Skip to content

fix: db-pre-config function failing with pg reserved words #4420

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
steve-chavez merged 1 commit into from
Oct 29, 2025
Merged

fix: db-pre-config function failing with pg reserved words #4420

steve-chavez merged 1 commit into from
Oct 29, 2025

Conversation

@taimoorzaeem
Copy link
Collaborator

@taimoorzaeem taimoorzaeem commented Oct 22, 2025

When db-pre-config is accidentally set to a pg reserved word like "true", it fails with a confusing error. The function names should be properly quoted to avoid such errors. This commit resolves the mentioned issue by quoting the pre-config function name.

Closes #4380.

wolfgangwalther
wolfgangwalther reviewed Oct 22, 2025
View reviewed changes
@taimoorzaeem taimoorzaeem force-pushed the fix/escape-db-pre-config branch 3 times, most recently from 43e90b1 to 4643eaf Compare October 24, 2025 05:59
steve-chavez
steve-chavez approved these changes Oct 24, 2025
View reviewed changes
Copy link
Member

@steve-chavez steve-chavez left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Tested it manually. Nice work 💯

steve-chavez
steve-chavez reviewed Oct 24, 2025
View reviewed changes
@taimoorzaeem taimoorzaeem marked this pull request as draft October 25, 2025 06:16
@taimoorzaeem taimoorzaeem mentioned this pull request Oct 27, 2025
Merged
@taimoorzaeem
fix: db-pre-config function failing with pg reserved words
3ddb343 
When db-pre-config is accidentally set to a pg reserved word
like "true", it fails with a confusing error. The function
names should be properly quoted to avoid such errors. This commit
resolves this by quoting the pre-config function name.

Signed-off-by: Taimoor Zaeem <[email protected]>
@taimoorzaeem taimoorzaeem force-pushed the fix/escape-db-pre-config branch from 4643eaf to 3ddb343 Compare October 29, 2025 06:51
@taimoorzaeem taimoorzaeem marked this pull request as ready for review October 29, 2025 06:52
steve-chavez
steve-chavez reviewed Oct 29, 2025
View reviewed changes
src/PostgREST/SchemaCache/Identifiers.hs
Comment on lines 42 to +47
dumpQi (QualifiedIdentifier s i) =
(if T.null s then mempty else s <> ".") <> i

quoteQi :: QualifiedIdentifier -> Text
quoteQi (QualifiedIdentifier s i) =
(if T.null s then mempty else escapeIdent s <> ".") <> escapeIdent i
Copy link
Member

@steve-chavez steve-chavez Oct 29, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Just noticed the dumpQi is too similar to quoteQi.

Shouldn't we stay with quoteQi and drop dumpQi?

postgrest/src/PostgREST/SchemaCache/Identifiers.hs

Lines 38 to 40 in 23750e6

dumpQi :: QualifiedIdentifier -> Text
dumpQi (QualifiedIdentifier s i) =
(if T.null s then mempty else s <> ".") <> i

Copy link
Collaborator Author

@taimoorzaeem taimoorzaeem Oct 29, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The dumpQi function is used in the config dumping, here:

postgrest/src/PostgREST/Config.hs

Line 171 in 75d4131

,("db-pre-config", q . maybe mempty dumpQi . configDbPreConfig)

With quoteQi we set the config to db-pre-config="true", but then get db-pre-config="\"true\"" in the config dump, which is different, right?

Copy link
Member

@steve-chavez steve-chavez Oct 29, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Right, on second thought we shouldn't change usage on those other places on this PR.

But we definitely some clarification between dumpQi/quoteQi, even if it's just a comment on the function saying why we have two functions that are so similar. That can be done on another PR.

(if we can stick to a single function that'd be even better)

Copy link
Collaborator Author

@taimoorzaeem taimoorzaeem Oct 30, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Alright. I think we can move dumpQi to Config.hs module because that's the only place it's used. This should eliminate at least some confusion. Done that on #4435.

@steve-chavez steve-chavez merged commit a688878 into PostgREST:main Oct 29, 2025
33 checks passed
@taimoorzaeem taimoorzaeem deleted the fix/escape-db-pre-config branch October 30, 2025 07:15
@taimoorzaeem taimoorzaeem mentioned this pull request Oct 30, 2025
Merged
@taimoorzaeem
Copy link
Collaborator Author

taimoorzaeem commented Oct 30, 2025

@wolfgangwalther To backport this to v14, we need to first backport #4432 right? Could you please create the backport v14 label? Or we can just do this manually in one PR too.

@wolfgangwalther
Copy link
Member

wolfgangwalther commented Oct 30, 2025

Could you please create the backport v14 label?

Added that label to the other PR.

@postgrest-ci
Copy link

postgrest-ci bot commented Oct 30, 2025

Successfully created backport PR for v14:

@postgrest-ci postgrest-ci bot mentioned this pull request Oct 30, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@steve-chavez steve-chavez steve-chavez approved these changes

@wolfgangwalther wolfgangwalther wolfgangwalther left review comments

Assignees

No one assigned

Labels

backport v14

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Using PGREST_DB_PRE_CONFIG w/out the underlying config function yields a confusing error

3 participants

@taimoorzaeem @wolfgangwalther @steve-chavez