+1
In summary:
- We could use only
@Nullable. It just means that SonarQube will not check that calling code verifies that the return value used is not null. However SonarQube still throws an issue if it sees that the return value can be null if there’s no@Nullableannotation for it. - We could use both
@CheckForNulland@Nullable, with a recommendation to use@CheckForNullonly when the calling code must always check for null. It would provide an additional check in SonarQube. And for the other cases, use@Nullable. My fear is that this makes it more complex and as a coder, I’m not 100% sure what it means to ask calling code to always check for null (since there’s no method that always returnnull, there are always conditions (IFs) that would warrant not checking fornullif you know you’re not in the IF that would lead to returning null.
So I have a slight doubt in our ability to use @CheckForNull properly and in an objective way (ie not subjective, ie different depending on the dev).
I’d go for recommending to use always @CheckForNull by default, as it is the safest: most of the time we want to enforce checking for null value if we’re thinking about specifying that the method might be null. We could document that in the rare cases where we don’t need such check we could use @Nullable but frankly I’m not sure I see the point of using an annotation for such case: the javadoc could be enough then.
Just to let Sonar know that, yes, we know that method can return null, but it’s OK to not check for null in that specific case.