Add SAFETY markers to code that could panic

Mingun · web-flow · commit efbb1669b379 · 2023-11-15T19:23:08.000+05:00
diff --git a/src/encoding.rs b/src/encoding.rs
@@ -123,6 +123,8 @@ pub fn decode_into(bytes: &[u8], encoding: &'static Encoding, buf: &mut String)
     buf.reserve(
         decoder
             .max_utf8_buffer_length_without_replacement(bytes.len())
+            // SAFETY: None can be returned only if required size will overflow usize,
+            // but in that case String::reserve also panics
             .unwrap(),
     );
     let (result, read) = decoder.decode_to_string_without_replacement(bytes, buf, true);
@@ -132,6 +134,7 @@ pub fn decode_into(bytes: &[u8], encoding: &'static Encoding, buf: &mut String)
             Ok(())
         }
         DecoderResult::Malformed(_, _) => Err(Error::NonDecodable(None)),
+        // SAFETY: We allocate enough space above
         DecoderResult::OutputFull => unreachable!(),
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -123,6 +123,8 @@ pub fn decode_into(bytes: &[u8], encoding: &'static Encoding, buf: &mut String)`
`123`	`123`	`buf.reserve(`
`124`	`124`	`decoder`
`125`	`125`	`.max_utf8_buffer_length_without_replacement(bytes.len())`
	`126`	`+ // SAFETY: None can be returned only if required size will overflow usize,`
	`127`	`+ // but in that case String::reserve also panics`
`126`	`128`	`.unwrap(),`
`127`	`129`	`);`
`128`	`130`	`let (result, read) = decoder.decode_to_string_without_replacement(bytes, buf, true);`
`@@ -132,6 +134,7 @@ pub fn decode_into(bytes: &[u8], encoding: &'static Encoding, buf: &mut String)`
`132`	`134`	`Ok(())`
`133`	`135`	`}`
`134`	`136`	`DecoderResult::Malformed(_, _) => Err(Error::NonDecodable(None)),`
	`137`	`+ // SAFETY: We allocate enough space above`
`135`	`138`	`DecoderResult::OutputFull => unreachable!(),`
`136`	`139`	`}`
`137`	`140`	`}`