mirror of
https://github.com/koala73/worldmonitor.git
synced 2026-04-25 17:14:57 +02:00
e6a6d4e326
* fix(bundle-runner): stream child stdio + SIGKILL escalation on timeout Silent Railway crashes in seed-bundle-portwatch — container exits after ~7min with ZERO logs from the hanging section. Root cause in the runner, not the seeder: execFile buffers child stdout until the callback fires, and its default SIGTERM never escalates to SIGKILL, so a child with in-flight HTTPS sockets can outlive the timeout and be killed by the container limit before any error is logged. Switch to spawn + live line-prefixed streaming. On timeout, send SIGTERM, then SIGKILL after a 10s grace. Always log the terminal reason (timeout / exit code / signal) so the next failing bundle surfaces the hung section on its own line instead of going dark. Applies to all 15 seed-bundle-*.mjs services that use this runner. * fix(bundle-runner): guard double-resolve, update docstring, add tests Review follow-ups: - Idempotent settle() so spawn 'error' + 'close' can't double-resolve - Header comment reflects spawn + streaming + SIGKILL behavior - tests/bundle-runner.test.mjs covers live streaming, SIGKILL escalation when a child ignores SIGTERM, and non-zero exit reporting * fix(bundle-runner): address PR review — declare softKill before settle, handle stdio error * fix(bundle-runner): log terminal reason BEFORE SIGKILL grace + include grace in budget Review P1 follow-up. Two gaps the previous commit left open: 1. A section with timeoutMs close to Railway's ~10min container cap could be killed by the container mid-grace, before the "Failed ... timeout" line reached the log stream. Fix: emit the terminal Failed line at the moment softKill fires (before SIGTERM), so the reason is flushed BEFORE any grace window that could be truncated by a container kill. 2. The admission check used raw timeoutMs, but worst-case runtime is timeoutMs + KILL_GRACE_MS when the child ignores SIGTERM. A section that "fit" the budget could still overrun. Fix: compare elapsed + timeout + grace against maxBundleMs. close handler still settles the promise but no longer re-logs on the timeout path (alreadyLogged flag). New test asserts the Failed line precedes SIGKILL escalation, and that budget accounts for grace.
128 lines
4.8 KiB
JavaScript
128 lines
4.8 KiB
JavaScript
// Verifies _bundle-runner.mjs streams child stdio live, reports timeout with
|
|
// a clear reason, and escalates SIGTERM → SIGKILL when a child ignores SIGTERM.
|
|
//
|
|
// Uses a real spawn of a small bundle against ephemeral scripts under scripts/
|
|
// because the runner joins __dirname with section.script.
|
|
|
|
import { test } from 'node:test';
|
|
import assert from 'node:assert/strict';
|
|
import { spawn } from 'node:child_process';
|
|
import { writeFileSync, unlinkSync } from 'node:fs';
|
|
import { join } from 'node:path';
|
|
|
|
const SCRIPTS_DIR = new URL('../scripts/', import.meta.url).pathname;
|
|
|
|
function runBundleWith(sections, opts = {}) {
|
|
const runPath = join(SCRIPTS_DIR, '_bundle-runner-test-run.mjs');
|
|
writeFileSync(
|
|
runPath,
|
|
`import { runBundle } from './_bundle-runner.mjs';\nawait runBundle('test', ${JSON.stringify(
|
|
sections,
|
|
)}, ${JSON.stringify(opts)});\n`,
|
|
);
|
|
return new Promise((resolve) => {
|
|
const child = spawn(process.execPath, [runPath], { stdio: ['ignore', 'pipe', 'pipe'] });
|
|
let stdout = '';
|
|
let stderr = '';
|
|
child.stdout.on('data', (c) => { stdout += c; });
|
|
child.stderr.on('data', (c) => { stderr += c; });
|
|
child.on('close', (code) => {
|
|
try { unlinkSync(runPath); } catch {}
|
|
resolve({ code, stdout, stderr });
|
|
});
|
|
});
|
|
}
|
|
|
|
function writeFixture(name, body) {
|
|
const path = join(SCRIPTS_DIR, name);
|
|
writeFileSync(path, body);
|
|
return () => { try { unlinkSync(path); } catch {} };
|
|
}
|
|
|
|
test('streams child stdout live and reports Done on success', async () => {
|
|
const cleanup = writeFixture(
|
|
'_bundle-fixture-fast.mjs',
|
|
`console.log('line-one'); console.log('line-two');\n`,
|
|
);
|
|
try {
|
|
const { code, stdout } = await runBundleWith([
|
|
{ label: 'FAST', script: '_bundle-fixture-fast.mjs', intervalMs: 1, timeoutMs: 5000 },
|
|
]);
|
|
assert.equal(code, 0);
|
|
assert.match(stdout, /\[FAST\] line-one/);
|
|
assert.match(stdout, /\[FAST\] line-two/);
|
|
assert.match(stdout, /\[FAST\] Done \(/);
|
|
assert.match(stdout, /\[Bundle:test\] Finished .* ran:1/);
|
|
} finally {
|
|
cleanup();
|
|
}
|
|
});
|
|
|
|
test('timeout emits terminal reason BEFORE SIGTERM/SIGKILL grace (survives container kill)', async () => {
|
|
const cleanup = writeFixture(
|
|
'_bundle-fixture-hang.mjs',
|
|
// Ignore SIGTERM so the runner must SIGKILL.
|
|
`process.on('SIGTERM', () => {}); console.log('hung'); setInterval(() => {}, 1000);\n`,
|
|
);
|
|
try {
|
|
const t0 = Date.now();
|
|
const { code, stdout, stderr } = await runBundleWith([
|
|
{ label: 'HANG', script: '_bundle-fixture-hang.mjs', intervalMs: 1, timeoutMs: 1000 },
|
|
]);
|
|
const elapsedMs = Date.now() - t0;
|
|
assert.equal(code, 1, 'bundle must exit non-zero on failure');
|
|
const combined = stdout + stderr;
|
|
assert.match(combined, /\[HANG\] hung/, 'child stdout should stream before kill');
|
|
// Critical: terminal "Failed ... timeout" line must appear in-line with the
|
|
// SIGTERM send, not after SIGKILL — this is what survives a container kill
|
|
// landing inside the 10s grace window.
|
|
const failIdx = combined.indexOf('Failed after');
|
|
const sigkillIdx = combined.indexOf('SIGKILL');
|
|
assert.ok(failIdx >= 0, 'must emit Failed line');
|
|
assert.ok(sigkillIdx > failIdx, 'Failed line must precede SIGKILL escalation');
|
|
assert.match(combined, /Failed after .*s: timeout after 1s — sending SIGTERM/);
|
|
assert.match(combined, /Did not exit on SIGTERM.*SIGKILL/);
|
|
// 1s timeout + 10s SIGTERM grace + overhead; cap well above that to avoid flake.
|
|
assert.ok(elapsedMs < 20_000, `timeout escalation took ${elapsedMs}ms — too slow`);
|
|
} finally {
|
|
cleanup();
|
|
}
|
|
});
|
|
|
|
test('budget check accounts for SIGKILL grace when deferring', async () => {
|
|
const cleanup = writeFixture(
|
|
'_bundle-fixture-sleep.mjs',
|
|
`console.log('ok');\n`,
|
|
);
|
|
try {
|
|
// timeoutMs (15s) + grace (10s) = 25s worst-case. Budget 20s must defer.
|
|
const { code, stdout } = await runBundleWith(
|
|
[{ label: 'GATED', script: '_bundle-fixture-sleep.mjs', intervalMs: 1, timeoutMs: 15_000 }],
|
|
{ maxBundleMs: 20_000 },
|
|
);
|
|
assert.equal(code, 0, 'deferred sections are not failures');
|
|
assert.match(stdout, /\[GATED\] Deferred, needs 25s \(timeout\+grace\)/);
|
|
assert.match(stdout, /deferred:1/);
|
|
} finally {
|
|
cleanup();
|
|
}
|
|
});
|
|
|
|
test('non-zero exit without timeout reports exit code', async () => {
|
|
const cleanup = writeFixture(
|
|
'_bundle-fixture-fail.mjs',
|
|
`console.error('boom'); process.exit(2);\n`,
|
|
);
|
|
try {
|
|
const { code, stdout, stderr } = await runBundleWith([
|
|
{ label: 'FAIL', script: '_bundle-fixture-fail.mjs', intervalMs: 1, timeoutMs: 5000 },
|
|
]);
|
|
assert.equal(code, 1);
|
|
const combined = stdout + stderr;
|
|
assert.match(combined, /\[FAIL\] boom/);
|
|
assert.match(combined, /Failed after .*s: exit 2/);
|
|
} finally {
|
|
cleanup();
|
|
}
|
|
});
|