[Java/C++/C#] Fix a bug in overzealous DTO validation (#1073)

* [Java] Cover null values in PBTs.

We had a recent bug report where the generated Java DTOs were not
correctly handling null values for optional fields.

It turns out the property-based tests were not encoding these values.
Now, they do, and they fail with messages like this one:

```
java.lang.IllegalArgumentException: member1: value is out of allowed range: 255

	at uk.co.real_logic.sbe.properties.TestMessageDto.validateMember1(TestMessageDto.java:33)
	at uk.co.real_logic.sbe.properties.TestMessageDto.member1(TestMessageDto.java:55)
	at uk.co.real_logic.sbe.properties.TestMessageDto.decodeWith(TestMessageDto.java:112)
	at uk.co.real_logic.sbe.properties.TestMessageDto.decodeFrom(TestMessageDto.java:135)
	at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
	at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:77)
	at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
	at java.base/java.lang.reflect.Method.invoke(Method.java:568)
	at uk.co.real_logic.sbe.properties.DtosPropertyTest.javaDtoEncodeShouldBeTheInverseOfDtoDecode(DtosPropertyTest.java:114)
	at java.base/java.lang.reflect.Method.invoke(Method.java:568)
```

* [Java] Support arbitrary char arrays in PBTs without data after null.

I spotted a failure in the DTO round-trip test locally where the DTO's
(and flyweight codec's) String-typed accessor would return `""` if the
first character in an array was the `null` character. Therefore, it
would not round-trip the "hidden bytes" after the `null`.

In this commit, I've added a generation mode that disables the
generation of strings with this format. Given the representation of
char[N] in DTOs it would not be sensible to support round-tripping these
"hidden bytes".

* [Java,C++,C#] Improve DTO value validation.

Previously, in Java, the generated validation methods would not permit
the null value, even for fields with optional presence. Now, we do allow
these correctly.

In this commit, I've also attempted to clean up, centralise, and test
the logic that decides when validation for a particular side of a range
needs to be included. We omit the validation when the native type cannot
represent values outside of the range.

There are still some gaps around validation, e.g., we do not validate
array values.

* [Java] Fix JSON escaping of string characters, delimeters, etc.

Previously, there were several problems:

- (delimeters) single `char` values were output with single quotes, but this is not
valid JSON.

- (escaping) escaping was not implemented as per the specification in
Section 7 of RFC 8259. For example, special-cased control codes, e.g.,
`\b` were encoded as `\\` followed by `\b` rather than `\\` followed by
`b`. Also, the non-special-cased control characters were not encoded
using JSON's mechanism for doing so, e.g., `\u0020`.

- (numbers) Section 6 of the specification says "Numeric values that
cannot be represented in the grammar below (such as Infinity and NaN)
are not permitted." However, these were encoded as expressions of
numbers with multiple terms, e.g., `-1/0` for positive infinity. While
these are quite logical encodings of such "numbers", it is not valid
JSON. Therefore, I have kept the expressions, but enclosed them within
quotes.

Also, in this commit:

- Replaced custom compilation logic with Agrona's CompilerUtil. Note
that `CompilerUtil#compileOnDisk` is broken. I attempted to use it to
see if I could see classes in IntelliJ rather than just stack frames,
but it fails with an NPE.

Author: ZachBray

sbe-tool/src/main/java/uk/co/real_logic/sbe/generation/common/DtoValidationUtil.java

@@ -0,0 +1,224 @@
+/*
+ * Copyright 2013-2025 Real Logic Limited.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package uk.co.real_logic.sbe.generation.common;
+
+import uk.co.real_logic.sbe.PrimitiveType;
+import uk.co.real_logic.sbe.PrimitiveValue;
+import uk.co.real_logic.sbe.ir.Encoding;
+import uk.co.real_logic.sbe.ir.Token;
+
+/**
+ * Helpers for generating value validation code.
+ */
+public final class DtoValidationUtil
+{
+    private DtoValidationUtil()
+    {
+    }
+
+    /**
+     * What support the target language has for native integer types.
+     */
+    public enum NativeIntegerSupport
+    {
+        /**
+         * The target language supports both signed and unsigned integers natively and the generated code uses
+         * these to represent the SBE types.
+         */
+        SIGNED_AND_UNSIGNED,
+
+        /**
+         * The target language only supports signed integers natively and the generated code uses the next biggest
+         * signed integer type to represent the unsigned SBE types, except for UINT64 which is always represented
+         * as a signed long.
+         */
+        SIGNED_ONLY
+    }
+
+    /**
+     * Checks if the native type can represent values less than the valid range of the SBE type.
+     *
+     * @param fieldToken     the field token to check if it is optional.
+     * @param encoding       the encoding of the field to check the applicable minimum and null values.
+     * @param integerSupport the support for native integer types in the target language.
+     * @return true if the native type can represent values less than the valid range of the SBE type,
+     * false otherwise.
+     */
+    public static boolean nativeTypeRepresentsValuesLessThanValidRange(
+        final Token fieldToken,
+        final Encoding encoding,
+        final NativeIntegerSupport integerSupport)
+    {
+        final PrimitiveType primitiveType = encoding.primitiveType();
+        final PrimitiveValue minValue = encoding.applicableMinValue();
+
+        switch (minValue.representation())
+        {
+            case LONG:
+                final long nativeMinValue = nativeTypeMinValue(primitiveType, integerSupport);
+                final PrimitiveValue nullValue = encoding.applicableNullValue();
+                final boolean gapBefore = minValue.longValue() > nativeMinValue;
+                final boolean nullFillsGap = fieldToken.isOptionalEncoding() &&
+                    nullValue.longValue() == nativeMinValue &&
+                    minValue.longValue() == nativeMinValue + 1L;
+                return gapBefore && !nullFillsGap;
+
+            case DOUBLE:
+                switch (primitiveType)
+                {
+                    case FLOAT:
+                        return minValue.doubleValue() > -Float.MAX_VALUE;
+                    case DOUBLE:
+                        return minValue.doubleValue() > -Double.MAX_VALUE;
+                    default:
+                        throw new IllegalArgumentException(
+                            "Type did not have a double representation: " + primitiveType);
+                }
+
+            default:
+                throw new IllegalArgumentException(
+                    "Cannot understand the range of a type with representation: " + minValue.representation());
+        }
+    }
+
+    /**
+     * Checks if the native type can represent values greater than the valid range of the SBE type.
+     *
+     * @param fieldToken     the field token to check if it is optional.
+     * @param encoding       the encoding of the field to check the applicable maximum and null values.
+     * @param integerSupport the support for native integer types in the target language.
+     * @return true if the native type can represent values greater than the valid range of the SBE type,
+     * false otherwise.
+     */
+    public static boolean nativeTypeRepresentsValuesGreaterThanValidRange(
+        final Token fieldToken,
+        final Encoding encoding,
+        final NativeIntegerSupport integerSupport)
+    {
+        final PrimitiveType primitiveType = encoding.primitiveType();
+        final PrimitiveValue maxValue = encoding.applicableMaxValue();
+
+        switch (maxValue.representation())
+        {
+            case LONG:
+                final long nativeMaxValue = nativeTypeMaxValue(primitiveType, integerSupport);
+                final PrimitiveValue nullValue = encoding.applicableNullValue();
+                final boolean gapAfter = maxValue.longValue() < nativeMaxValue;
+                final boolean nullFillsGap = fieldToken.isOptionalEncoding() &&
+                    nullValue.longValue() == nativeMaxValue &&
+                    maxValue.longValue() + 1L == nativeMaxValue;
+                return gapAfter && !nullFillsGap;
+
+            case DOUBLE:
+                switch (primitiveType)
+                {
+                    case FLOAT:
+                        return maxValue.doubleValue() < Float.MAX_VALUE;
+                    case DOUBLE:
+                        return maxValue.doubleValue() < Double.MAX_VALUE;
+                    default:
+                        throw new IllegalArgumentException(
+                            "Type did not have a double representation: " + primitiveType);
+                }
+
+            default:
+                throw new IllegalArgumentException(
+                    "Cannot understand the range of a type with representation: " + maxValue.representation());
+        }
+    }
+
+    private static long nativeTypeMinValue(
+        final PrimitiveType primitiveType,
+        final NativeIntegerSupport integerSupport)
+    {
+        switch (primitiveType)
+        {
+            case CHAR:
+                return Character.MIN_VALUE;
+            case INT8:
+                return Byte.MIN_VALUE;
+            case INT16:
+                return Short.MIN_VALUE;
+            case INT32:
+                return Integer.MIN_VALUE;
+            case INT64:
+                return Long.MIN_VALUE;
+            case UINT8:
+                if (integerSupport == NativeIntegerSupport.SIGNED_ONLY)
+                {
+                    return Short.MIN_VALUE;
+                }
+                return 0L;
+            case UINT16:
+                if (integerSupport == NativeIntegerSupport.SIGNED_ONLY)
+                {
+                    return Integer.MIN_VALUE;
+                }
+                return 0L;
+            case UINT32:
+                if (integerSupport == NativeIntegerSupport.SIGNED_ONLY)
+                {
+                    return Long.MIN_VALUE;
+                }
+                return 0L;
+            case UINT64:
+                return 0L;
+            default:
+                throw new IllegalArgumentException("Type did not have a long representation: " + primitiveType);
+        }
+    }
+
+    private static long nativeTypeMaxValue(
+        final PrimitiveType primitiveType,
+        final NativeIntegerSupport integerSupport)
+    {
+        switch (primitiveType)
+        {
+            case CHAR:
+                return Character.MAX_VALUE;
+            case INT8:
+                return Byte.MAX_VALUE;
+            case INT16:
+                return Short.MAX_VALUE;
+            case INT32:
+                return Integer.MAX_VALUE;
+            case INT64:
+                return Long.MAX_VALUE;
+            case UINT8:
+                if (integerSupport == NativeIntegerSupport.SIGNED_ONLY)
+                {
+                    return Short.MAX_VALUE;
+                }
+                return 0xFFL;
+            case UINT16:
+                if (integerSupport == NativeIntegerSupport.SIGNED_ONLY)
+                {
+                    return Integer.MAX_VALUE;
+                }
+                return 0xFFFFL;
+            case UINT32:
+                if (integerSupport == NativeIntegerSupport.SIGNED_ONLY)
+                {
+                    return Long.MAX_VALUE;
+                }
+                return 0xFFFFFFFFL;
+            case UINT64:
+                return 0xFFFFFFFFFFFFFFFFL;
+            default:
+                throw new IllegalArgumentException("Type did not have a long representation: " + primitiveType);
+        }
+    }
+}

sbe-tool/src/main/java/uk/co/real_logic/sbe/generation/cpp/CppDtoGenerator.java

@@ -35,6 +35,9 @@
 
 import static uk.co.real_logic.sbe.generation.Generators.toLowerFirstChar;
 import static uk.co.real_logic.sbe.generation.Generators.toUpperFirstChar;
+import static uk.co.real_logic.sbe.generation.common.DtoValidationUtil.NativeIntegerSupport.SIGNED_AND_UNSIGNED;
+import static uk.co.real_logic.sbe.generation.common.DtoValidationUtil.nativeTypeRepresentsValuesGreaterThanValidRange;
+import static uk.co.real_logic.sbe.generation.common.DtoValidationUtil.nativeTypeRepresentsValuesLessThanValidRange;
 import static uk.co.real_logic.sbe.generation.cpp.CppUtil.*;
 import static uk.co.real_logic.sbe.ir.GenerationUtil.collectFields;
 import static uk.co.real_logic.sbe.ir.GenerationUtil.collectGroups;
@@ -1591,8 +1594,11 @@ private static void generateSingleValuePropertyValidateMethod(
 
         String value = "value";
 
-        final boolean mustPreventLesser = !encoding.applicableMinValue().equals(encoding.primitiveType().minValue());
-        final boolean mustPreventGreater = !encoding.applicableMaxValue().equals(encoding.primitiveType().maxValue());
+        final boolean mustPreventLesser =
+            nativeTypeRepresentsValuesLessThanValidRange(fieldToken, encoding, SIGNED_AND_UNSIGNED);
+
+        final boolean mustPreventGreater =
+            nativeTypeRepresentsValuesGreaterThanValidRange(fieldToken, encoding, SIGNED_AND_UNSIGNED);
 
         if (fieldToken.isOptionalEncoding())
         {

sbe-tool/src/main/java/uk/co/real_logic/sbe/generation/csharp/CSharpDtoGenerator.java

@@ -35,6 +35,9 @@
 import java.util.Set;
 import java.util.function.Predicate;
 
+import static uk.co.real_logic.sbe.generation.common.DtoValidationUtil.NativeIntegerSupport.SIGNED_AND_UNSIGNED;
+import static uk.co.real_logic.sbe.generation.common.DtoValidationUtil.nativeTypeRepresentsValuesGreaterThanValidRange;
+import static uk.co.real_logic.sbe.generation.common.DtoValidationUtil.nativeTypeRepresentsValuesLessThanValidRange;
 import static uk.co.real_logic.sbe.generation.csharp.CSharpUtil.*;
 import static uk.co.real_logic.sbe.ir.GenerationUtil.collectFields;
 import static uk.co.real_logic.sbe.ir.GenerationUtil.collectGroups;
@@ -1285,7 +1288,9 @@ private void generateSingleValueProperty(
                 .append("}\n");
         }
 
-        final boolean mustPreventLesser = !encoding.applicableMinValue().equals(encoding.primitiveType().minValue());
+        final boolean mustPreventLesser =
+            nativeTypeRepresentsValuesLessThanValidRange(fieldToken, typeToken.encoding(), SIGNED_AND_UNSIGNED);
+
         if (mustPreventLesser)
         {
             sb.append(indent).append(INDENT)
@@ -1299,7 +1304,9 @@ private void generateSingleValueProperty(
                 .append("}\n");
         }
 
-        final boolean mustPreventGreater = !encoding.applicableMaxValue().equals(encoding.primitiveType().maxValue());
+        final boolean mustPreventGreater =
+            nativeTypeRepresentsValuesGreaterThanValidRange(fieldToken, typeToken.encoding(), SIGNED_AND_UNSIGNED);
+
         if (mustPreventGreater)
         {
             sb.append(indent).append(INDENT)