angd-dev/data-raft
1
0
Fork 0
Code Pull Requests Releases Activity

Update key management for database service

Browse Source
This commit is contained in:
Oleksii Zghurskyi
2025-08-19 16:24:51 +03:00
parent 1df21e88bd
commit 0118981e0a
8 changed files with 235 additions and 284 deletions
Download Patch File Download Diff File Expand all files Collapse all files

233
Sources/DataRaft/Classes/DatabaseService.swift
View File

@@ -2,15 +2,17 @@ import Foundation
import DataLiteCore import DataLiteCore
import DataLiteC import DataLiteC
/// A base class for services that operate on a database connection. /// Base service for working with a database.
/// ///
/// `DatabaseService` provides a shared interface for executing operations on a `Connection`, /// `DatabaseService` provides a unified interface for performing operations
/// with support for transaction handling and optional request serialization. /// using a database connection, with built-in support for transactions,
/// reconnection, and optional encryption key management.
/// ///
/// Subclasses can use this base to coordinate safe, synchronous access to the database /// The service ensures thread-safe execution by serializing access to the
/// without duplicating concurrency or transaction logic. /// connection through an internal queue. This enables building modular and safe
/// data access layers without duplicating low-level logic.
/// ///
/// For example, you can define a custom service for managing notes: /// Below is an example of creating a service for managing notes:
/// ///
/// ```swift /// ```swift
/// final class NoteService: DatabaseService { /// final class NoteService: DatabaseService {
@@ -46,59 +48,40 @@ import DataLiteC
/// print(notes) // ["Hello, world!"] /// print(notes) // ["Hello, world!"]
/// ``` /// ```
/// ///
/// This approach allows you to build reusable service layers on top of a safe, transactional,
/// and serialized foundation.
///
/// ## Error Handling /// ## Error Handling
/// ///
/// All database access is serialized using an internal dispatch queue to ensure thread safety. /// All operations are executed on an internal serial queue, ensuring thread safety.
/// If a database corruption or decryption failure is detected (e.g., `SQLITE_NOTADB`), the /// If an encryption error (`SQLITE_NOTADB`) is detected, the service may reopen the
/// service attempts to re-establish the connection and, in case of transaction blocks, /// connection and retry the transactional block exactly once. If the error occurs again,
/// retries the entire transaction block exactly once. If the problem persists, the error /// it is propagated without further retries.
/// is rethrown.
/// ///
/// ## Encryption Key Management /// ## Encryption Key Management
/// ///
/// If a `keyProvider` is set, the service will use it to retrieve and apply encryption keys /// If a ``keyProvider`` is set, the service uses it to obtain and apply an encryption
/// when establishing or re-establishing a database connection. Any error that occurs while /// key when creating or restoring a connection. If an error occurs while obtaining
/// retrieving or applying the encryption key is reported to the provider via /// or applying the key, the provider is notified through
/// `databaseService(_:didReceive:)`. Non-encryption-related errors (e.g., file access /// ``DatabaseServiceKeyProvider/databaseService(_:didReceive:)``.
/// issues) are not reported to the provider.
/// ///
/// ## Reconnect Behavior /// ## Reconnection
/// ///
/// The service can automatically reconnect to the database, but this happens only in very specific /// Automatic reconnection is available only during transactional blocks executed with
/// circumstances. Reconnection is triggered only when you run a transactional operation using /// ``perform(in:closure:)``. If a decryption error (`SQLITE_NOTADB`) occurs during
/// ``perform(in:closure:)``, and a decryption error (`SQLITE_NOTADB`) occurs during /// a transaction and the provider allows reconnection, the service obtains a new key,
/// the transaction. Even then, reconnection is possible only if you have set a ``keyProvider``, /// creates a new connection, and retries the block once. If the second attempt fails
/// and only if the provider allows it by returning `true` from its /// or reconnection is disallowed, the error is propagated without further retries.
/// ``DatabaseServiceKeyProvider/databaseServiceShouldReconnect(_:)-84qfz``
/// method.
///
/// When this happens, the service will ask the key provider for a new encryption key, create a new
/// database connection, and then try to re-run your transaction block one more time. If the second
/// attempt also fails with the same decryption error, or if reconnection is not allowed, the error is
/// returned to your code as usual, and no further attempts are made.
///
/// It's important to note that reconnection and retrying of transactions never happens outside of
/// transactional operations, and will never be triggered for other types of errors. All of this logic
/// runs on the services internal queue, so you dont have to worry about thread safety.
///
/// - Important: Because a transaction block can be executed more than once when this
/// mechanism is triggered, make sure that your block is idempotent and doesn't cause any
/// side effects outside the database itself.
/// ///
/// ## Topics /// ## Topics
/// ///
/// ### Initializers /// ### Initializers
/// ///
/// - ``init(provider:queue:)`` /// - ``init(provider:keyProvider:queue:)``
/// - ``init(connection:queue:)`` /// - ``init(connection:keyProvider:queue:)``
/// ///
/// ### Key Management /// ### Key Management
/// ///
/// - ``DatabaseServiceKeyProvider`` /// - ``DatabaseServiceKeyProvider``
/// - ``keyProvider`` /// - ``keyProvider``
/// - ``applyKeyProvider()``
/// ///
/// ### Connection Management /// ### Connection Management
/// ///
@@ -111,14 +94,14 @@ import DataLiteC
/// - ``perform(_:)`` /// - ``perform(_:)``
/// - ``perform(in:closure:)`` /// - ``perform(in:closure:)``
open class DatabaseService: DatabaseServiceProtocol, @unchecked Sendable { open class DatabaseService: DatabaseServiceProtocol, @unchecked Sendable {
/// A closure that provides a new database connection when invoked. /// A closure that creates a new database connection.
/// ///
/// `ConnectionProvider` is used to defer the creation of a `Connection` instance /// `ConnectionProvider` is used for deferred connection creation.
/// until it is actually needed. It can throw errors if the connection cannot be /// It allows encapsulating initialization logic, configuration, and
/// established or configured correctly. /// error handling when opening the database.
/// ///
/// - Returns: A valid `Connection` instance. /// - Returns: An initialized `Connection` instance.
/// - Throws: Any error encountered while opening or configuring the connection. /// - Throws: An error if the connection cannot be created or configured.
public typealias ConnectionProvider = () throws -> Connection public typealias ConnectionProvider = () throws -> Connection
// MARK: - Properties // MARK: - Properties
@@ -128,91 +111,96 @@ open class DatabaseService: DatabaseServiceProtocol, @unchecked Sendable {
private let queueKey = DispatchSpecificKey<Void>() private let queueKey = DispatchSpecificKey<Void>()
private var connection: Connection private var connection: Connection
/// Provides the encryption key for the database connection. /// Encryption key provider.
/// ///
/// When this property is set, the service synchronously retrieves and applies an encryption /// Used to obtain and apply a key when creating or restoring a connection.
/// key from the provider to the current database connection on the services internal queue, public weak var keyProvider: DatabaseServiceKeyProvider?
/// ensuring thread safety.
///
/// If an error occurs during key retrieval or application (for example, if biometric
/// authentication is cancelled, the key is unavailable, or decryption fails due to an
/// incorrect key), the service notifies the provider by calling
/// ``DatabaseServiceKeyProvider/databaseService(_:didReceive:)-xbrk``.
///
/// This mechanism enables external management of encryption keys, supporting scenarios such
/// as key rotation, user-specific encryption, or custom error handling.
public weak var keyProvider: DatabaseServiceKeyProvider? {
didSet {
withConnection { connection in
try? applyKey(to: connection)
}
}
}
// MARK: - Inits // MARK: - Inits
/// Creates a new `DatabaseService` with the specified connection provider and dispatch queue. /// Creates a new database service.
/// ///
/// This initializer immediately invokes the `provider` closure to establish the initial database /// Calls `provider` to create the initial connection and configures
/// connection. An internal serial queue is created for synchronizing database access. If a /// the internal serial queue for thread-safe access to the database.
/// `queue` is provided, it is set as the target of the internal queue, allowing you to control ///
/// scheduling and quality of service. /// The internal queue is always created with QoS `.utility`. If the `queue`
/// parameter is provided, it is used as the target queue for the internal one.
///
/// If a `keyProvider` is set, the encryption key is applied immediately
/// after the initial connection is created.
/// ///
/// - Parameters: /// - Parameters:
/// - provider: A closure that returns a new `Connection` instance. May throw on failure. /// - provider: A closure that returns a new connection.
/// - queue: An optional dispatch queue to target for internal serialization. If `nil`, /// - keyProvider: An optional encryption key provider.
/// a dedicated serial queue with `.utility` QoS is created. /// - queue: An optional target queue for the internal one.
/// - Throws: Any error thrown by the `provider` during initial connection setup. /// - Throws: An error if the connection cannot be created or configured.
public init( public init(
provider: @escaping ConnectionProvider, provider: @escaping ConnectionProvider,
keyProvider: DatabaseServiceKeyProvider? = nil,
queue: DispatchQueue? = nil queue: DispatchQueue? = nil
) rethrows { ) throws {
self.provider = provider self.provider = provider
self.keyProvider = keyProvider
self.connection = try provider() self.connection = try provider()
self.queue = .init(for: Self.self, qos: .utility) self.queue = .init(for: Self.self, qos: .utility)
self.queue.setSpecific(key: queueKey, value: ()) self.queue.setSpecific(key: queueKey, value: ())
if let queue = queue { if let queue = queue {
self.queue.setTarget(queue: queue) self.queue.setTarget(queue: queue)
} }
if self.keyProvider != nil {
try applyKey(to: self.connection)
}
} }
/// Creates a new `DatabaseService` using the given connection provider and optional queue. /// Creates a new database service.
///
/// This convenience initializer wraps the provided autoclosure in a `ConnectionProvider`
/// and delegates to the designated initializer. It is useful when passing a simple
/// connection expression.
/// ///
/// - Parameters: /// - Parameters:
/// - provider: A closure that returns a `Connection` instance and may throw. /// - provider: An expression that creates a new connection.
/// - queue: An optional dispatch queue used as a target for internal serialization. If `nil`, /// - keyProvider: An optional encryption key provider.
/// a default serial queue with `.utility` QoS is created internally. /// - queue: An optional target queue for the internal one.
/// - Throws: Rethrows any error thrown by the connection provider. /// - Throws: An error if the connection cannot be created or configured.
public convenience init( public convenience init(
connection provider: @escaping @autoclosure ConnectionProvider, connection provider: @escaping @autoclosure ConnectionProvider,
keyProvider: DatabaseServiceKeyProvider? = nil,
queue: DispatchQueue? = nil queue: DispatchQueue? = nil
) rethrows { ) throws {
try self.init(provider: provider, queue: queue) try self.init(provider: provider, keyProvider: keyProvider, queue: queue)
} }
// MARK: - Methods // MARK: - Methods
/// Re-establishes the database connection using the stored connection provider. /// Applies the encryption key from `keyProvider` to the current connection.
/// ///
/// This method synchronously creates a new ``Connection`` instance by invoking the original /// The method executes synchronously on the internal queue. If the key provider
/// provider on the services internal queue. If a ``keyProvider`` is set, the service attempts /// is missing, the method does nothing. If the key has already been successfully
/// to retrieve and apply an encryption key to the new connection. /// applied, subsequent calls have no effect. To apply a new key, use ``reconnect()``.
/// If any error occurs during key retrieval or application, the provider is notified via
/// ``DatabaseServiceKeyProvider/databaseService(_:didReceive:)-xbrk``,
/// and the error is rethrown.
/// ///
/// The new connection replaces the existing one only if all steps succeed without errors. /// If an error occurs while obtaining or applying the key, it is thrown further
/// and also reported to the provider via
/// ``DatabaseServiceKeyProvider/databaseService(_:didReceive:)``.
/// ///
/// This operation is always executed on the internal dispatch queue (see ``perform(_:)``) /// - Throws: An error while obtaining or applying the key.
/// to ensure thread safety. final public func applyKeyProvider() throws {
try withConnection { connection in
try applyKey(to: connection)
}
}
/// Establishes a new database connection.
/// ///
/// - Throws: Any error thrown during connection creation or while retrieving or applying /// Creates a new `Connection` using the stored connection provider and,
/// the encryption key. Only encryption-related errors are reported to the ``keyProvider``. /// if a ``keyProvider`` is set, applies the encryption key. The new connection
public func reconnect() throws { /// replaces the previous one only if it is successfully created and configured.
///
/// If an error occurs while obtaining or applying the key, it is thrown further
/// and also reported to the provider via
/// ``DatabaseServiceKeyProvider/databaseService(_:didReceive:)``.
///
/// Executed synchronously on the internal queue, ensuring thread safety.
///
/// - Throws: An error if the connection cannot be created or the key cannot
/// be obtained/applied.
final public func reconnect() throws {
try withConnection { _ in try withConnection { _ in
let connection = try provider() let connection = try provider()
try applyKey(to: connection) try applyKey(to: connection)
@@ -220,39 +208,39 @@ open class DatabaseService: DatabaseServiceProtocol, @unchecked Sendable {
} }
} }
/// Executes the given closure using the active database connection. /// Executes a closure with the active connection.
/// ///
/// Ensures thread-safe access to the underlying ``Connection`` by synchronizing execution on /// Runs the `closure` on the internal serial queue, ensuring
/// the services internal serial dispatch queue. If the call is already running on this queue, /// thread-safe access to the `Connection`.
/// the closure is executed directly to avoid unnecessary dispatching.
/// ///
/// - Parameter closure: A closure that takes the active connection and returns a result. /// - Parameter closure: A closure that takes the active connection.
/// - Returns: The value returned by the closure. /// - Returns: The value returned by the closure.
/// - Throws: Any error thrown by the closure. /// - Throws: Any error thrown by the closure.
public func perform<T>(_ closure: Perform<T>) rethrows -> T { final public func perform<T>(_ closure: Perform<T>) rethrows -> T {
try withConnection(closure) try withConnection(closure)
} }
/// Executes a closure inside a transaction if the connection is in autocommit mode. /// Executes a closure inside a transaction if the connection is in autocommit mode.
/// ///
/// If the connection is in autocommit mode, starts a new transaction of the specified type, /// If the connection is in autocommit mode, starts a new transaction of the
/// executes the closure within it, and commits the transaction on success. If the closure /// specified type, executes the closure, and commits changes on success.
/// throws, the transaction is rolled back. /// If the closure throws an error, the transaction is rolled back.
/// ///
/// If the closure throws a `Connection.Error` with code `SQLITE_NOTADB` and reconnecting is /// If the closure throws `Connection.Error` with code `SQLITE_NOTADB`
/// allowed, the service attempts to reconnect and retries the entire transaction block once. /// and reconnection is allowed, the service attempts to reconnect and retries
/// the transaction block once.
/// ///
/// If already inside a transaction (not in autocommit mode), executes the closure directly /// If a transaction is already active (connection not in autocommit mode),
/// without starting a new transaction. /// the closure is executed directly without starting a new transaction.
/// ///
/// - Parameters: /// - Parameters:
/// - transaction: The type of transaction to begin. /// - transaction: The type of transaction to start.
/// - closure: A closure that takes the active connection and returns a result. /// - closure: A closure that takes the active connection and returns a result.
/// - Returns: The value returned by the closure. /// - Returns: The value returned by the closure.
/// - Throws: Any error thrown by the closure, transaction control statements, or reconnect logic. /// - Throws: Any error thrown by the closure, transaction management, or
/// /// reconnection logic.
/// - Important: The closure may be executed more than once. Ensure it is idempotent. /// - Important: The closure may be executed more than once. Ensure it is idempotent.
public func perform<T>( final public func perform<T>(
in transaction: TransactionType, in transaction: TransactionType,
closure: Perform<T> closure: Perform<T>
) rethrows -> T { ) rethrows -> T {
@@ -291,9 +279,11 @@ open class DatabaseService: DatabaseServiceProtocol, @unchecked Sendable {
} }
} }
// MARK: - Private
private extension DatabaseService { private extension DatabaseService {
var shouldReconnect: Bool { var shouldReconnect: Bool {
keyProvider?.databaseServiceShouldReconnect(self) ?? false keyProvider?.databaseService(shouldReconnect: self) ?? false
} }
func withConnection<T>(_ closure: Perform<T>) rethrows -> T { func withConnection<T>(_ closure: Perform<T>) rethrows -> T {
@@ -304,14 +294,15 @@ private extension DatabaseService {
} }
func applyKey(to connection: Connection) throws { func applyKey(to connection: Connection) throws {
guard let keyProvider = keyProvider else { return }
do { do {
if let key = try keyProvider?.databaseServiceKey(self) { if let key = try keyProvider.databaseService(keyFor: self) {
let sql = "SELECT count(*) FROM sqlite_master" let sql = "SELECT count(*) FROM sqlite_master"
try connection.apply(key) try connection.apply(key)
try connection.execute(raw: sql) try connection.execute(raw: sql)
} }
} catch { } catch {
keyProvider?.databaseService(self, didReceive: error) keyProvider.databaseService(self, didReceive: error)
throw error throw error
} }
} }

10
Sources/DataRaft/Classes/MigrationService.swift
View File

@@ -74,6 +74,16 @@ public final class MigrationService<
pthread_mutex_destroy(&mutex) pthread_mutex_destroy(&mutex)
} }
/// Applies settings to the active database connection.
public func applyKeyProvider() throws {
try service.applyKeyProvider()
}
/// Recreates the database connection.
public func reconnect() throws {
try service.reconnect()
}
/// Registers a new migration, ensuring version and script URL uniqueness. /// Registers a new migration, ensuring version and script URL uniqueness.
/// ///
/// - Parameter migration: The migration to register. /// - Parameter migration: The migration to register.

4
Sources/DataRaft/Classes/RowDatabaseService.swift
View File

@@ -78,7 +78,7 @@ open class RowDatabaseService:
encoder: RowEncoder = RowEncoder(), encoder: RowEncoder = RowEncoder(),
decoder: RowDecoder = RowDecoder(), decoder: RowDecoder = RowDecoder(),
queue: DispatchQueue? = nil queue: DispatchQueue? = nil
) rethrows { ) throws {
try self.init( try self.init(
provider: provider, provider: provider,
encoder: encoder, encoder: encoder,
@@ -104,7 +104,7 @@ open class RowDatabaseService:
encoder: RowEncoder = RowEncoder(), encoder: RowEncoder = RowEncoder(),
decoder: RowDecoder = RowDecoder(), decoder: RowDecoder = RowDecoder(),
queue: DispatchQueue? = nil queue: DispatchQueue? = nil
) rethrows { ) throws {
self.encoder = encoder self.encoder = encoder
self.decoder = decoder self.decoder = decoder
try super.init( try super.init(

135
Sources/DataRaft/Protocols/DatabaseServiceKeyProvider.swift
View File

@@ -1,124 +1,53 @@
import Foundation import Foundation
import DataLiteCore import DataLiteCore
/// A protocol for supplying encryption keys to `DatabaseService` instances. /// A protocol for providing encryption keys to a database service.
/// ///
/// `DatabaseServiceKeyProvider` encapsulates all responsibilities for managing encryption keys /// `DatabaseServiceKeyProvider` is responsible for managing encryption keys used
/// for one or more `DatabaseService` instances. It allows a database service to delegate key /// by a database service. This makes it possible to implement different strategies for storing
/// retrieval, secure storage, rotation, and access control, enabling advanced security strategies /// and retrieving keys: static, dynamic, hardware-backed, biometric, and others.
/// such as per-user key derivation, hardware-backed keys, biometric authentication, or ephemeral
/// in-memory secrets.
/// ///
/// The provider is queried automatically by the database service whenever a new connection /// - The service requests a key when establishing or restoring a connection.
/// is created or re-established (for example, during service initialization, after a reconnect, /// - If decryption fails, the service may ask the provider whether it should attempt to reconnect.
/// or when the service requests a key rotation). /// - If applying a key fails (for example, the key does not match or the
/// ``databaseService(keyFor:)`` method throws an error), this error is reported
/// to the provider through ``databaseService(_:didReceive:)``.
/// ///
/// Error handling and diagnostics related specifically to encryption or key operations /// - Important: The provider does not receive notifications about general database errors.
/// (such as when a key is unavailable, authentication is denied, or decryption fails)
/// are reported to the provider via the optional ``databaseService(_:didReceive:)`` callback.
/// The provider is **not** notified of generic database or connection errors unrelated to
/// encryption.
/// ///
/// - Important: This protocol is **exclusively** for cryptographic key management. /// ## Topics
/// It must not be used for generic database error handling or for concerns unrelated to
/// encryption, authorization, or key lifecycle.
/// ///
/// ## Key Availability /// ### Instance Methods
/// ///
/// There are two distinct scenarios for returning a key: /// - ``databaseService(keyFor:)``
/// /// - ``databaseService(shouldReconnect:)``
/// - **No Encryption Needed:** /// - ``databaseService(_:didReceive:)``
/// Return `nil` if the target database does not require encryption (i.e., should be opened public protocol DatabaseServiceKeyProvider: AnyObject, Sendable {
/// in plaintext mode). This is not an error; the database service will attempt to open the /// Returns the encryption key for the specified database service.
/// database without a key. If the database is in fact encrypted, this will result in a
/// decryption error at the SQLite level (e.g., `SQLITE_NOTADB`), which is handled by the
/// database service as a normal failure.
///
/// - **Key Temporarily Unavailable:**
/// Also return `nil` if the key is *temporarily* unavailable for any reason (for example,
/// the user has not yet authenticated, the device is locked, a remote key is still loading,
/// or UI authorization has not been granted).
/// Returning `nil` in this case means the database service will not attempt to open
/// the database with a key. This will not trigger an error callback.
/// When the key later becomes available (for example, after user authentication or
/// successful network retrieval), **the provider is responsible for calling**
/// ``DatabaseService/reconnect()`` on the service to re-attempt the operation with the key.
///
/// - **Error Situations:**
/// Only throw an error if a *permanent* or *unexpected* failure occurs (for example,
/// a hardware security error, a fatal storage problem, or a cryptographic failure
/// that cannot be resolved by waiting or user action).
/// Thrown errors will be reported to the provider via the error callback, and may be
/// surfaced to the UI or logs.
///
/// - Tip: Never throw for temporary unavailability (such as "user has not unlocked" or
/// "still waiting for user action")just return `nil` in these cases.
/// Use thrown errors only for non-recoverable or unexpected failures.
///
/// ## Error Callback
///
/// The method ``databaseService(_:didReceive:)`` will be called only for errors thrown by
/// ``databaseServiceKey(_:)`` or by the key application process (such as if the key fails
/// to decrypt the database).
/// It will *not* be called for generic database or connection errors.
///
/// Implement this method if you wish to log, recover from, or respond to permanent key-related
/// failures (such as prompting the user, resetting state, or displaying errors).
public protocol DatabaseServiceKeyProvider: AnyObject {
/// Returns the encryption key to be applied to the given database service.
/// ///
/// This method is invoked by the `DatabaseService` during connection initialization, /// May return `nil` if the encryption key is currently unavailable or if the database
/// reconnection, or explicit key rotation. Implementations may return a static key, /// does not require encryption.
/// derive it from external data, fetch it from secure hardware, or perform required
/// user authentication.
/// ///
/// - Parameter service: The requesting database service. /// - Parameter service: The service requesting the key.
/// - Returns: A `Connection.Key` representing the encryption key, or `nil` if encryption is /// - Returns: The encryption key or `nil`.
/// not required for this database or the key is temporarily unavailable. Returning `nil` /// - Throws: An error if the key cannot be retrieved.
/// will cause the database service to attempt opening the database in plaintext mode. func databaseService(keyFor service: DatabaseServiceProtocol) throws -> Connection.Key?
/// If the database is actually encrypted, access will fail with a decryption error.
/// - Throws: Only throw for unrecoverable or unexpected errors (such as hardware failure,
/// fatal storage issues, or irrecoverable cryptographic errors). Do **not** throw for
/// temporary unavailability; instead, return `nil` and call ``DatabaseService/reconnect()``
/// later when the key becomes available.
///
/// - Note: This method may be called multiple times during the lifecycle of a service,
/// including after a failed decryption attempt or key rotation event.
func databaseServiceKey(_ service: DatabaseService) throws -> Connection.Key?
/// Notifies the provider that the database service encountered an error /// Indicates whether the service should attempt to reconnect if applying the key fails.
/// related to key retrieval or application.
/// ///
/// This method is called **only** when the service fails to retrieve or apply an /// - Parameter service: The database service.
/// encryption key (e.g., if ``databaseServiceKey(_:)`` throws, or if the key fails /// - Returns: `true` to attempt reconnection. Defaults to `false`.
/// to decrypt the database due to a password/key mismatch). func databaseService(shouldReconnect service: DatabaseServiceProtocol) -> Bool
///
/// Use this callback to report diagnostics, trigger recovery logic, prompt the user /// Notifies the provider of an error that occurred while retrieving or applying the key.
/// for authentication, or update internal state.
/// By default, this method does nothing; implement it only if you need to respond
/// to key-related failures.
/// ///
/// - Parameters: /// - Parameters:
/// - service: The database service reporting the error. /// - service: The database service reporting the error.
/// - error: The error encountered during key retrieval or application. /// - error: The error encountered during key retrieval or application.
func databaseService(_ service: DatabaseService, didReceive error: Error) func databaseService(_ service: DatabaseServiceProtocol, didReceive error: Error)
/// Informs the service whether it should attempt to reconnect automatically.
///
/// Return `true` if the service should retry connecting (for example, if the key may
/// become available shortly). By default, returns `false`.
///
/// - Parameter service: The database service.
/// - Returns: `true` to retry, `false` to abort.
func databaseServiceShouldReconnect(_ service: DatabaseService) -> Bool
} }
public extension DatabaseServiceKeyProvider { public extension DatabaseServiceKeyProvider {
/// Default no-op implementation for key-related error reporting. func databaseService(shouldReconnect service: DatabaseServiceProtocol) -> Bool { false }
func databaseService(_ service: DatabaseService, didReceive error: Error) {} func databaseService(_ service: DatabaseServiceProtocol, didReceive error: Error) {}
/// Default implementation disables automatic reconnect attempts.
func databaseServiceShouldReconnect(_ service: DatabaseService) -> Bool {
false
}
} }

92
Sources/DataRaft/Protocols/DatabaseServiceProtocol.swift
View File

@@ -1,14 +1,15 @@
import Foundation import Foundation
import DataLiteCore import DataLiteCore
/// A protocol that defines a common interface for working with a database connection. /// A protocol for a database service.
/// ///
/// `DatabaseServiceProtocol` abstracts the core operations required to safely interact with a /// `DatabaseServiceProtocol` defines the core capabilities required for
/// SQLite-compatible database. Conforming types provide thread-safe execution of closures with a live /// reliable interaction with a database. Conforming implementations provide
/// `Connection`, optional transaction support, reconnection logic, and pluggable encryption key /// execution of client closures with a live connection, transaction wrapping,
/// management via a ``DatabaseServiceKeyProvider``. /// reconnection logic, and flexible encryption key management.
/// ///
/// This protocol forms the foundation for safe, modular service layers on top of a database. /// This enables building safe and extensible service layers on top of
/// a database.
/// ///
/// ## Topics /// ## Topics
/// ///
@@ -16,6 +17,7 @@ import DataLiteCore
/// ///
/// - ``DatabaseServiceKeyProvider`` /// - ``DatabaseServiceKeyProvider``
/// - ``keyProvider`` /// - ``keyProvider``
/// - ``applyKeyProvider()``
/// ///
/// ### Connection Management /// ### Connection Management
/// ///
@@ -26,63 +28,63 @@ import DataLiteCore
/// - ``Perform`` /// - ``Perform``
/// - ``perform(_:)`` /// - ``perform(_:)``
/// - ``perform(in:closure:)`` /// - ``perform(in:closure:)``
public protocol DatabaseServiceProtocol: AnyObject { public protocol DatabaseServiceProtocol: AnyObject, Sendable {
/// A closure that performs a database operation using an active connection. /// A closure executed with an active database connection.
/// ///
/// The `Perform<T>` type alias defines a closure signature for a database operation that /// Used by the service to safely provide access to `Connection`
/// receives a live `Connection` and returns a value or throws an error. This enables /// within the appropriate execution context.
/// callers to express discrete, atomic database operations for execution via
/// ``perform(_:)`` or ``perform(in:closure:)``.
/// ///
/// - Parameter connection: The active database connection. /// - Parameter connection: The active database connection.
/// - Returns: The result of the operation. /// - Returns: The value returned by the closure.
/// - Throws: Any error thrown during execution of the operation. /// - Throws: An error if the closure execution fails.
typealias Perform<T> = (Connection) throws -> T typealias Perform<T> = (Connection) throws -> T
/// The object responsible for providing encryption keys for the database connection. /// The encryption key provider for the database service.
/// ///
/// When assigned, the key provider will be queried for a key and applied to the current /// Enables external management of encryption keys.
/// connection, if available. If key retrieval or application fails, the error is reported /// When set, the service can request a key when establishing or
/// via `databaseService(_:didReceive:)` and not thrown from the setter. /// restoring a connection, and can also notify about errors
/// /// encountered while applying a key.
/// - Important: Setting this property does not guarantee that the connection becomes available;
/// error handling is asynchronous via callback.
var keyProvider: DatabaseServiceKeyProvider? { get set } var keyProvider: DatabaseServiceKeyProvider? { get set }
/// Re-establishes the database connection using the stored provider. /// Applies the encryption key from the current provider.
/// ///
/// If a `keyProvider` is set, the method attempts to retrieve and apply a key /// Calls the configured ``keyProvider`` to obtain a key and applies
/// to the new connection. All errors encountered during connection creation or /// it to the active connection. If the key is unavailable or an
/// key application are thrown. If an error occurs that is related to encryption key /// error occurs while applying it, the method throws.
/// retrieval or application, it is also reported to the `DatabaseServiceKeyProvider`
/// via its `databaseService(_:didReceive:)` callback.
/// ///
/// - Throws: Any error that occurs during connection creation or key application. /// - Throws: An error if the key cannot be retrieved or applied.
func applyKeyProvider() throws
/// Reopens the database connection.
///
/// Creates a new connection using the provider and applies the
/// encryption key if ``keyProvider`` is set. Typically used when
/// the previous connection has become invalid.
///
/// - Throws: An error if the new connection cannot be created or the key cannot be applied.
func reconnect() throws func reconnect() throws
/// Executes the given closure with a live connection in a thread-safe manner. /// Executes the given closure with an active connection.
/// ///
/// All invocations are serialized to prevent concurrent database access. /// The closure receives the connection and may perform any
/// database operations within the current context.
/// ///
/// - Parameter closure: The database operation to perform. /// - Parameter closure: The closure that accepts a connection.
/// - Returns: The result produced by the closure. /// - Returns: The value returned by the closure.
/// - Throws: Any error thrown by the closure. /// - Throws: An error if one occurs during closure execution.
func perform<T>(_ closure: Perform<T>) rethrows -> T func perform<T>(_ closure: Perform<T>) rethrows -> T
/// Executes the given closure within a transaction. /// Executes the given closure within a transaction.
/// ///
/// If no transaction is active, a new transaction of the specified type is started. The closure /// If the connection is in autocommit mode, the method automatically
/// is executed atomically: if it succeeds, the transaction is committed; if it throws, the /// begins a transaction, executes the closure, and commits the changes.
/// transaction is rolled back. If a transaction is already active, the closure is executed /// In case of failure, the transaction is rolled back.
/// without starting a new one.
/// ///
/// - Parameters: /// - Parameters:
/// - transaction: The type of transaction to begin (e.g., `deferred`, `immediate`, `exclusive`). /// - transaction: The type of transaction to begin.
/// - closure: The database operation to perform within the transaction. /// - closure: The closure that accepts a connection.
/// - Returns: The result produced by the closure. /// - Returns: The value returned by the closure.
/// - Throws: Any error thrown by the closure or transaction control statements. /// - Throws: An error if one occurs during closure execution.
func perform<T>( func perform<T>(in transaction: TransactionType, closure: Perform<T>) rethrows -> T
in transaction: TransactionType,
closure: Perform<T>
) rethrows -> T
} }

36
Sources/DataRaft/Protocols/MigrationServiceProtocol.swift
View File

@@ -1,21 +1,38 @@
import Foundation import Foundation
/// Protocol for managing and running database schema migrations. /// Protocol for managing and executing database schema migrations.
public protocol MigrationServiceProtocol: AnyObject { ///
/// Type representing the schema version for migrations. /// Conforming types are responsible for registering migrations, applying
/// encryption keys (if required), and executing pending migrations in
/// ascending version order.
///
/// Migrations ensure that the database schema evolves consistently across
/// application versions without requiring manual intervention.
public protocol MigrationServiceProtocol: AnyObject, Sendable {
/// Type representing the schema version used for migrations.
associatedtype Version: VersionRepresentable associatedtype Version: VersionRepresentable
/// Provider of encryption keys for the database service. /// Encryption key provider for the database service.
var keyProvider: DatabaseServiceKeyProvider? { get set } var keyProvider: DatabaseServiceKeyProvider? { get set }
/// Adds a migration to be executed by the service. /// Applies an encryption key to the current database connection.
///
/// - Throws: Any error that occurs while retrieving or applying the key.
func applyKeyProvider() throws
/// Recreates the database connection and reapplies the encryption key if available.
///
/// - Throws: Any error that occurs while creating the connection or applying the key.
func reconnect() throws
/// Registers a migration to be executed by the service.
/// ///
/// - Parameter migration: The migration to register. /// - Parameter migration: The migration to register.
/// - Throws: ``MigrationError/duplicateMigration(_:)`` if a migration with /// - Throws: ``MigrationError/duplicateMigration(_:)`` if a migration with
/// the same version or script URL is already registered. /// the same version or script URL is already registered.
func add(_ migration: Migration<Version>) throws(MigrationError<Version>) func add(_ migration: Migration<Version>) throws(MigrationError<Version>)
/// Runs all pending migrations in ascending version order. /// Executes all pending migrations in ascending version order.
/// ///
/// - Throws: ``MigrationError/emptyMigrationScript(_:)`` if a migration /// - Throws: ``MigrationError/emptyMigrationScript(_:)`` if a migration
/// script is empty. /// script is empty.
@@ -26,10 +43,11 @@ public protocol MigrationServiceProtocol: AnyObject {
@available(iOS 13.0, *) @available(iOS 13.0, *)
@available(macOS 10.15, *) @available(macOS 10.15, *)
public extension MigrationServiceProtocol where Self: Sendable { public extension MigrationServiceProtocol {
/// Asynchronously runs all pending migrations in ascending order. /// Asynchronously executes all pending migrations in ascending order.
/// ///
/// Performs the same logic as ``migrate()``, but runs asynchronously. /// Performs the same logic as ``migrate()``, but runs asynchronously
/// on a background task with `.utility` priority.
/// ///
/// - Throws: ``MigrationError/emptyMigrationScript(_:)`` if a migration /// - Throws: ``MigrationError/emptyMigrationScript(_:)`` if a migration
/// script is empty. /// script is empty.

7
Tests/DataRaftTests/Classes/DatabaseServiceTests.swift
View File

@@ -4,7 +4,7 @@ import DataLiteC
import DataLiteCore import DataLiteCore
import DataRaft import DataRaft
class DatabaseServiceTests: DatabaseServiceKeyProvider { class DatabaseServiceTests: DatabaseServiceKeyProvider, @unchecked Sendable {
private let keyOne = Connection.Key.rawKey(Data([ private let keyOne = Connection.Key.rawKey(Data([
0xe8, 0xd7, 0x92, 0xa2, 0xa1, 0x35, 0x56, 0xc0, 0xe8, 0xd7, 0x92, 0xa2, 0xa1, 0x35, 0x56, 0xc0,
0xfd, 0xbb, 0x2f, 0x91, 0xe8, 0x0b, 0x4b, 0x2a, 0xfd, 0xbb, 0x2f, 0x91, 0xe8, 0x0b, 0x4b, 0x2a,
@@ -40,6 +40,7 @@ class DatabaseServiceTests: DatabaseServiceKeyProvider {
self.service = service self.service = service
self.service.keyProvider = self self.service.keyProvider = self
try self.service.applyKeyProvider()
try self.service.perform { connection in try self.service.perform { connection in
try connection.execute(sql: """ try connection.execute(sql: """
CREATE TABLE IF NOT EXISTS Item ( CREATE TABLE IF NOT EXISTS Item (
@@ -54,11 +55,11 @@ class DatabaseServiceTests: DatabaseServiceKeyProvider {
try? FileManager.default.removeItem(at: fileURL) try? FileManager.default.removeItem(at: fileURL)
} }
func databaseServiceKey(_ service: DatabaseService) throws -> Connection.Key? { func databaseService(keyFor service: any DatabaseServiceProtocol) throws -> Connection.Key? {
currentKey currentKey
} }
func databaseServiceShouldReconnect(_ service: DatabaseService) -> Bool { func databaseService(shouldReconnect service: any DatabaseServiceProtocol) -> Bool {
true true
} }
} }

2
Tests/DataRaftTests/Classes/MigrationServiceTests.swift
View File

@@ -12,7 +12,7 @@ import DataLiteCore
init() throws { init() throws {
let connection = try Connection(location: .inMemory, options: .readwrite) let connection = try Connection(location: .inMemory, options: .readwrite)
self.connection = connection self.connection = connection
self.migrationService = .init(service: .init(connection: connection), storage: .init()) self.migrationService = .init(service: try .init(connection: connection), storage: .init())
} }
@Test func addMigration() throws { @Test func addMigration() throws {