Delta scan uses path-style addressing on OSS despite vhost configuration, causing 403 SecondLevelDomainForbidden

[z2665]

Summary
When querying a Delta table on Alibaba Cloud OSS via DuckDB, delta_scan appears to use path-style addressing through DeltaKernel, even though the DuckDB secret is configured with URL_STYLE 'vhost'. OSS forbids path-style access for security reasons, resulting in a 403 error.

Configuration
I created a secret in DuckDB to access OSS with vhost-style:

CREATE OR REPLACE SECRET alicloud_secret (
TYPE S3,
URL_STYLE 'vhost',
KEY_ID 'xxxx',
SECRET 'xxxx',
REGION 'ap-southeast-1',
ENDPOINT 'oss-ap-southeast-1.aliyuncs.com'
);

Then I ran:

select * from delta_scan('s3://bucketname/a/s');

Observed behavior
delta_scan attempts to access the Delta log using path-style addressing, leading to OSS rejecting the request:

"error":"IO Error: DeltKernel ObjectStoreError (8): Error interacting with object store: The operation lacked the necessary privileges to complete for path a/s/_delta_log/_last_checkpoint: Error performing GET https://oss-ap-southeast-1.aliyuncs.com/bucketname/a/s/_delta_log/_last_checkpoint in 682.801917ms - Server returned non-2xx status code: 403 Forbidden: <?xml version=\"1.0\" encoding=\"UTF-8\"?>
<Error>
<Code>SecondLevelDomainForbidden</Code>
<Message>Please use virtual hosted style to access.</Message>

Expected behavior
DuckDB/DeltaKernel should honor URL_STYLE 'vhost' and use virtual-hosted-style requests for OSS:

Expected format: https://bucketname.oss-ap-southeast-1.aliyuncs.com/a/s/_delta_log/_last_checkpoint
Not: https://oss-ap-southeast-1.aliyuncs.com/bucketname/a/s/_delta_log/_last_checkpoint

Questions

How can I configure DuckDB so that delta_scan (via DeltaKernel) uses vhost-style addressing on OSS?

[z2665]

From my current investigation of the code:

The Delta kernel uses object-store to operate on S3. Therefore, if we want to enable vhost, we should refer to:
https://github.com/apache/arrow-rs-object-store/blob/4102e4d28ceef960aaacbbdf5b1ef37fdb697a25/src/aws/builder.rs#L290

URL_STYLE should be mapped to aws_virtual_hosted_style_request.

However, I have not found any code that performs this mapping.

Reference code location:
https://github.com/duckdb/duckdb-delta/blob/main/src/functions/delta_scan/delta_multi_file_list.cpp#L201

[z2665]

Unfortunately, this PR does not fully resolve the issue. When data exists in the Delta Lake table, retrieving the actual data results in two overlapping endpoints. HTTP Error:
HTTP GET error on 'https://bucketname.bucketname.oss-ap-southeast-1.aliyuncs.com/a/s/hour_dimension% 3D2025101007/part-00001-d6f71d31-1cd3-4203-b41c-35a88cdba156-c000.snappy.parquet' (HTTP 400)