Skip to content

fix: correct PGOPTIONS parsing and search_path handling #768

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

fix: correct PGOPTIONS parsing and search_path handling #768

wants to merge 1 commit into from
+260 −4

Conversation

@b3b
Copy link

@b3b b3b commented Nov 1, 2025
edited
Loading

What kind of change does this PR introduce?

Bug fix: improves PGOPTIONS parsing to correctly handle both --key=value and -c key=value syntax, prevent malformed tokens, and avoid leaking unintended parameters to Postgres.

What is the current behavior?

Supavisor currently parses PGOPTIONS using URI.decode_query, but PostgreSQL does not URI-encode connection options they are space-separated key=value pairs.

This causes several issues:

  • Only the first parameter is parsed
PGOPTIONS="--log_level=debug --search_path=custom" psql 'postgresql://...' -c "show search_path"
search_path   
-----------------
 "$user", public
(1 row)
  • Common -c key=value syntax is not supported
PGOPTIONS="-c search_path=custom" psql 'postgresql://...' -c "show search_path"
search_path   
-----------------
 "$user", public
(1 row)
  • When --search_path is first, following options are passed through
PGOPTIONS="--search_path=custom --work_mem=1234567" psql 'postgresql://...' -c "select name, setting from pg_settings where name in ('search_path','work_mem');"
    name     | setting 
-------------+---------
 search_path | custom
 work_mem    | 1234567
(2 rows)

PGOPTIONS='--search_path=custom -malformed' psql  'postgresql://...' -c "show search_path"
server closed the connection unexpectedly

Note

In this case, Supavisor repeatedly tries to reconnect and floods the logs with: [error] DbHandler: Error auth response ["SFATAL", "VFATAL", "C42601", "Minvalid command-line argument for server process: --search_path=custom", "HTry \"postgres --help\" for more information.", "Fpostgres.c", "L3931", "Rprocess_postgres_switches"]

Related issues

What is the new behavior?

  • Supports both --key=value and -c key=value forms.
  • Ignores malformed tokens safely and logs a warning.
  • Prevents unintended parameters from being forwarded to Postgres.
  • Passes recognized option values as-is to Postgres, preserving quotes and escapes

Additional context

Integration tests for this behavior are included in #770

@b3b
fix: correct PGOPTIONS parsing and search_path handling
bee7b57 
Replaces the old URI.decode_query-based parser with a new
StartupOptions tokenizer that accurately parses the `options` field
from PostgreSQL startup packets.

- Prevents forwarding of extra options after `--search_path`
- Supports `--key=value,` `-c key=value` and `-ckey=value` forms
@b3b b3b requested a review from a team as a code owner November 1, 2025 17:51
@b3b b3b mentioned this pull request Nov 1, 2025
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@b3b