SONARJAVA-6108 ScopedValue where result is ignored (#5441)

Author: rombirli

its/autoscan/src/test/java/org/sonar/java/it/AutoScanTest.java

@@ -199,7 +199,7 @@ public void javaCheckTestSources() throws Exception {
     softly.assertThat(newDiffs).containsExactlyInAnyOrderElementsOf(knownDiffs.values());
     softly.assertThat(newTotal).isEqualTo(knownTotal);
     softly.assertThat(rulesCausingFPs).hasSize(10);
-    softly.assertThat(rulesNotReporting).hasSize(14);
+    softly.assertThat(rulesNotReporting).hasSize(15);
 
     /**
      * 4. Check total number of differences (FPs + FNs)

its/autoscan/src/test/resources/autoscan/autoscan-diff-by-rules.json

@@ -2872,5 +2872,11 @@
     "hasTruePositives": false,
     "falseNegatives": 0,
     "falsePositives": 0
+  },
+  {
+    "ruleKey": "8432",
+    "hasTruePositives": false,
+    "falseNegatives": 0,
+    "falsePositives": 0
   }
 ]

its/autoscan/src/test/resources/autoscan/diffs/diff_S8432.json

@@ -0,0 +1,6 @@
+{
+  "ruleKey": "S8432",
+  "hasTruePositives": false,
+  "falseNegatives": 0,
+  "falsePositives": 0
+}

java-checks-test-sources/default/src/main/files/non-compiling/checks/UnusedScopedValueWhereResultEdgeCasesSample.java

@@ -0,0 +1,136 @@
+import static java.lang.ScopedValue.where;
+
+
+static final ScopedValue<String> SCOPED = ScopedValue.newInstance();
+static final ScopedValue<String> SCOPED2 = ScopedValue.newInstance();
+
+// Field storage - shouldn't be flagged as we can't track field usage reliably
+ScopedValue.Carrier carrierField;
+static ScopedValue.Carrier staticCarrierField;
+
+// ===== CONTROL FLOW =====
+
+void conditionalUsage(boolean condition) {
+  var carrier = ScopedValue.where(SCOPED, "Conditional usage"); // Compliant - used conditionally
+  if (condition) {
+    carrier.run(() -> {
+    });
+  }
+}
+
+// ===== VARIABLE SCENARIOS =====
+
+void variableReassignedBeforeUse() {
+  var carrier = ScopedValue.where(SCOPED, "Initial instance"); // Noncompliant
+  carrier = ScopedValue.where(SCOPED, "Second instance"); // Compliant - this instance is used
+  carrier.run(() -> {
+  });
+}
+
+void multipleVariablesSameCarrierUsed() {
+  var carrier1 = ScopedValue.where(SCOPED, "Single instance"); // Compliant
+  var carrier2 = carrier1; // Carrier2 points to same object
+  carrier2.run(() -> {
+  });
+}
+
+void multipleVariablesSameCarrierUsed2() {
+  var carrier1 = ScopedValue.where(SCOPED, "Single instance"); // Compliant
+  var carrier2 = carrier1; // Carrier2 points to same object
+  carrier1.run(() -> {
+  });
+}
+
+void multipleVariablesSameCarrierUnused() {
+  var carrier1 = ScopedValue.where(SCOPED, "Single instance unused"); // Noncompliant
+  var carrier2 = carrier1; // Carrier2 points to same object but is never used
+}
+
+void carrierStoredInField() {
+  carrierField = ScopedValue.where(SCOPED, "Stored in instance field"); // Compliant - way of escaping
+}
+
+void carrierStoredInStaticField() {
+  staticCarrierField = ScopedValue.where(SCOPED, "Stored in static field"); // Compliant - way of escaping
+}
+
+void escapingInFieldTwice() {
+  carrierField = ScopedValue.where(SCOPED, "Instance 1"); // Compliant - escapes, we can't track field usage
+  carrierField = ScopedValue.where(SCOPED, "Instance 2"); // Compliant - reassigned but still escapes
+}
+
+// ===== RETURN VARIATIONS =====
+
+ScopedValue.Carrier ternaryReturn(boolean condition) {
+  var carrier1 = ScopedValue.where(SCOPED, "Ternary return - true"); // Compliant - potentially returned
+  var carrier2 = ScopedValue.where(SCOPED, "Ternary return - false"); // Compliant - potentially returned
+  return condition ? carrier1 : carrier2;
+}
+
+// ===== NON-CONSUMING METHOD CALLS =====
+
+void standardFunctinsOnCarrier() {
+  var carrier = ScopedValue.where(SCOPED, "Standard functions"); // Noncompliant
+  carrier.toString();
+  carrier.hashCode();
+  carrier.equals(null);
+}
+
+void getOnCarrier() {
+  var carrier = ScopedValue.where(SCOPED, "Get function"); // Noncompliant
+  carrier.get(SCOPED);
+}
+
+// ===== LAMBDA/CLOSURE =====
+
+void carrierUsedInsideLambda() {
+  var carrier = ScopedValue.where(SCOPED, "hello"); // Compliant - used inside lambda
+  Runnable r = () -> {
+    carrier.run(() -> {
+    });
+  };
+  r.run();
+}
+
+// ===== STATIC IMPORT =====
+
+void staticImportWhere() {
+  where(SCOPED, "Static import unused"); // Noncompliant
+}
+
+void staticImportWhereUsed() {
+  where(SCOPED, "Static import used").run(() -> {
+  }); // Compliant - used immediately
+}
+
+void staticImportWhereVariable() {
+  var carrier = where(SCOPED, "Static import unused variable"); // Noncompliant
+}
+
+void staticImportWhereVariableUsed() {
+  var carrier = where(SCOPED, "Static import used variable "); // Compliant - used
+  carrier.run(() -> {
+  });
+}
+
+// ===== CONSTRUCTOR ARGUMENT =====
+
+void carrierAsConstructorArgument() {
+  var carrier = ScopedValue.where(SCOPED, "Carrier in constructor argument"); // Compliant - escapes via constructor
+  new CarrierHolder(carrier);
+}
+
+// ===== HELPER METHODS AND CLASSES =====
+
+
+static class CarrierHolder {
+  CarrierHolder(ScopedValue.Carrier carrier) // Noncompliant
+  {
+  }
+
+  CarrierHolder(ScopedValue.Carrier carrier, int i) // Compliant
+  {
+    carrier.run(() -> {
+    });
+  }
+}

java-checks-test-sources/default/src/main/files/non-compiling/checks/UnusedScopedValueWhereResultSample.java

@@ -0,0 +1,49 @@
+static final ScopedValue myScopedValue = ScopedValue.newInstance();
+static final ScopedValue myScopedValue2 = ScopedValue.newInstance();
+
+void main() {
+  ScopedValue.where(myScopedValue, "Simple chained with get").get(myScopedValue); // Noncompliant
+  ScopedValue.where(myScopedValue, "Simple chained with run").run(() -> {
+  }); // Compliant, the result is used immediately
+  ScopedValue.where(myScopedValue, "Chained two").where(myScopedValue2, "times with run").run(() -> {
+  }); // Compliant, the result is used immediately
+  ScopedValue.where(myScopedValue, "Simple carrier creation"); // Noncompliant
+  var myUnusedCarrier = ScopedValue.where(myScopedValue, "Unused carrier in variable"); // Noncompliant
+  var myUnused2LevelCarrier = ScopedValue.where(myScopedValue, "Unused carrrier in variable").where(myScopedValue2, "2 levels of where"); // Noncompliant
+  var myUsedCarrier = ScopedValue.where(myScopedValue, "Used carrier in variable"); // Compliant, the result is assigned to a variable and used
+  var myUsed2LevelCarrier = ScopedValue.where(myScopedValue, "Used carrier in variable").where(myScopedValue2, "2 levels of where"); // Compliant, the result is assigned to a variable and used
+  myUsedCarrier.run(() -> {
+  });
+  myUsed2LevelCarrier.run(() -> {
+  });
+}
+
+void escapedCarrierFunctionCall() {
+  var carrier = ScopedValue.where(myScopedValue, "Escape a carrier with a function call"); // compliant - the result escapes
+  usedCarrierArgument(carrier);
+}
+
+void escapedCarrierFunctionCall2() {
+  usedCarrierArgument(ScopedValue.where(myScopedValue, "Escape a carrier with a function call")); // compliant - the result escapes
+}
+
+void usedCarrierArgument(ScopedValue.Carrier carrier) { // compliant - the carrier is used in the function
+  carrier.run(() -> {
+  });
+}
+
+void unusedCarrierArgument(ScopedValue.Carrier carrier) { // Noncompliant
+}
+
+ScopedValue.Carrier escapedCarrierReturn() {
+  var carrier = ScopedValue.where(myScopedValue, "Escape a carrier with a return"); // compliant - the result escapes
+  return carrier;
+}
+
+ScopedValue.Carrier escapedCarrierReturn2() {
+  return ScopedValue.where(myScopedValue, "Escape a carrier with a return"); // compliant - the result escapes
+}
+
+void escapedCarrierArgument(ScopedValue.Carrier carrier) { // compliant - the carrier is used in the function
+  usedCarrierArgument(carrier);
+}