-
-
Notifications
You must be signed in to change notification settings - Fork 52
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
40008ca
commit 9c95e25
Showing
9 changed files
with
562 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,24 @@ | ||
# MA0161 - UseShellExecute must be explicitly set | ||
|
||
Detects when `Process.Start` is called without specifying the value of `UseShellExecute`. | ||
|
||
Specifying the value is important because the default value for this property is `true` on .NET Framework apps and `false` on .NET Core apps. It's a common issue when migrating a desktop app from .NET Framework to .NET Core. | ||
|
||
|
||
````c# | ||
using System.Diasgnostics; | ||
|
||
// Non compliant | ||
Process.Start(new ProcessStartInfo("cmd")); // Intent is not clear if you want to use ShellExecute or not | ||
Process.Start(new ProcessStartInfo("https://www.meziantou.net/")); // Will fail on .NET Core apps | ||
// Compliant | ||
Process.Start(new ProcessStartInfo("https://www.meziantou.net/") | ||
{ | ||
UseShellExecute = true, | ||
}); | ||
|
||
```` |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,23 @@ | ||
# MA0162 - Use Process.Start overload with ProcessStartInfo | ||
|
||
Detects when `Process.Start` is called without the `ProcessStartInfo` parameter. | ||
|
||
Specifying a `ProcessStartInfo` allows to specify the `UseShellExecute` property. This value is important because the default value for this property is `true` on .NET Framework apps and `false` on .NET Core apps. It's a common issue when migrating a desktop app from .NET Framework to .NET Core. | ||
|
||
````c# | ||
using System.Diasgnostics; | ||
|
||
// Non compliant | ||
Process.Start("cmd"); // Intent is not clear if you want to use ShellExecute or not | ||
Process.Start("https://www.meziantou.net/"); // Will fail on .NET Core apps | ||
// Compliant | ||
Process.Start(new ProcessStartInfo("https://www.meziantou.net/") | ||
{ | ||
UseShellExecute = true, | ||
}); | ||
|
||
```` |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,43 @@ | ||
# MA0163 - UseShellExecute must be false when redirecting standard input or output | ||
|
||
Detects when `Process.Start` is called without specifying the value of `UseShellExecute`. | ||
|
||
Specifying the value is important because: | ||
- The default value for this property is `true` on .NET Framework apps and `false` on .NET Core apps. It's a common issue when migrating a desktop app from .NET Framework to .NET Core. | ||
- It must be set to to `false` when redirecting I/O. Otherwise you'll get an issue at runtime. | ||
|
||
|
||
````c# | ||
using System.Diasgnostics; | ||
|
||
// Non compliant | ||
Process.Start("cmd"); // Intent is not clear if you want to use ShellExecute or not | ||
Process.Start("https://www.meziantou.net/"); // Will fail on .NET Core apps | ||
Process.Start(new ProcessStartInfo("cmd") | ||
{ | ||
RedirectStandardOutput = true, | ||
UseShellExecute = true, | ||
}); // It will throw with error "UseShellExecute must be set to false when redirecting I/O" | ||
Process.Start(new ProcessStartInfo("cmd") | ||
{ | ||
RedirectStandardOutput = true, | ||
}); // It will throw with error "UseShellExecute must be set to false when redirecting I/O" on .NET Framework apps | ||
// Compliant | ||
Process.Start(new ProcessStartInfo("https://www.meziantou.net/") | ||
{ | ||
UseShellExecute = true, | ||
}); | ||
|
||
Process.Start(new ProcessStartInfo("cmd") | ||
{ | ||
RedirectStandardOutput = true, | ||
UseShellExecute = false, | ||
}); | ||
|
||
```` |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,144 @@ | ||
using System.Collections.Immutable; | ||
using System.Linq; | ||
using Microsoft.CodeAnalysis; | ||
using Microsoft.CodeAnalysis.CSharp.Syntax; | ||
using Microsoft.CodeAnalysis.Diagnostics; | ||
using Microsoft.CodeAnalysis.Operations; | ||
|
||
namespace Meziantou.Analyzer.Rules; | ||
|
||
[DiagnosticAnalyzer(LanguageNames.CSharp)] | ||
public sealed class ProcessStartAnalyzer : DiagnosticAnalyzer | ||
{ | ||
private static readonly DiagnosticDescriptor UseShellExecuteMustBeExplicitlySet = new( | ||
RuleIdentifiers.UseShellExecuteMustBeSet, | ||
title: "UseShellExecute must be explicitly set", | ||
messageFormat: "UseShellExecute must be explicitly set when initializing a ProcessStartInfo", | ||
RuleCategories.Usage, | ||
DiagnosticSeverity.Info, | ||
isEnabledByDefault: false, | ||
description: "", | ||
helpLinkUri: RuleIdentifiers.GetHelpUri(RuleIdentifiers.UseShellExecuteMustBeSet)); | ||
|
||
private static readonly DiagnosticDescriptor UseProcessStartOverload = new( | ||
RuleIdentifiers.UseProcessStartOverload, | ||
title: "Use Process.Start overload with ProcessStartInfo", | ||
messageFormat: "Use an overload of Process.Start that has a ProcessStartInfo parameter", | ||
RuleCategories.Usage, | ||
DiagnosticSeverity.Info, | ||
isEnabledByDefault: false, | ||
description: "", | ||
helpLinkUri: RuleIdentifiers.GetHelpUri(RuleIdentifiers.UseProcessStartOverload)); | ||
|
||
private static readonly DiagnosticDescriptor SetToFalseWhenRedirectingOutput = new( | ||
RuleIdentifiers.UseShellExecuteMustBeFalse, | ||
title: "UseShellExecute must be false when redirecting standard input or output", | ||
messageFormat: "Set UseShellExecute to false when redirecting standard input or output", | ||
RuleCategories.Usage, | ||
DiagnosticSeverity.Warning, | ||
isEnabledByDefault: true, | ||
description: "", | ||
helpLinkUri: RuleIdentifiers.GetHelpUri(RuleIdentifiers.UseShellExecuteMustBeFalse)); | ||
|
||
public override ImmutableArray<DiagnosticDescriptor> SupportedDiagnostics => | ||
ImmutableArray.Create(UseShellExecuteMustBeExplicitlySet, SetToFalseWhenRedirectingOutput, UseProcessStartOverload); | ||
|
||
public override void Initialize(AnalysisContext context) | ||
{ | ||
context.EnableConcurrentExecution(); | ||
context.ConfigureGeneratedCodeAnalysis(GeneratedCodeAnalysisFlags.None); | ||
|
||
context.RegisterCompilationStartAction(ctx => | ||
{ | ||
var analyzerContext = new AnalyzerContext(ctx.Compilation); | ||
if (!analyzerContext.IsValid) | ||
return; | ||
|
||
ctx.RegisterOperationAction(analyzerContext.AnalyzeInvocation, OperationKind.Invocation); | ||
ctx.RegisterOperationAction(analyzerContext.AnalyzeObjectCreation, OperationKind.ObjectCreation); | ||
}); | ||
|
||
} | ||
|
||
private sealed class AnalyzerContext(Compilation compilation) | ||
{ | ||
private readonly INamedTypeSymbol? _processStartInfoSymbol = compilation.GetBestTypeByMetadataName("System.Diagnostics.ProcessStartInfo"); | ||
|
||
private readonly INamedTypeSymbol? _processSymbol = compilation.GetBestTypeByMetadataName("System.Diagnostics.Process"); | ||
|
||
public bool IsValid => _processStartInfoSymbol is not null; | ||
|
||
public void AnalyzeInvocation(OperationAnalysisContext context) | ||
{ | ||
var operation = (IInvocationOperation)context.Operation; | ||
if (IsProcessStartInvocation(operation)) | ||
{ | ||
if (!operation.Arguments.Any(IsProcessStartInfo)) | ||
{ | ||
// Calling Process.Start without ProcessStartInfo | ||
context.ReportDiagnostic(UseProcessStartOverload, operation); | ||
} | ||
} | ||
} | ||
|
||
public void AnalyzeObjectCreation(OperationAnalysisContext context) | ||
{ | ||
var operation = (IObjectCreationOperation)context.Operation; | ||
if (IsProcessStartInfoCreation(operation)) | ||
{ | ||
if (operation is { Initializer: {} initializer } ) | ||
{ | ||
var useShellExecuteInitializer = initializer.Initializers.OfType<ISimpleAssignmentOperation>() | ||
.FirstOrDefault(x => x.Target.Syntax is IdentifierNameSyntax { Identifier.Text: "UseShellExecute" }); | ||
|
||
if (useShellExecuteInitializer is null) | ||
{ | ||
if (IsRedirectingInputOrOutput(operation.SemanticModel!, initializer)) | ||
{ | ||
// Redirecting standard input or output while UseShellExecute is not explicitly set | ||
context.ReportDiagnostic(SetToFalseWhenRedirectingOutput, operation); | ||
} | ||
else | ||
{ | ||
// Constructing ProcessStartInfo without setting UseShellExecute in the initializer | ||
context.ReportDiagnostic(UseShellExecuteMustBeExplicitlySet, operation); | ||
} | ||
} | ||
else if (IsInitializedToTrue(operation.SemanticModel!, useShellExecuteInitializer)) | ||
{ | ||
if (IsRedirectingInputOrOutput(operation.SemanticModel!, initializer)) | ||
{ | ||
// Redirecting standard input or output while UseShellExecute is set to true | ||
context.ReportDiagnostic(SetToFalseWhenRedirectingOutput, operation); | ||
} | ||
} | ||
} | ||
else | ||
{ | ||
// Constructing ProcessStartInfo with not initializer at all | ||
context.ReportDiagnostic(UseShellExecuteMustBeExplicitlySet, operation); | ||
} | ||
} | ||
} | ||
|
||
private static bool IsInitializedToTrue(SemanticModel semanticModel, ISimpleAssignmentOperation simpleAssignmentOperation) | ||
=> semanticModel.GetConstantValue(simpleAssignmentOperation.Value.Syntax) is { HasValue: true, Value: true }; | ||
|
||
private static bool IsRedirectingInputOrOutput(SemanticModel semanticModel, | ||
IObjectOrCollectionInitializerOperation initializer) => | ||
initializer.Initializers.OfType<ISimpleAssignmentOperation>() | ||
.Any(x => x.Target.Syntax is IdentifierNameSyntax { Identifier.Text: "RedirectStandardError" or "RedirectStandardInput" or "RedirectStandardOutput" } | ||
&& IsInitializedToTrue(semanticModel, x)); | ||
|
||
private bool IsProcessStartInfo(IArgumentOperation operation) | ||
=> operation.Value.Type.IsEqualTo(_processStartInfoSymbol); | ||
|
||
private bool IsProcessStartInfoCreation(IObjectCreationOperation operation) | ||
=> operation.Type.IsEqualTo(_processStartInfoSymbol); | ||
|
||
private bool IsProcessStartInvocation(IInvocationOperation operation) | ||
=> operation.TargetMethod.Name == "Start" | ||
&& operation.TargetMethod.ContainingType.IsEqualTo(_processSymbol) | ||
&& operation.TargetMethod.IsStatic; | ||
} | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.