[KNOWN ISSUE] Enabling some optional features adds unexpected crates to Cargo.lock
#3211
Comments
abonander
added a commit
that referenced
this issue
Apr 21, 2024
This was referenced Apr 21, 2024
koeninger-ironlight
added a commit
to Ironlight-Group/sqlx
that referenced
this issue
Apr 23, 2024
QAston
pushed a commit
to ChorusOne/sqlx
that referenced
this issue
Apr 26, 2024
QAston
pushed a commit
to ChorusOne/sqlx
that referenced
this issue
Apr 26, 2024
theo-zil
added a commit
to Zilliqa/zq-base
that referenced
this issue
May 8, 2024
Due to a cargo bug, this was causing issues with adding rusqlite to ZQ2. See launchbadge/sqlx#3211 - Cargo would detect a spurious version conflict in the sqlite version to bundle. However sqlx appears completely unused in zqutils so removing the dependency entirely is an easy fix.
rrw-zilliqa
pushed a commit
to Zilliqa/zq-base
that referenced
this issue
May 13, 2024
Due to a cargo bug, this was causing issues with adding rusqlite to ZQ2. See launchbadge/sqlx#3211 - Cargo would detect a spurious version conflict in the sqlite version to bundle. However sqlx appears completely unused in zqutils so removing the dependency entirely is an easy fix.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This issue is to serve as an aggregation point for issues like the following:
failed to select version for libsqlite3-sysfailure #2964migratecargo feature is enabled #3196uuidfeature pulls in database specific code #3210All of these issues have the same root cause: enabling a feature of SQLx that enables a weak feature, i.e.
crate?/feature.This will bring that feature's crate into the
Cargo.lockwhich may make it appear that it is enabling code or dependencies that were explicitly not wanted (unused database drivers, dependencies with RUSTSEC advisories, etc.). In the case of #2964, it unfortunately appears that this can break dependency resolution since crates with native dependencies likelibsqlite3-syscannot be duplicated in the dependency graph.This is a Cargo bug, not a SQLx bug.
We are using weak features for their intended purpose. The issue has been known upstream since 2022: rust-lang/cargo#10801
Don't comment here or on rust-lang/cargo#10801 unless you have something meaningful to add.
Complaining on the Cargo issue will just add noise and bury any productive discourse.
Read the discussion there and the proposed fix and its blockers to inform yourself of the situation before commenting.
Maybe you can be the one to fix it?
Just because it appears in the
Cargo.lockdoes not mean it's getting compiled.You can verify this yourself when performing a clean build of your project.
Interpret the output of any tool that just reads your
Cargo.lockwith a few grains of salt, and maybe help make sure that the authors of those tools are aware of this issue so they can take it into account.Thank you.
The text was updated successfully, but these errors were encountered: