ferrule-core 0.2.0-alpha

Result formatters, output rendering, and credential-resolution glue layered on the ferrule-sql driver core — the shared library behind the ferrule database CLI.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242

use ferrule_sql::{Backend, SqlError};

/// Tag indicating the expected output format of an EXPLAIN plan.
#[derive(Debug, Clone, Copy, PartialEq, Eq)]
pub enum ExplainOutput {
    Json,
    Text,
    Xml,
}

/// Return the EXPLAIN-wrapped SQL, the expected output format, and whether the
/// wrapped SQL contains multiple statements (which requires `execute_multi`).
///
/// When `analyze` is `true` and the statement is non-modifying, the
/// backend-specific "actual execution" variant is used. For modifying
/// statements `ANALYZE` is stripped to avoid side effects.
pub fn explain_sql(
    sql: &str,
    backend: Backend,
    analyze: bool,
) -> Result<(String, ExplainOutput, bool), SqlError> {
    let trimmed = sql.trim();
    if trimmed.is_empty() {
        return Err(SqlError::QueryFailed("Empty SQL for EXPLAIN".into()));
    }

    let modifying = is_modifying(trimmed);
    let safe = modifying || !analyze;

    match backend {
        #[cfg(feature = "postgres")]
        Backend::Postgres => {
            if safe {
                Ok((
                    format!("EXPLAIN (FORMAT JSON, COSTS) {}", trimmed),
                    ExplainOutput::Json,
                    false,
                ))
            } else {
                Ok((
                    format!(
                        "EXPLAIN (FORMAT JSON, ANALYZE, BUFFERS, TIMING, COSTS) {}",
                        trimmed
                    ),
                    ExplainOutput::Json,
                    false,
                ))
            }
        }
        #[cfg(feature = "mysql")]
        Backend::MySql => {
            // MySQL 8 EXPLAIN on DML does not execute; safe and analyze are the same.
            Ok((
                format!("EXPLAIN FORMAT=JSON {}", trimmed),
                ExplainOutput::Json,
                false,
            ))
        }
        #[cfg(feature = "sqlite")]
        Backend::Sqlite => Ok((
            format!("EXPLAIN QUERY PLAN {}", trimmed),
            ExplainOutput::Text,
            false,
        )),
        #[cfg(feature = "mssql")]
        Backend::MsSql => {
            if safe {
                Ok((
                    format!("SET SHOWPLAN_XML ON; {}; SET SHOWPLAN_XML OFF;", trimmed),
                    ExplainOutput::Xml,
                    true,
                ))
            } else {
                Ok((
                    format!(
                        "SET STATISTICS XML ON; {}; SET STATISTICS XML OFF;",
                        trimmed
                    ),
                    ExplainOutput::Xml,
                    true,
                ))
            }
        }
        #[cfg(feature = "oracle")]
        Backend::Oracle => {
            let display_opts = if safe { "" } else { "'','','ALLSTATS LAST'" };
            let wrapped = format!(
                "EXPLAIN PLAN FOR {}; SELECT * FROM TABLE(DBMS_XPLAN.DISPLAY('','',{}));",
                trimmed, display_opts
            );
            Ok((wrapped, ExplainOutput::Text, true))
        }
        #[allow(unreachable_patterns)]
        _ => {
            // Fallback for any backend that gets here without a specific impl.
            Ok((format!("EXPLAIN {}", trimmed), ExplainOutput::Text, false))
        }
    }
}

/// Detect whether a SQL statement is modifying (DML/DDL).
///
/// A statement is considered modifying if a DML/DDL keyword appears at
/// top-level (parenthesis depth ≤ 0). This correctly handles `WITH`
/// CTEs that are followed by `INSERT` / `UPDATE` / `DELETE` / `MERGE`
/// — the bug that the previous first-token-only check missed.
pub fn is_modifying(sql: &str) -> bool {
    let mut parenthesis_depth = 0i32;
    for token in sql.split_whitespace() {
        for ch in token.chars() {
            if ch == '(' {
                parenthesis_depth += 1;
            } else if ch == ')' {
                parenthesis_depth -= 1;
            }
        }
        if parenthesis_depth <= 0 {
            let upper = token.to_ascii_uppercase();
            if matches!(
                upper.as_str(),
                "INSERT" | "UPDATE" | "DELETE" | "CREATE" | "DROP" | "ALTER" | "TRUNCATE" | "MERGE"
            ) {
                return true;
            }
        }
    }
    false
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_is_modifying_insert() {
        assert!(is_modifying("INSERT INTO t VALUES (1)"));
    }

    #[test]
    fn test_is_modifying_update() {
        assert!(is_modifying("update t set x=1"));
    }

    #[test]
    fn test_is_modifying_delete() {
        assert!(is_modifying("  DELETE FROM t"));
    }

    #[test]
    fn test_is_modifying_create() {
        assert!(is_modifying("CREATE TABLE t (id INT)"));
    }

    #[test]
    fn test_is_modifying_not_select() {
        assert!(!is_modifying("SELECT * FROM t"));
    }

    #[test]
    fn test_is_modifying_not_with() {
        assert!(!is_modifying("WITH cte AS (SELECT 1) SELECT * FROM cte"));
    }

    #[test]
    fn test_is_modifying_with_insert() {
        assert!(is_modifying(
            "WITH cte AS (SELECT 1) INSERT INTO t VALUES (1)"
        ));
    }

    #[test]
    fn test_is_modifying_with_update() {
        assert!(is_modifying("WITH cte AS (SELECT 1) UPDATE t SET x = 1"));
    }

    #[test]
    fn test_is_modifying_with_merge() {
        assert!(is_modifying(
            "WITH src AS (SELECT * FROM stg) MERGE INTO t USING src ON t.id = src.id"
        ));
    }

    #[test]
    fn test_is_modifying_with_delete() {
        assert!(is_modifying(
            "WITH cte AS (SELECT id FROM t) DELETE FROM t WHERE id IN (SELECT id FROM cte)"
        ));
    }

    #[test]
    fn test_is_modifying_subselect_not_flagged() {
        // Sub-selects inside parentheses should not be flagged
        assert!(!is_modifying(
            "SELECT * FROM t WHERE id IN (SELECT id FROM u)"
        ));
    }

    #[test]
    fn test_is_modifying_cte_in_subquery_not_flagged() {
        // WITH inside a subquery should not be flagged
        assert!(!is_modifying(
            "SELECT * FROM (WITH cte AS (SELECT 1) SELECT * FROM cte) AS sub"
        ));
    }

    #[cfg(feature = "postgres")]
    #[test]
    fn test_postgres_explain_wrap() {
        let (sql, out, is_multi) = explain_sql("SELECT 1", Backend::Postgres, false).unwrap();
        assert!(sql.contains("EXPLAIN (FORMAT JSON, COSTS)"));
        assert_eq!(out, ExplainOutput::Json);
        assert!(!is_multi);
    }

    #[cfg(feature = "postgres")]
    #[test]
    fn test_postgres_explain_analyze() {
        let (sql, out, is_multi) = explain_sql("SELECT 1", Backend::Postgres, true).unwrap();
        assert!(sql.contains("ANALYZE"));
        assert_eq!(out, ExplainOutput::Json);
        assert!(!is_multi);
    }

    #[cfg(feature = "postgres")]
    #[test]
    fn test_safe_explain_for_modifying() {
        let (sql, _out, is_multi) =
            explain_sql("INSERT INTO t VALUES (1)", Backend::Postgres, true).unwrap();
        assert!(!sql.contains("ANALYZE"));
        assert!(sql.contains("EXPLAIN (FORMAT JSON, COSTS)"));
        assert!(!is_multi);
    }

    #[cfg(feature = "sqlite")]
    #[test]
    fn test_sqlite_explain_wrap() {
        let (sql, out, is_multi) = explain_sql("SELECT 1", Backend::Sqlite, false).unwrap();
        assert!(sql.contains("EXPLAIN QUERY PLAN"));
        assert_eq!(out, ExplainOutput::Text);
        assert!(!is_multi);
    }
}