Ergonomic bindings to SQLite for Rust
Go to file
John Gallagher ce53e446ba Merge pull request #2 from jgallagher/travis
Fix failing travis build
2014-11-04 12:37:36 -05:00
src Fix failing travis build 2014-11-04 12:26:08 -05:00
.gitignore gitignore doc/ 2014-10-20 20:22:15 -04:00
.travis.yml Fix failing travis build 2014-11-04 12:26:08 -05:00
Cargo.toml Initial commit 2014-10-19 19:56:41 -04:00
LICENSE Add LICENSE and README 2014-11-04 11:32:06 -05:00
README.md Add LICENSE and README 2014-11-04 11:32:06 -05:00

Rusqlite

Rusqlite is an ergonomic, semi-safe wrapper for using SQLite from Rust. It attempts to expose an interface similar to rust-postgres.

extern crate rusqlite;
extern crate time;

use time::Timespec;
use rusqlite::SqliteConnection;

#[deriving(Show)]
struct Person {
    id: i32,
    name: String,
    time_created: Timespec,
    data: Option<Vec<u8>>
}

fn main() {
    let conn = SqliteConnection::open(":memory:").unwrap();

    conn.execute("CREATE TABLE person (
                  id              INTEGER PRIMARY KEY,
                  name            TEXT NOT NULL,
                  time_created    TEXT NOT NULL,
                  data            BLOB
                  )", []).unwrap();
    let me = Person {
        id: 0,
        name: "Steven".to_string(),
        time_created: time::get_time(),
        data: None
    };
    conn.execute("INSERT INTO person (name, time_created, data)
                  VALUES ($1, $2, $3)",
                 &[&me.name, &me.time_created, &me.data]).unwrap();

    let mut stmt = conn.prepare("SELECT id, name, time_created, data FROM person").unwrap();
    for row in stmt.query([]).unwrap().map(|row| row.unwrap()) {
        let person = Person {
            id: row.get(0),
            name: row.get(1),
            time_created: row.get(2),
            data: row.get(3)
        };
        println!("Found person {}", person);
    }
}

"Semi-Safe"?

There are two parts of Rusqlite that are not as safe as a proper Rust library should be. Both are related to the API of SQLite itself. SQLite is a phenomenal piece of software, but its API does not mesh very well with the ownership semantics of Rust.

Semi-Safe: SqliteConnection

The first form of "semi-safeness" is the SqliteConnection handle itself. The underlying C handle, sqlite3, has at least two pieces of internal state that can be affected across multiple SQLite calls: the last insertion ID (retrieved via sqlite3_last_insert_rowid()) and a detailed error message for the most recent error (retrieved via sqlite3_errmsg()). As mentioned by the documentation for both functions, this internal state is inherently not thread safe. Even if SQLite is using locks to provide thread safety (which is the default), multiple threads accessing the same connection can cause undefined behavior with these functions (e.g., if both threads insert a row and then both threads try to get the last insertion row ID, both threads will get the same row ID of whichever insertion happened second).

This could be addressed in Rust by making any calls that might affect the internal state of the connection borrow the connection mutably until they complete. This is the tactic taken by rust-sqlite3, and it is the most correct option from a Rust point of view. However, it causes problems with things like transactions. Therefore, Rusqlite's SqliteConnection uses a RefCell internally to allow the connection to be shared even though it is mutable.

The practical implication of this is that SqliteConnection is not thread-safe, and must not be used from multiple threads at the same time, but you must enforce this with little-to-no help from the type system. If you use a single connection from multiple threads, you may encounter a panic (from the underlying RefCell), or you may introduce data races (as described above with the last insertion ID or error message).

Semi-Safe: SqliteRows and SqliteRow

To retrieve the result rows from a query, SQLite requires you to call sqlite3_step() on a prepared statement. You can only retrieve the values of the "current" row. From the Rust point of view, this means that each row is only valid until the next row is fetched. Again, rust-sqlite3 solves this the correct way with lifetimes. However, this means that the result rows do not satisfy the Iterator trait, which means you cannot (as easily) loop over the rows, or use many of the helpful Iterator methods like map and filter.

Instead, Rusqlite's SqliteRows handle does conform to Iterator. It performs checks at runtime to ensure you do not try to retrieve the values of a "stale" row, and will panic if you do so. A specific example that will panic:

fn bad_function_will_panic(conn: &SqliteConnection) -> SqliteResult<i64> {
    let mut stmt = try!(conn.prepare("SELECT id FROM my_table"));
    let mut rows = try!(stmt.query([]));

    let row0 = try!(rows.next().unwrap());
    // row 0 is value now...

    let row1 = try!(rows.next().unwrap());
    // row 0 is now STALE, and row 1 is valid

    let my_id = row0.get(0); // WILL PANIC because row 0 is stale
    Ok(my_id)
}

There are other, less obvious things that may result in a panic as well, such as calling collect() on a SqliteRows and then trying to use the collected rows.

Author

John Gallagher, johnkgallagher@gmail.com

License

Rusqlite is available under the MIT license. See the LICENSE file for more info.