Author of a web framework written in Rust removed after being criticized for "misuse" of the Rust language. The actix-web framework, the package with which has been downloaded more than 800 thousand times, allows you to embed the functionality of an http server and client into Rust applications, while developing is focused on achieving maximum performance and in many web framework tests.
Shortly before the incident, in issues on GitHub, Undefined Behavior was reported in the actix-web server code that occurs in a block executing in mode (permits unsafe operations with pointers). The author of actix-web did not remove the unsafe block, but redid the call to this block so that undefined behavior does not occur. The author rejected proposals to remove unsafe, citing a possible performance loss and stating that he does not use unsafe unnecessarily and is confident in the safety of blocks operating in this mode.
The RustSec team member who identified the undefined behavior disagreed and suggested that actix-web's use of many unsafe blocks is unjustified. After that he published
about the inadmissibility of using unsafe, in which, among other things, it was mentioned that the method of working with pointers used in actix-web (several mutable pointers to the same data) can potentially cause use-after-free vulnerabilities and does not correspond to the development paradigm on Rust.
After articles on , in issues on GitHub trolls and the author of actix-web was subjected to and insults for misuse of Rust. The author could not withstand the psychological pressure, и that tied up with Open Source.
Source: opennet.ru
