Validation only need be done in the external API (because it's not guaranteed that your consumers will provide valid inputs). The internal implementation shouldn't need validation as all its usages are known.
Oh and hey how's it goin?
__________________