Participants
Lakshmi N
Lakshmi N
Amit Langote
Amit Langote
Attachments
Download Latest Patchset
+11-0
Show all attachments
Thread Outline
#1Lakshmi NLakshmi N
about 14 hours ago
#2Amit LangoteAmit Langoteto Lakshmi N (#1)
about 12 hours ago
#3Lakshmi NLakshmi Nto Amit Langote (#2)
about 5 hours ago

Reject invalid databases in pg_get_database_ddl()

Started by Lakshmi Nabout 14 hours ago3 messageshackers
Jump to latest
#1Lakshmi N
Lakshmi N
lakshmin.jhs@gmail.com

Hi,

pg_get_database_ddl() is not checking for databases in an invalid state
before producing ddl statements. This caused the function to emit
CONNECTION_LIMIT = -2, which is invalid SQL that Postgres rejects.
A database row can be in this inconsistent state longer, for example
server crashed during a drop database.

Attached patch to fix this issue by doing a database_is_invalid_form()
check early in pg_get_database_ddl_internal().

Regards,
Lakshmi

Attachments:

0001-Reject-pg_get_database_ddl-for-invalid-databases.patchapplication/octet-stream; name=0001-Reject-pg_get_database_ddl-for-invalid-databases.patchDownload+11-0
#2Amit Langote
Amit Langote
Langote_Amit_f8@lab.ntt.co.jp
In reply to: Lakshmi N (#1)
Re: Reject invalid databases in pg_get_database_ddl()

Hi,

On Thu, Apr 16, 2026 at 5:20 PM Lakshmi N <lakshmin.jhs@gmail.com> wrote:

pg_get_database_ddl() is not checking for databases in an invalid state
before producing ddl statements. This caused the function to emit
CONNECTION_LIMIT = -2, which is invalid SQL that Postgres rejects.
A database row can be in this inconsistent state longer, for example
server crashed during a drop database.

Attached patch to fix this issue by doing a database_is_invalid_form()
check early in pg_get_database_ddl_internal().

Thanks for the report.

Hmm, I see that the function will happily emit datconnlimit = -2 and
your patch catches that at the top instead of down below near this
code:

/* CONNECTION LIMIT */
if (dbform->datconnlimit != -1)
{
resetStringInfo(&buf);
appendStringInfo(&buf, "ALTER DATABASE %s CONNECTION LIMIT = %d;",
quote_identifier(dbname), dbform->datconnlimit);
statements = lappend(statements, pstrdup(buf.data));
}

which, I guess, makes sense.

The comment is correct but could be more explicit:

/*
* Reject invalid databases: datconnlimit = -2 would be emitted as
* CONNECTION LIMIT = -2, which fails on replay.
*/

--
Thanks, Amit Langote

#3Lakshmi N
Lakshmi N
lakshmin.jhs@gmail.com
In reply to: Amit Langote (#2)
Re: Reject invalid databases in pg_get_database_ddl()

Hi Amit,

On Thu, Apr 16, 2026 at 2:29 AM Amit Langote <amitlangote09@gmail.com>
wrote:

Hi,

On Thu, Apr 16, 2026 at 5:20 PM Lakshmi N <lakshmin.jhs@gmail.com> wrote:

pg_get_database_ddl() is not checking for databases in an invalid state
before producing ddl statements. This caused the function to emit
CONNECTION_LIMIT = -2, which is invalid SQL that Postgres rejects.
A database row can be in this inconsistent state longer, for example
server crashed during a drop database.

Attached patch to fix this issue by doing a database_is_invalid_form()
check early in pg_get_database_ddl_internal().

Thanks for the report.

Hmm, I see that the function will happily emit datconnlimit = -2 and
your patch catches that at the top instead of down below near this
code:

/* CONNECTION LIMIT */
if (dbform->datconnlimit != -1)
{
resetStringInfo(&buf);
appendStringInfo(&buf, "ALTER DATABASE %s CONNECTION LIMIT = %d;",
quote_identifier(dbname), dbform->datconnlimit);
statements = lappend(statements, pstrdup(buf.data));
}

which, I guess, makes sense.

The comment is correct but could be more explicit:

/*
* Reject invalid databases: datconnlimit = -2 would be emitted as
* CONNECTION LIMIT = -2, which fails on replay.
*/

Thank you for reviewing! Please find the attached v2 addressing this.

Regards,
Lakshmi

Attachments:

v2-0001-Reject-pg_get_database_ddl-for-invalid-databases.patchapplication/octet-stream; name=v2-0001-Reject-pg_get_database_ddl-for-invalid-databases.patchDownload+11-0
← Back to Topics