add VB.NET (#1731) 2023-04-13 11:50:57 +02:00			`public void Qux(MyOtherClass other)`
S3900: Update rule description and message (#1597) https://github.com/SonarSource/sonar-dotnet/issues/2643 2023-04-13 10:48:47 +02:00			`{`
			`this.other = other; // Compliant: "other" is not being dereferenced`
			`}`

Rule S3900: Add VB.NET (#1731) 2023-04-13 11:50:57 +02:00			`private void Xyzzy(MyOtherClass other)`
S3900: Update rule description and message (#1597) https://github.com/SonarSource/sonar-dotnet/issues/2643 2023-04-13 10:48:47 +02:00			`{`
Modify rule S3900: Add method invocation to code sample (#1761) 2023-04-17 08:53:39 +02:00			`this.other = other.Clone(); // Compliant: method is not publicly accessible`
S3900: Update rule description and message (#1597) https://github.com/SonarSource/sonar-dotnet/issues/2643 2023-04-13 10:48:47 +02:00			`}`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`}`
			`----`

Fix the missing default metadata fields 2021-04-28 18:08:03 +02:00
migrate rule descriptions to new education format 2023-05-03 11:06:20 +02:00			`=== Exceptions`
S3900: Update rule description and message (#1597) https://github.com/SonarSource/sonar-dotnet/issues/2643 2023-04-13 10:48:47 +02:00			* Arguments validated for `null` via helper methods should be annotated with the https://learn.microsoft.com/en-us/dotnet/csharp/language-reference/attributes/nullable-analysis#postconditions-maybenull-and-notnull[`[NotNull]`] attribute.
			* Method parameters marked with the `[NotNull]` https://www.jetbrains.com/help/resharper/Reference__Code_Annotation_Attributes.html#ItemNotNullAttribute[Resharper code annotation attribute] are supported as well.
			* To create a custom null validation method declare an attribute with name `ValidatedNotNullAttribute` and mark the parameter that is validated for null in your method declaration with it:
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00
S3900: Update rule description and message (#1597) https://github.com/SonarSource/sonar-dotnet/issues/2643 2023-04-13 10:48:47 +02:00			`[source,csharp]`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`----`
			`using System;`

S3900: Update rule description and message (#1597) https://github.com/SonarSource/sonar-dotnet/issues/2643 2023-04-13 10:48:47 +02:00			`[AttributeUsage(AttributeTargets.Parameter, Inherited=false)]`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`public sealed class ValidatedNotNullAttribute : Attribute { }`

			`public static class Guard`
			`{`
S3900: Update rule description and message (#1597) https://github.com/SonarSource/sonar-dotnet/issues/2643 2023-04-13 10:48:47 +02:00			`public static void NotNull<T>([ValidatedNotNullAttribute] T value, [CallerArgumentExpression("value")] string name = "") where T : class`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`{`
			`if (value == null)`
			`throw new ArgumentNullException(name);`
			`}`
			`}`

			`public static class Utils`
			`{`
			`public static string ToUpper(string value)`
			`{`
S3900: Update rule description and message (#1597) https://github.com/SonarSource/sonar-dotnet/issues/2643 2023-04-13 10:48:47 +02:00			`Guard.NotNull(value);`

Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`return value.ToUpper(); // Compliant`
			`}`
			`}`
			`----`
Fix the missing default metadata fields 2021-04-28 18:08:03 +02:00

Inline adoc when include has no additional value (#1940) Inline adoc files when they are included exactly once. Also fix language tags because this inlining gives us better information on what language the code is written in. 2023-05-25 14:18:12 +02:00			`include::../rspecator.adoc[]`