Travis failure is unrelated

@Simperfit , @sroze : Actually you'll get a Could not denormalize object of type \DateTime, no supporting normalizer found exception.

IIRC: as a nullable nested attribute on an object when using the ObjectNormalizer, when encountering null it should return null.
But in case you directly call $this->serializer->denormalize(null, '\DateTime', $format, $context) (in your own serializer/denormalizer aware denormalizer for instance), you'll get this exception with your changes.
That's probably fine, as we never account for null as $data in any denormalizer AFAIK, but it's kind of disturbing having an exception about no denormalizer found for \DateTime while there is one, but just won't support null.
Shouldn't we throw an UnexpectedValueException from denormalize on null or empty string instead?

@ogizanagi I kind of agree with you, @dunglas WDYT ?

PR Modified to now throw on empty strings and null values.

Why why does this normalizer lie in supportsDenormalization if it doesn't support null/empty string?

It's kind of right, isn't it? It says no supporting denormalizer has been found, which is true. This denormalizer does not support null.

That message could be improved, but that's different problem.

None of the denormalizers supports null actually AFAIK. IMHO, it's confusing getting a "No denormalizer found" exception when explicitly asking for \DateTime and knowing I have a DateTimeNormalizer registered. Here it's calling denormalize on null which is wrong, hence the UnexpectedValueException makes more sense to me.

it's confusing getting a "No denormalizer found"

It is, but that's not a problem of this normalizer, that's a thing to be fixed in Serializer.

If denormalizers are not allowed to decide if they support denormalization based on a value passed, that's serious flaw in DenormalizerInterface

I suggest we return null for null input. It would be consistent with JMS serializer.

@ostrolucky I don't know if we have to be consistent with JMS. I think returning an error is better for DX because you may have a bug at some point and passing null instead of the right value, this shows you that something is wrong.

If you are returning null it could lead to unwanted behaviour since this should not be able to return null.

I agree that something has to be done in the denormalizer (supports method) but this is IMO the best way to deal with this.

Forcing developer to implement his own denormalizer just to return null for null input and messing with order of denormalizers in serializer is bad DX. It's also bad DX to work around the root problem (not fixing message in Serializer), so when developer implements supportsDenormalization with check based on value, he will get weird message again.

How about this then: Allow to specify target of denormalization to be ?DateTime::class alongside DateTime::class. Now it's clear output of denormalization is allowed to be null.

don't know if we have to be consistent with JMS

We don't have to do it same way, but we should take more inspiration from it. JMS is much more mature PHP serializer. We don't have to throw exception and hope for the best that developers won't mind it too much. We can learn from history of others. Right now we are dealing with problems which were already solved long ago. We shouldn't have to do that. JMS datetime denormalizer returns null for null input since 2012. It also allows to specify what to do with nulls in scope of whole Serialization context, via Context setting.

But that's outside the scope of this PR. For now my request is to at least give developer option to not crash denormalization if input in this denormalizer is null. Seems returning null is expected behaviour from user who posted linked issue too, after all.

So @ogizanagi what do you think ?

Forcing developer to implement his own denormalizer just to return null for null input and messing with order of denormalizers in serializer is bad DX.

There might be a little misunderstanding here: no need for the developper to implement his own denormalizers just for handling null properties. That's calling denormalize on null which is wrong in the current state of the serializer and core denormalizers implementations.
And it's probably motivated by a simple reason: it'd be a noop (null stays null, no need to denormalize anything).

High-level denormalizers like the ObjectNormalizer are clever enough to not call denormalize on null. And if you write your own high-level denormalizer-aware denormalizer for your objects with nested properties to denormalize, you'll save a useless call to $this->denormalizer->denormalize for a given field if the data you get for it is null.

Low-level denormalizers in core like the DateTime ones never accounted for null as $data.

So to sum-up: I think this patch is fine regarding the current state of the serializer and core denormalizers. Handling null to return null inside denormalize would be a paradigm-shift so it'll need its own issue & discussion and each core denormalizers would need to be updated.
Or it'll might be fine to just update Serializer::denormalize() to return null on $data being null.

Thank you @Simperfit.

With this feature we can't anymore denormalize object with null datetime attributes ?

On this call:

/** @var Symfony\Component\Serializer\Normalizer\DenormalizerInterface $denormalizer */
$denormalizer->denormalize($response['_source'], City::class);

I get this error :
The data is either an empty string or null, you should pass a string that can be parsed with the passed format or a valid DateTime string

The null attribute is City::updatedAt of DateTime type

There isn't an option to skip null values ?

I found a solution : php doc type hinting null too:

/**
 * @var DateTime|null
 * @Assert\DateTime()
 */
private $updatedAt;

@florianajir : Is your City::updatedAt properly identified as nullable? Check if the docblock has proper @var \DateTime|null so the PropertyInfo can extract this info.
Indeed, you have to properly typehint/document the nullable properties for the ObjectNormalizer to work as expected. Otherwise the PropertyInfo component cannot guess the field is nullable.

As I said in a previous comment, the ObjectNormalizer is clever enough to not call denormalize on null. Of course that's only true if it knows it's nullable.
Without this info, it'll try to call the DateTime denormalizer, which would result in the bug mentioned in original issue, i.e a new DateTime object set to the current date and time, which was an unexpected behavior.