There's no mention of an indexed array. Rust guarantees that nothing can be NULL at compile time. If you need to have optional values then you have to use Option<T> and the compiler forces you to choose how to handle the lack of value.
Array/slice indexing with [] *can* panic (which is still a BSOD but at least guaranteed not an exploit) but it is possible to ban that in the compiler/linter and enforce the use of the .get() method which returns an Option<T>, and such policy would be a good idea for critical kernel code. You can set up a Rust build such that it is *impossible* for any operation to panic, e.g. by making the panic symbol undefined so the project fails to link if it is referenced. This even bans things like unchecked integer division by a non-constant (since div by zero is a panic). All of the panicking operations would have non-panicking versions that you use instead.
Hector Martin /
npub1qk…9azpx
2024-07-20 14:21:02
in reply to nevent1q…4jss
Author Public Key
npub1qk9x6yrvten3jqyvundn7exggm90fxf9yfarj5eaz25yd7aty8hqe9azpxPublished at
2024-07-20 14:21:02Event JSON
{
"id": "5bcb3869a4ae13382dd194c45eaf7906c946ecf07fda39186ac9dfc3c8e49b32",
"pubkey": "058a6d106c5e6719008ce4db3f64c846caf49925227a39533d12a846fbab21ee",
"created_at": 1721485262,
"kind": 1,
"tags": [
[
"p",
"058a6d106c5e6719008ce4db3f64c846caf49925227a39533d12a846fbab21ee"
],
[
"e",
"fa9d6ef9ac8552ce088e83926f2a2e750a20fe430f71755e0498db3a059fabda",
"",
"root"
],
[
"p",
"2ceb75c8271582855ec79d56c3f90da020e88de9f98dd6e76a1c7e436d5da02a"
],
[
"e",
"ea86f727fe1ef3f2911b4e10ed3caddc9a8dbdf31e908dc1235d8f4a9d9c9265",
"",
"reply"
],
[
"p",
"b907aa0bc5d09107b3070e8b392e2bd310cc538c34c3cbd86a76fb059b2cd073"
],
[
"proxy",
"https://social.treehouse.systems/@marcan/112819258165957495",
"web"
],
[
"proxy",
"https://social.treehouse.systems/users/marcan/statuses/112819258165957495",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://social.treehouse.systems/users/marcan/statuses/112819258165957495",
"pink.momostr"
],
[
"-"
]
],
"content": "There's no mention of an indexed array. Rust guarantees that nothing can be NULL at compile time. If you need to have optional values then you have to use Option\u003cT\u003e and the compiler forces you to choose how to handle the lack of value.\n\nArray/slice indexing with [] *can* panic (which is still a BSOD but at least guaranteed not an exploit) but it is possible to ban that in the compiler/linter and enforce the use of the .get() method which returns an Option\u003cT\u003e, and such policy would be a good idea for critical kernel code. You can set up a Rust build such that it is *impossible* for any operation to panic, e.g. by making the panic symbol undefined so the project fails to link if it is referenced. This even bans things like unchecked integer division by a non-constant (since div by zero is a panic). All of the panicking operations would have non-panicking versions that you use instead.",
"sig": "63ec9a21c4b32a00ea0559528e90ccd945a3fc39ac893e6792050aa7f12fc81ac0b4bcc1edb9d6824d8293bd0124630bbaf589626e2b007b67506c405b08bbb7"
}