Implement Analyzer and best-effort Code Fix for SafeHandle Public Parameterless Constructor guidance.

[jkoritzinsky]

As part of dotnet/runtime#46830, we updated the guidance for concrete SafeHandle-derived types to request that all SafeHandle-derived types provide a public parameterless constructor to aid in source-generated interop scenarios.

This PR adds a code analyzer to detect when a public parameterless constructor is not present on a concrete SafeHandle-derived type.

It also adds a code fix for the cases where there is a non-public parameterless constructor (where it changes the visibility to public) and when the base class has an accessible parameterless constructor (where it adds a public parameterless constructor).

cc: @AaronRobinsonMSFT @elinor-fung

Fixes dotnet/runtime#46830

[AaronRobinsonMSFT]

LGTM. I defer to the analyzer experts to sign off.

[Youssef1313]

Do we need to pass true for getInnermostNodeForTie? If so, we should add a test too.

[jkoritzinsky]

I don't know what that flag does, so I don't know if I need to pass it or what a test case would look like.

[Youssef1313]

@jkoritzinsky The flag is when two nodes have the same span, which one to get?
I don't think this can happen for the case of this analyzer, but will let @mavasani confirm in case there is any corner case I'm missing.

[jkoritzinsky]

I don't believe that can happen with the nodes we're looking at in this analyzer, so I don't think we need to worry about it.

[Youssef1313]

@mavasani I'm quite confused regarding CodeFixContext when it has multiple diagnostics, which diagnostic will the value of context.Span belong to?

[mavasani]

All diagnostics in the code fix context should have the same ID and span.

[Youssef1313]

It looks like the semantic model is used to calculate things that are already calculated in the analyzer? Can we use additionalProperties to avoid re-calculating that?

[jkoritzinsky]

We don't check what constructors the base class has in the analyzer. That's only checked in the fixer.

[sharwell]

This is going to block the light bulb on semantic evaluation. It's better to quickly show a code fix that ends up taking no action than to slowly show no code fix at all.

[codecov]

Codecov Report

Merging #5043 (483e77e) into release/6.0.1xx (d464b5f) will increase coverage by 0.00%.
The diff coverage is 98.72%.

@@                Coverage Diff                @@
##           release/6.0.1xx    #5043    +/-   ##
=================================================
  Coverage            95.58%   95.59%            
=================================================
  Files                 1223     1226     +3     
  Lines               280320   280792   +472     
  Branches             16841    16867    +26     
=================================================
+ Hits                267955   268427   +472     
- Misses               10092    10096     +4     
+ Partials              2273     2269     -4     

[Youssef1313]

@jkoritzinsky New analyzers should target the latest preview branch, can you rebase?

[jkoritzinsky]

I believe I've addressed all of the feedback.

[jkoritzinsky]

@dotnet/roslyn-analysis this PR is ready for review.

[mavasani]

@jkoritzinsky Please retarget the PR to release\6.0.1xx. Thanks!

[jkoritzinsky]

@mavasani I've retargeted the PR.

[jkoritzinsky]

@mavasani do you have any other feedback?

[sharwell]

❗ The data necessary to separate MakeParameterlessConstructorPublic from AddPublicParameterlessConstructor should be placed in the diagnostic properties, or determined from syntax alone (this should be easy). The data necessary to further disable showing a code fix for cases where no base constructor is available should be either placed in the property bag of the diagnostic, or moved into the callback AddParameterlessConstructor. This will ensure the light bulb is not delayed for a semantic evaluation.

If you end up showing AddPublicParameterlessConstructor for a case where no constructor is added, this is fine and the code fix should simply take no action. In the future, it may be beneficial to detect analyzer execution in an environment that supports code fixes, such that it can perform additional work in the analyzer to provide accurate data to the code fix with minimal overhead.

[jkoritzinsky]

@sharwell can we write down these policies (ie. not getting the SemanticModel object during the RegisterCodeFixesAsync method) for newer contributors to the repo like myself? I've just been following the patterns I've seen in other analyzers/code-fixers as I've been contributing here.

[jkoritzinsky]

Done! Once CI is green, this'll be ready for you to merge (I don't have permissions).

[sharwell]

@mavasani this LGTM reassigning back so you can determine the correct merge point

[mavasani]

@jkoritzinsky Can you please resolve merge conflicts?

[mavasani]

I can merge once you resolve the conflicts and my question in the review comments. Thanks for the contribution!