SONARPY-3972 Rule S8500 Comparison methods should be defined completely (#1034)

Co-authored-by: Sonar Vibe Bot <vibe-bot@sonarsource.com>
Co-authored-by: Sebastian Zumbrunn <sebastian.zumbrunn@sonarsource.com>
GitOrigin-RevId: d90cd70b2e2a570011900f7278b29f98b6c83142

Author: 3 people

python-checks/src/main/java/org/sonar/python/checks/IncompleteComparisonMethodsCheck.java

@@ -0,0 +1,128 @@
+/*
+ * SonarQube Python Plugin
+ * Copyright (C) SonarSource Sàrl
+ * mailto:info AT sonarsource DOT com
+ *
+ * You can redistribute and/or modify this program under the terms of
+ * the Sonar Source-Available License Version 1, as published by SonarSource Sàrl.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
+ * See the Sonar Source-Available License for more details.
+ *
+ * You should have received a copy of the Sonar Source-Available License
+ * along with this program; if not, see https://sonarsource.com/license/ssal/
+ */
+package org.sonar.python.checks;
+
+import java.util.LinkedHashMap;
+import java.util.List;
+import java.util.Map;
+import java.util.Optional;
+import java.util.Set;
+import org.sonar.check.Rule;
+import org.sonar.plugins.python.api.PythonSubscriptionCheck;
+import org.sonar.plugins.python.api.SubscriptionContext;
+import org.sonar.plugins.python.api.tree.AnnotatedAssignment;
+import org.sonar.plugins.python.api.tree.AssignmentStatement;
+import org.sonar.plugins.python.api.tree.BaseTreeVisitor;
+import org.sonar.plugins.python.api.tree.ClassDef;
+import org.sonar.plugins.python.api.tree.Decorator;
+import org.sonar.plugins.python.api.tree.Expression;
+import org.sonar.plugins.python.api.tree.ExpressionList;
+import org.sonar.plugins.python.api.tree.FunctionDef;
+import org.sonar.plugins.python.api.tree.Name;
+import org.sonar.plugins.python.api.tree.Tree;
+import org.sonar.plugins.python.api.types.v2.matchers.TypeMatcher;
+import org.sonar.plugins.python.api.types.v2.matchers.TypeMatchers;
+
+@Rule(key = "S8500")
+public class IncompleteComparisonMethodsCheck extends PythonSubscriptionCheck {
+
+  private static final String MESSAGE = "Add the missing comparison methods or use \"functools.total_ordering\".";
+  private static final String SECONDARY_MESSAGE = "\"%s\" is defined here.";
+
+  private static final Set<String> ORDERING_METHODS = Set.of("__lt__", "__le__", "__gt__", "__ge__");
+
+  private static final TypeMatcher TOTAL_ORDERING_MATCHER = TypeMatchers.withFQN("functools.total_ordering");
+
+  @Override
+  public void initialize(Context context) {
+    context.registerSyntaxNodeConsumer(Tree.Kind.CLASSDEF, IncompleteComparisonMethodsCheck::checkClassDef);
+  }
+
+  private static void checkClassDef(SubscriptionContext ctx) {
+    ClassDef classDef = (ClassDef) ctx.syntaxNode();
+
+    CollectOrderingMethodNamesVisitor visitor = new CollectOrderingMethodNamesVisitor();
+    classDef.body().accept(visitor);
+
+    if (visitor.definitions.isEmpty() || visitor.definitions.size() == ORDERING_METHODS.size()) {
+      return;
+    }
+
+    for (Decorator decorator : classDef.decorators()) {
+      if (TOTAL_ORDERING_MATCHER.isTrueFor(decorator.expression(), ctx)) {
+        return;
+      }
+    }
+
+    PreciseIssue issue = ctx.addIssue(classDef.name(), MESSAGE);
+    visitor.definitions.forEach((name, tree) -> issue.secondary(tree, String.format(SECONDARY_MESSAGE, name)));
+  }
+
+  /**
+   * Collects ordering methods defined at the top level of a class body, whether they are
+   * introduced by a {@code def} or by an assignment such as {@code __lt__ = lambda ...}.
+   * The map preserves the first occurrence per name in source order, which keeps secondary
+   * locations stable when a method is shadowed.
+   * Mirrors the recursion-control pattern of {@code TreeUtils.CollectFunctionDefsVisitor}:
+   * does not descend into nested classes or nested functions.
+   */
+  private static class CollectOrderingMethodNamesVisitor extends BaseTreeVisitor {
+    private final Map<String, Tree> definitions = new LinkedHashMap<>();
+
+    @Override
+    public void visitClassDef(ClassDef nestedClass) {
+      // Do not descend into nested classes
+    }
+
+    @Override
+    public void visitFunctionDef(FunctionDef functionDef) {
+      Name name = functionDef.name();
+      if (ORDERING_METHODS.contains(name.name())) {
+        definitions.putIfAbsent(name.name(), name);
+      }
+      // Do not descend into nested functions
+    }
+
+    @Override
+    public void visitAssignmentStatement(AssignmentStatement assignment) {
+      assignmentTargetName(assignment)
+        .filter(name -> ORDERING_METHODS.contains(name.name()))
+        .ifPresent(name -> definitions.putIfAbsent(name.name(), name));
+      super.visitAssignmentStatement(assignment);
+    }
+
+    @Override
+    public void visitAnnotatedAssignment(AnnotatedAssignment annotated) {
+      if (annotated.assignedValue() != null && annotated.variable() instanceof Name name && ORDERING_METHODS.contains(name.name())) {
+        definitions.putIfAbsent(name.name(), name);
+      }
+      super.visitAnnotatedAssignment(annotated);
+    }
+
+    private static Optional<Name> assignmentTargetName(AssignmentStatement assignment) {
+      List<ExpressionList> lhsList = assignment.lhsExpressions();
+      if (lhsList.size() != 1) {
+        return Optional.empty();
+      }
+      List<Expression> expressions = lhsList.get(0).expressions();
+      if (expressions.size() == 1 && expressions.get(0) instanceof Name name) {
+        return Optional.of(name);
+      }
+      return Optional.empty();
+    }
+  }
+}

python-checks/src/main/java/org/sonar/python/checks/OpenSourceCheckList.java

@@ -286,6 +286,7 @@ public Stream<Class<?>> getChecks() {
       ImpossibleBoundariesCheck.class,
       IncompatibleOperandsCheck.class,
       InconsistentTupleReturnCheck.class,
+      IncompleteComparisonMethodsCheck.class,
       InconsistentTypeHintCheck.class,
       IncorrectExceptionTypeCheck.class,
       IncorrectParameterDatetimeConstructorsCheck.class,

python-checks/src/main/resources/org/sonar/l10n/py/rules/python/S8500.html

@@ -0,0 +1,108 @@
+<p>This rule raises an issue when a class defines one or more rich comparison methods (<code>__lt__</code>, <code>__le__</code>, <code>__gt__</code>,
+<code>__ge__</code>) without using the <code>functools.total_ordering</code> decorator or defining all of them.</p>
+<h2>Why is this an issue?</h2>
+<p>Python classes can implement rich comparison methods to enable sorting and comparison operations. These methods include:</p>
+<ul>
+  <li><code>__lt__</code> for less than (<code>&lt;</code>)</li>
+  <li><code>__le__</code> for less than or equal to (<code>&lt;=</code>)</li>
+  <li><code>__gt__</code> for greater than (<code>&gt;</code>)</li>
+  <li><code>__ge__</code> for greater than or equal to (<code>&gt;=</code>)</li>
+  <li><code>__eq__</code> for equality (<code>==</code>)</li>
+  <li><code>__ne__</code> for inequality (<code>!=</code>)</li>
+</ul>
+<p>When you define only some of these methods, Python cannot automatically infer the missing ones. This leads to inconsistent behavior:</p>
+<ul>
+  <li>sorting algorithms may fail or produce incorrect results</li>
+  <li>comparison operations may raise <code>TypeError</code> exceptions</li>
+  <li>code that expects symmetric comparisons, such as <code>a &lt; b</code> being true implying <code>b &gt; a</code> is also true, may behave
+  unexpectedly</li>
+</ul>
+<p>For example, if a class defines only <code>__lt__</code>, then <code>a &lt; b</code> will work, but <code>a &gt; b</code> will fall back to
+Python’s default behavior of comparing object identities, which is almost never what you want.</p>
+<p>Python provides the <code>functools.total_ordering</code> decorator specifically to solve this problem. It allows you to define just
+<code>__eq__</code> and one other comparison method, and it automatically generates the rest. This ensures consistent and correct comparison behavior
+across all operations.</p>
+<h3>What is the potential impact?</h3>
+<p>Incomplete comparison method implementations can cause several problems:</p>
+<ul>
+  <li><strong>Sorting failures</strong>: built-in functions like <code>sorted()</code> or list methods like <code>sort()</code> may raise exceptions
+  or produce incorrect ordering</li>
+  <li><strong>Unexpected comparison results</strong>: code that relies on comparison symmetry may produce wrong results, leading to logic errors</li>
+  <li><strong>Maintenance difficulties</strong>: future developers may not realize that certain comparison operations are missing, leading to bugs
+  when they use those operations</li>
+  <li><strong>Container behavior</strong>: data structures like heaps or priority queues that depend on comparisons may malfunction</li>
+</ul>
+<p>While this typically will not cause security vulnerabilities, it can lead to application logic errors that are difficult to diagnose and debug.</p>
+<h2>How to fix it</h2>
+<p>Either use the <code>@functools.total_ordering</code> decorator and define <code>__eq__</code> and one ordering method, typically
+<code>__lt__</code>, or define all four ordering methods (<code>__lt__</code>, <code>__le__</code>, <code>__gt__</code>, <code>__ge__</code>)
+explicitly.</p>
+<h3>Code examples</h3>
+<h4>Noncompliant code example</h4>
+<pre data-diff-id="1" data-diff-type="noncompliant">
+class Person:
+    def __init__(self, name, age):
+        self.name = name
+        self.age = age
+
+    def __lt__(self, other):  # Noncompliant
+        return self.age &lt; other.age
+</pre>
+<h4>Compliant solution</h4>
+<pre data-diff-id="1" data-diff-type="compliant">
+from functools import total_ordering
+
+@total_ordering
+class Person:
+    def __init__(self, name, age):
+        self.name = name
+        self.age = age
+
+    def __eq__(self, other):
+        return self.age == other.age
+
+    def __lt__(self, other):
+        return self.age &lt; other.age
+</pre>
+<h4>Noncompliant code example</h4>
+<pre data-diff-id="2" data-diff-type="noncompliant">
+class Point:
+    def __init__(self, x, y):
+        self.x = x
+        self.y = y
+
+    def __lt__(self, other):  # Noncompliant
+        return self.x &lt; other.x
+</pre>
+<h4>Compliant solution</h4>
+<pre data-diff-id="2" data-diff-type="compliant">
+class Point:
+    def __init__(self, x, y):
+        self.x = x
+        self.y = y
+
+    def __lt__(self, other):
+        return self.x &lt; other.x
+
+    def __le__(self, other):
+        return self.x &lt;= other.x
+
+    def __gt__(self, other):
+        return self.x &gt; other.x
+
+    def __ge__(self, other):
+        return self.x &gt;= other.x
+</pre>
+<h3>How does this work?</h3>
+<p>The <code>@functools.total_ordering</code> decorator automatically generates all missing comparison methods from the ones you define. This ensures
+consistent and correct comparison behavior across all operations.</p>
+<h2>Resources</h2>
+<h3>Documentation</h3>
+<ul>
+  <li>Python Documentation - <a
+  href="https://docs.python.org/3/library/functools.html#functools.total_ordering"><code>functools.total_ordering</code></a></li>
+  <li>Python Documentation - <a href="https://docs.python.org/3/reference/datamodel.html#object.&lt;em&gt;lt&lt;/em&gt;">Rich Comparison
+  Methods</a></li>
+  <li>PEP 207 - <a href="https://peps.python.org/pep-0207/">Rich Comparisons</a></li>
+</ul>
+

python-checks/src/main/resources/org/sonar/l10n/py/rules/python/S8500.json

@@ -0,0 +1,25 @@
+{
+  "title": "Comparison methods should be defined completely",
+  "type": "CODE_SMELL",
+  "status": "ready",
+  "remediation": {
+    "func": "Constant\/Issue",
+    "constantCost": "5 min"
+  },
+  "tags": [
+    "pitfall",
+    "comparison"
+  ],
+  "defaultSeverity": "Major",
+  "ruleSpecification": "RSPEC-8500",
+  "sqKey": "S8500",
+  "scope": "All",
+  "quickfix": "unknown",
+  "code": {
+    "impacts": {
+      "RELIABILITY": "HIGH",
+      "MAINTAINABILITY": "HIGH"
+    },
+    "attribute": "COMPLETE"
+  }
+}

python-checks/src/main/resources/org/sonar/l10n/py/rules/python/Sonar_way_profile.json

@@ -333,6 +333,7 @@
     "S8493",
     "S8494",
     "S8495",
+    "S8500",
     "S8503",
     "S8504",
     "S8505",

python-checks/src/test/java/org/sonar/python/checks/IncompleteComparisonMethodsCheckTest.java

@@ -0,0 +1,28 @@
+/*
+ * SonarQube Python Plugin
+ * Copyright (C) SonarSource Sàrl
+ * mailto:info AT sonarsource DOT com
+ *
+ * You can redistribute and/or modify this program under the terms of
+ * the Sonar Source-Available License Version 1, as published by SonarSource Sàrl.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
+ * See the Sonar Source-Available License for more details.
+ *
+ * You should have received a copy of the Sonar Source-Available License
+ * along with this program; if not, see https://sonarsource.com/license/ssal/
+ */
+package org.sonar.python.checks;
+
+import org.junit.jupiter.api.Test;
+import org.sonar.python.checks.utils.PythonCheckVerifier;
+
+class IncompleteComparisonMethodsCheckTest {
+
+  @Test
+  void test() {
+    PythonCheckVerifier.verify("src/test/resources/checks/incompleteComparisonMethods.py", new IncompleteComparisonMethodsCheck());
+  }
+}