mirror of
https://github.com/koala73/worldmonitor.git
synced 2026-04-26 01:24:59 +02:00
57414e4762
* fix(open-meteo): curl proxy as second-choice when CONNECT proxy fails Decodo's CONNECT egress and curl egress reach DIFFERENT IP pools (per scripts/_proxy-utils.cjs:67). Probed 2026-04-16 against Yahoo Finance: Yahoo via CONNECT (httpsProxyFetchRaw): HTTP 404 Yahoo via curl (curlFetch): HTTP 200 For Open-Meteo both paths happen to work today, but pinning the helper to one path is a single point of failure if Decodo rebalances pools, or if Open-Meteo starts behaving like Yahoo. PR #3118 wired only the CONNECT path (`httpsProxyFetchRaw`); this commit adds curl as a second-choice attempt that runs only when CONNECT also fails. Cascade: direct retries (3) → CONNECT proxy (1) → curl proxy (1) → throw Steady-state cost: zero. Curl exec only runs when CONNECT also failed. Final exhausted-throw now appends the LAST proxy error too, so on-call sees both upstream signals (direct + proxy) instead of just direct. Tests: added 4 cases locking the cascade behavior: - CONNECT fails → curl succeeds: returns curl data, neither throws - CONNECT succeeds: curl never invoked (cost gate) - CONNECT fails AND curl fails: throws exhausted with both errors visible in the message (HTTP 429 from direct + curl 502 from proxy) - curl returns malformed JSON: caught + warns + throws exhausted Updated 2 existing tests to also stub _proxyCurlFetcher so they don't shell out to real curl when CONNECT is mocked-failed (would have run real curl with proxy.test:8000 → 8s timeout per test). Verification: - tests/open-meteo-proxy-fallback.test.mjs → 12/12 pass (was 8, +4 new) - npm run test:data → 5367/5367 (+4) - npm run typecheck:all → clean Followup to PR #3118. * fix: CONNECT leg uses resolveProxyForConnect; lock production defaults P1 from PR #3119 review: the cascade was logged as 'CONNECT proxy → curl proxy' but BOTH legs were resolving via resolveProxy() — which rewrites gate.decodo.com → us.decodo.com for curl egress. So the 'two-leg cascade' was actually one Decodo egress pool wearing two transport mechanisms. Defeats the redundancy this PR is supposed to provide. Fix: import resolveProxyForConnect (preserves gate.decodo.com — the host Decodo routes via its CONNECT egress pool, distinct from the curl-egress pool reached by us.decodo.com via resolveProxy). CONNECT leg uses resolveProxyForConnect; curl leg uses resolveProxy. Matches the established pattern in scripts/seed-portwatch-chokepoints-ref.mjs:33-37 and scripts/seed-recovery-external-debt.mjs:31-35. Refactored test seams: split single _proxyResolver into _connectProxyResolver + _curlProxyResolver. Test files inject both. P2 fix: every cascade test injected _proxyResolver, so the suite stayed green even when production defaults were misconfigured. Exported _PROXY_DEFAULTS object and added 2 lock-tests: 1. CONNECT leg uses resolveProxyForConnect, curl leg uses resolveProxy (reference equality on each of 4 default fields). 2. connect/curl resolvers are different functions — guards against the 'collapsed cascade' regression class generally, not just this specific instance. Updated the 8 existing cascade tests to inject BOTH resolvers. The docstring at the top of the file now spells out the wiring invariant and points to the lock-tests. Verification: - tests/open-meteo-proxy-fallback.test.mjs: 14/14 pass (+2) - npm run test:data: 5369/5369 (+2) - npm run typecheck:all: clean Followup commit on PR #3119. * fix(open-meteo): future-proof sync curlFetch call with Promise.resolve+await Greptile P2: _proxyCurlFetcher (curlFetch / execFileSync) is sync today, adjacent CONNECT path is async (await _proxyFetcher(...)). A future refactor of curlFetch to async would silently break this line — JSON.parse would receive a Promise<string> instead of a string and explode at parse time, not at the obvious call site. Wrapping with await Promise.resolve(...) is a no-op for the current sync implementation but auto-handles a future async refactor. Comment spells out the contract so the wrap doesn't read as cargo-cult. Tests still 14/14.
398 lines
15 KiB
JavaScript
398 lines
15 KiB
JavaScript
// Locks the proxy-fallback behavior added to _open-meteo-archive.mjs after
|
|
// Railway 2026-04-16 logs showed seed-climate-zone-normals failing every
|
|
// batch with HTTP 429 from Open-Meteo's per-IP free-tier throttle, with no
|
|
// proxy retry.
|
|
//
|
|
// All HTTP is mocked — no real fetch / Decodo calls.
|
|
|
|
import { test, beforeEach, afterEach } from 'node:test';
|
|
import { strict as assert } from 'node:assert';
|
|
|
|
process.env.UPSTASH_REDIS_REST_URL = 'https://redis.test';
|
|
process.env.UPSTASH_REDIS_REST_TOKEN = 'fake-token';
|
|
|
|
const ZONES = [
|
|
{ name: 'Tropical', lat: 0, lon: 0 },
|
|
{ name: 'Polar', lat: 80, lon: 0 },
|
|
];
|
|
|
|
const VALID_PAYLOAD = ZONES.map((z) => ({
|
|
latitude: z.lat,
|
|
longitude: z.lon,
|
|
daily: { time: ['2020-01-01'], temperature_2m_mean: [10] },
|
|
}));
|
|
|
|
const ARCHIVE_OPTS = {
|
|
startDate: '2020-01-01',
|
|
endDate: '2020-01-02',
|
|
daily: ['temperature_2m_mean'],
|
|
maxRetries: 1,
|
|
retryBaseMs: 10,
|
|
timeoutMs: 1000,
|
|
};
|
|
|
|
const originalFetch = globalThis.fetch;
|
|
let capturedProxyCalls;
|
|
|
|
beforeEach(() => {
|
|
capturedProxyCalls = [];
|
|
});
|
|
|
|
afterEach(() => {
|
|
globalThis.fetch = originalFetch;
|
|
delete process.env.PROXY_USER;
|
|
delete process.env.PROXY_PASS;
|
|
delete process.env.PROXY_HOST;
|
|
delete process.env.PROXY_PORT;
|
|
delete process.env.SEED_PROXY_AUTH;
|
|
});
|
|
|
|
// The helper accepts `_connectProxyResolver` / `_curlProxyResolver` /
|
|
// `_proxyFetcher` / `_proxyCurlFetcher` opt overrides specifically for tests
|
|
// — production callers leave them unset and get the real Decodo paths from
|
|
// _seed-utils.mjs. This lets us exercise the cascade without spinning up
|
|
// real CONNECT tunnels or curl execs.
|
|
//
|
|
// IMPORTANT: every test that exercises the proxy cascade injects BOTH
|
|
// resolvers, because production defaults route the two legs through
|
|
// DIFFERENT Decodo endpoints (gate.decodo.com vs us.decodo.com). The
|
|
// "production defaults" test below locks that wiring at the helper level.
|
|
|
|
test('429 with no proxy configured: throws after exhausting retries (preserves pre-fix behavior)', async () => {
|
|
// Re-import per-test so module-level state (none currently) is fresh.
|
|
const { fetchOpenMeteoArchiveBatch } = await import(`../scripts/_open-meteo-archive.mjs?t=${Date.now()}`);
|
|
|
|
let calls = 0;
|
|
globalThis.fetch = async () => {
|
|
calls += 1;
|
|
return {
|
|
ok: false, status: 429,
|
|
headers: { get: () => null },
|
|
json: async () => ({}),
|
|
};
|
|
};
|
|
|
|
await assert.rejects(
|
|
() => fetchOpenMeteoArchiveBatch(ZONES, ARCHIVE_OPTS),
|
|
/Open-Meteo retries exhausted/,
|
|
);
|
|
// 1 initial + 1 retry (maxRetries=1) = 2 direct calls
|
|
assert.equal(calls, 2);
|
|
});
|
|
|
|
test('200 OK: returns parsed batch without touching proxy path', async () => {
|
|
const { fetchOpenMeteoArchiveBatch } = await import(`../scripts/_open-meteo-archive.mjs?t=${Date.now()}`);
|
|
|
|
globalThis.fetch = async () => ({
|
|
ok: true, status: 200,
|
|
headers: { get: () => null },
|
|
json: async () => VALID_PAYLOAD,
|
|
});
|
|
|
|
const result = await fetchOpenMeteoArchiveBatch(ZONES, ARCHIVE_OPTS);
|
|
assert.equal(result.length, 2);
|
|
assert.equal(result[0].latitude, 0);
|
|
});
|
|
|
|
test('batch size mismatch: throws even on 200', async () => {
|
|
const { fetchOpenMeteoArchiveBatch } = await import(`../scripts/_open-meteo-archive.mjs?t=${Date.now()}`);
|
|
globalThis.fetch = async () => ({
|
|
ok: true, status: 200,
|
|
headers: { get: () => null },
|
|
json: async () => [VALID_PAYLOAD[0]], // only 1, not 2
|
|
});
|
|
await assert.rejects(
|
|
() => fetchOpenMeteoArchiveBatch(ZONES, ARCHIVE_OPTS),
|
|
/batch size mismatch/,
|
|
);
|
|
});
|
|
|
|
test('non-retryable status (500): falls through to proxy attempt without extra retry', async () => {
|
|
const { fetchOpenMeteoArchiveBatch } = await import(`../scripts/_open-meteo-archive.mjs?t=${Date.now()}`);
|
|
|
|
let calls = 0;
|
|
globalThis.fetch = async () => {
|
|
calls += 1;
|
|
return {
|
|
ok: false, status: 500,
|
|
headers: { get: () => null },
|
|
json: async () => ({}),
|
|
};
|
|
};
|
|
|
|
await assert.rejects(
|
|
() => fetchOpenMeteoArchiveBatch(ZONES, ARCHIVE_OPTS),
|
|
/Open-Meteo retries exhausted/,
|
|
);
|
|
// Non-retryable status: no further retries — break out of the loop after
|
|
// first attempt, then the proxy-fallback block runs (no proxy env →
|
|
// skipped) → throws exhausted.
|
|
assert.equal(calls, 1);
|
|
});
|
|
|
|
// ─── Proxy fallback path — actually exercised via _proxyResolver/_proxyFetcher ───
|
|
|
|
test('429 + proxy configured + proxy succeeds: returns proxy data, never throws', async () => {
|
|
const { fetchOpenMeteoArchiveBatch } = await import(`../scripts/_open-meteo-archive.mjs?t=${Date.now()}`);
|
|
|
|
globalThis.fetch = async () => ({
|
|
ok: false, status: 429,
|
|
headers: { get: () => null },
|
|
json: async () => ({}),
|
|
});
|
|
|
|
let proxyCalls = 0;
|
|
let receivedProxyAuth = null;
|
|
const result = await fetchOpenMeteoArchiveBatch(ZONES, {
|
|
...ARCHIVE_OPTS,
|
|
_connectProxyResolver: () => 'user:pass@gate.decodo.com:7000',
|
|
_curlProxyResolver: () => 'user:pass@us.decodo.com:10001',
|
|
_proxyFetcher: async (url, proxyAuth, _opts) => {
|
|
proxyCalls += 1;
|
|
receivedProxyAuth = proxyAuth;
|
|
assert.match(url, /archive-api\.open-meteo\.com\/v1\/archive\?/);
|
|
return { buffer: Buffer.from(JSON.stringify(VALID_PAYLOAD), 'utf8'), contentType: 'application/json' };
|
|
},
|
|
});
|
|
|
|
assert.equal(proxyCalls, 1);
|
|
assert.equal(receivedProxyAuth, 'user:pass@gate.decodo.com:7000');
|
|
assert.equal(result.length, 2);
|
|
assert.equal(result[1].latitude, 80);
|
|
});
|
|
|
|
test('thrown fetch error (timeout/ECONNRESET) on final direct attempt → proxy fallback runs (P1 fix)', async () => {
|
|
// Pre-fix bug: the catch block did `throw err` after the final direct retry,
|
|
// which silently bypassed proxy fallback for thrown-error cases (timeout,
|
|
// ECONNRESET, DNS). Lock the new control flow: thrown error → break →
|
|
// proxy fallback runs.
|
|
const { fetchOpenMeteoArchiveBatch } = await import(`../scripts/_open-meteo-archive.mjs?t=${Date.now()}`);
|
|
|
|
let directCalls = 0;
|
|
globalThis.fetch = async () => {
|
|
directCalls += 1;
|
|
throw Object.assign(new Error('Connect Timeout Error'), { code: 'UND_ERR_CONNECT_TIMEOUT' });
|
|
};
|
|
|
|
let proxyCalls = 0;
|
|
const result = await fetchOpenMeteoArchiveBatch(ZONES, {
|
|
...ARCHIVE_OPTS,
|
|
_connectProxyResolver: () => 'user:pass@proxy.test:8000',
|
|
_curlProxyResolver: () => 'user:pass@proxy-curl.test:8000',
|
|
_proxyFetcher: async () => {
|
|
proxyCalls += 1;
|
|
return { buffer: Buffer.from(JSON.stringify(VALID_PAYLOAD), 'utf8'), contentType: 'application/json' };
|
|
},
|
|
});
|
|
|
|
assert.equal(directCalls, 2, 'direct attempts should exhaust retries before proxy');
|
|
assert.equal(proxyCalls, 1, 'proxy fallback MUST run on thrown-error path (regression guard)');
|
|
assert.equal(result.length, 2);
|
|
});
|
|
|
|
test('429 + proxy configured + proxy ALSO fails: throws exhausted with last direct error in cause', async () => {
|
|
const { fetchOpenMeteoArchiveBatch } = await import(`../scripts/_open-meteo-archive.mjs?t=${Date.now()}`);
|
|
|
|
globalThis.fetch = async () => ({
|
|
ok: false, status: 429,
|
|
headers: { get: () => null },
|
|
json: async () => ({}),
|
|
});
|
|
|
|
let connectCalls = 0;
|
|
let curlCalls = 0;
|
|
await assert.rejects(
|
|
() => fetchOpenMeteoArchiveBatch(ZONES, {
|
|
...ARCHIVE_OPTS,
|
|
_connectProxyResolver: () => 'user:pass@proxy.test:8000',
|
|
_curlProxyResolver: () => 'user:pass@proxy-curl.test:8000',
|
|
_proxyFetcher: async () => {
|
|
connectCalls += 1;
|
|
throw new Error('proxy 502');
|
|
},
|
|
// Stub curl path too (CONNECT failure now cascades to curl). Without
|
|
// this stub the test would shell out to real curl since the helper's
|
|
// default is the production curlFetch.
|
|
_proxyCurlFetcher: () => {
|
|
curlCalls += 1;
|
|
throw new Error('proxy curl 502');
|
|
},
|
|
}),
|
|
(err) => {
|
|
assert.match(err.message, /Open-Meteo retries exhausted/);
|
|
assert.match(err.message, /HTTP 429/);
|
|
return true;
|
|
},
|
|
);
|
|
assert.equal(connectCalls, 1);
|
|
assert.equal(curlCalls, 1);
|
|
});
|
|
|
|
// ─── Production defaults: lock the resolver wiring ──────────────────────
|
|
//
|
|
// Without this test, the proxy-cascade tests would all pass even if the
|
|
// helper accidentally routed BOTH legs through the same resolver
|
|
// (collapsing the gate.decodo.com vs us.decodo.com pool redundancy this
|
|
// helper exists to provide). The defaults are exported via _PROXY_DEFAULTS
|
|
// for exactly this lock.
|
|
|
|
test('production defaults: CONNECT leg uses resolveProxyForConnect, curl leg uses resolveProxy', async () => {
|
|
// No `?t=` cache-buster on these two imports — reference equality across
|
|
// modules requires both imports to resolve to the SAME module instance.
|
|
// Cache-busting forces re-evaluation and breaks the reference comparison.
|
|
const { _PROXY_DEFAULTS } = await import('../scripts/_open-meteo-archive.mjs');
|
|
const { resolveProxy, resolveProxyForConnect, httpsProxyFetchRaw, curlFetch } = await import('../scripts/_seed-utils.mjs');
|
|
|
|
// Reference equality: the helper must wire the EXACT functions from
|
|
// _seed-utils.mjs. Anything else (a wrapper, a different resolver, the
|
|
// wrong direction) means the cascade is misconfigured.
|
|
assert.equal(_PROXY_DEFAULTS.connectProxyResolver, resolveProxyForConnect, 'CONNECT leg MUST use resolveProxyForConnect (gate.decodo.com pool)');
|
|
assert.equal(_PROXY_DEFAULTS.curlProxyResolver, resolveProxy, 'curl leg MUST use resolveProxy (us.decodo.com pool)');
|
|
assert.equal(_PROXY_DEFAULTS.connectFetcher, httpsProxyFetchRaw, 'CONNECT leg MUST use httpsProxyFetchRaw');
|
|
assert.equal(_PROXY_DEFAULTS.curlFetcher, curlFetch, 'curl leg MUST use curlFetch');
|
|
});
|
|
|
|
test('production defaults: connect/curl resolvers are different functions (no single point of failure)', async () => {
|
|
const { _PROXY_DEFAULTS } = await import('../scripts/_open-meteo-archive.mjs');
|
|
assert.notEqual(_PROXY_DEFAULTS.connectProxyResolver, _PROXY_DEFAULTS.curlProxyResolver,
|
|
'Same resolver for both legs would collapse the cascade into one Decodo egress pool');
|
|
assert.notEqual(_PROXY_DEFAULTS.connectFetcher, _PROXY_DEFAULTS.curlFetcher,
|
|
'Same fetcher for both legs is incoherent (CONNECT vs curl-x are different transport mechanisms)');
|
|
});
|
|
|
|
// ─── Second-choice curl proxy fallback ──────────────────────────────────
|
|
//
|
|
// Decodo's CONNECT and curl egress reach DIFFERENT IP pools (per
|
|
// scripts/_proxy-utils.cjs:67). Some hosts only accept one path — Yahoo
|
|
// Finance returns 404 to Decodo's CONNECT egress but 200 to curl. Probed
|
|
// 2026-04-16: Open-Meteo works through both today, but pinning to one path
|
|
// is a single point of failure if Decodo rebalances pools. The helper
|
|
// tries CONNECT first, falls through to curl only when CONNECT errors.
|
|
|
|
test('CONNECT proxy fails → curl proxy succeeds: returns curl data, never throws', async () => {
|
|
const { fetchOpenMeteoArchiveBatch } = await import(`../scripts/_open-meteo-archive.mjs?t=${Date.now()}`);
|
|
|
|
globalThis.fetch = async () => ({
|
|
ok: false, status: 429,
|
|
headers: { get: () => null },
|
|
json: async () => ({}),
|
|
});
|
|
|
|
let connectCalls = 0;
|
|
let curlCalls = 0;
|
|
const result = await fetchOpenMeteoArchiveBatch(ZONES, {
|
|
...ARCHIVE_OPTS,
|
|
_connectProxyResolver: () => 'user:pass@gate.decodo.com:7000',
|
|
_curlProxyResolver: () => 'user:pass@us.decodo.com:10001',
|
|
_proxyFetcher: async () => { connectCalls += 1; throw new Error('HTTP 404'); },
|
|
_proxyCurlFetcher: (url, _proxyAuth, _headers) => {
|
|
curlCalls += 1;
|
|
assert.match(url, /open-meteo/);
|
|
return JSON.stringify(VALID_PAYLOAD);
|
|
},
|
|
});
|
|
|
|
assert.equal(connectCalls, 1, 'CONNECT path attempted exactly once');
|
|
assert.equal(curlCalls, 1, 'curl path attempted as second choice');
|
|
assert.equal(result.length, 2);
|
|
});
|
|
|
|
test('CONNECT succeeds: curl never invoked', async () => {
|
|
const { fetchOpenMeteoArchiveBatch } = await import(`../scripts/_open-meteo-archive.mjs?t=${Date.now()}`);
|
|
|
|
globalThis.fetch = async () => ({
|
|
ok: false, status: 429,
|
|
headers: { get: () => null },
|
|
json: async () => ({}),
|
|
});
|
|
|
|
let curlCalls = 0;
|
|
const result = await fetchOpenMeteoArchiveBatch(ZONES, {
|
|
...ARCHIVE_OPTS,
|
|
_connectProxyResolver: () => 'user:pass@gate.decodo.com:7000',
|
|
_curlProxyResolver: () => 'user:pass@us.decodo.com:10001',
|
|
_proxyFetcher: async () => ({
|
|
buffer: Buffer.from(JSON.stringify(VALID_PAYLOAD), 'utf8'),
|
|
contentType: 'application/json',
|
|
}),
|
|
_proxyCurlFetcher: () => { curlCalls += 1; throw new Error('should not be called'); },
|
|
});
|
|
|
|
assert.equal(curlCalls, 0, 'CONNECT succeeded — curl path must be skipped');
|
|
assert.equal(result.length, 2);
|
|
});
|
|
|
|
test('CONNECT fails AND curl fails: throws exhausted with both errors visible', async () => {
|
|
const { fetchOpenMeteoArchiveBatch } = await import(`../scripts/_open-meteo-archive.mjs?t=${Date.now()}`);
|
|
|
|
globalThis.fetch = async () => ({
|
|
ok: false, status: 429,
|
|
headers: { get: () => null },
|
|
json: async () => ({}),
|
|
});
|
|
|
|
await assert.rejects(
|
|
() => fetchOpenMeteoArchiveBatch(ZONES, {
|
|
...ARCHIVE_OPTS,
|
|
_connectProxyResolver: () => 'user:pass@gate.decodo.com:7000',
|
|
_curlProxyResolver: () => 'user:pass@us.decodo.com:10001',
|
|
_proxyFetcher: async () => { throw new Error('CONNECT 404'); },
|
|
_proxyCurlFetcher: () => { throw new Error('curl 502'); },
|
|
}),
|
|
(err) => {
|
|
assert.match(err.message, /Open-Meteo retries exhausted/);
|
|
assert.match(err.message, /HTTP 429/); // direct error in cause-chain
|
|
assert.match(err.message, /curl 502/); // last proxy error appended
|
|
return true;
|
|
},
|
|
);
|
|
});
|
|
|
|
test('curl returns malformed JSON: caught + warns, throws exhausted', async () => {
|
|
const { fetchOpenMeteoArchiveBatch } = await import(`../scripts/_open-meteo-archive.mjs?t=${Date.now()}`);
|
|
|
|
globalThis.fetch = async () => ({
|
|
ok: false, status: 429,
|
|
headers: { get: () => null },
|
|
json: async () => ({}),
|
|
});
|
|
|
|
await assert.rejects(
|
|
() => fetchOpenMeteoArchiveBatch(ZONES, {
|
|
...ARCHIVE_OPTS,
|
|
_connectProxyResolver: () => 'user:pass@gate.decodo.com:7000',
|
|
_curlProxyResolver: () => 'user:pass@us.decodo.com:10001',
|
|
_proxyFetcher: async () => { throw new Error('CONNECT failed'); },
|
|
_proxyCurlFetcher: () => 'not-valid-json',
|
|
}),
|
|
/Open-Meteo retries exhausted/,
|
|
);
|
|
});
|
|
|
|
test('proxy fallback returns wrong batch size: caught + warns, throws exhausted', async () => {
|
|
const { fetchOpenMeteoArchiveBatch } = await import(`../scripts/_open-meteo-archive.mjs?t=${Date.now()}`);
|
|
|
|
globalThis.fetch = async () => ({
|
|
ok: false, status: 429,
|
|
headers: { get: () => null },
|
|
json: async () => ({}),
|
|
});
|
|
|
|
await assert.rejects(
|
|
() => fetchOpenMeteoArchiveBatch(ZONES, {
|
|
...ARCHIVE_OPTS,
|
|
_connectProxyResolver: () => 'user:pass@proxy.test:8000',
|
|
_curlProxyResolver: () => 'user:pass@proxy-curl.test:8000',
|
|
_proxyFetcher: async () => ({
|
|
buffer: Buffer.from(JSON.stringify([VALID_PAYLOAD[0]]), 'utf8'), // 1 instead of 2
|
|
contentType: 'application/json',
|
|
}),
|
|
// CONNECT fails with mismatched batch size → cascades to curl;
|
|
// stub curl so it also fails so the test deterministically hits the
|
|
// final exhausted-throw branch.
|
|
_proxyCurlFetcher: () => JSON.stringify([VALID_PAYLOAD[0]]),
|
|
}),
|
|
/Open-Meteo retries exhausted/,
|
|
);
|
|
});
|