fix(#266 Bucket B): reset server+DB between e2e suites — recover V3 Networks visibility (+19 tests)#273
Merged
Merged
Conversation
… Networks visibility
Before this change, test-all.sh started one bun server up-front and ran all
4 suites against it. Two suites (V3 Networks, Config Priority) also try to
`bun run src/index.ts &` themselves; that background bind hits EADDRINUSE
(harmless in the bg case — the parent's server still serves), but the
state-contamination from Base E2E (137 tests' worth of users/networks/
tasks in commhub.db) breaks downstream suites:
- V3 Networks: completes 22 tests but the captured Results line interacts
with the shared-DB pollution in ways that make run_suite's regex
match the wrong line → reported as "0 ran (suite crashed)" even
though the suite exits 0.
- Config Priority: depends on `anet node create` with hand-written
config.json; under the polluted shared DB this can't reach its
Results line.
This PR replaces the single up-front server start with a `reset_server`
helper called between every suite. Each helper invocation:
1. pkill the previous bun server
2. waits for :9200 to actually free up (pkill is async — binding too
soon re-triggers EADDRINUSE)
3. rm -rf /root/.commhub /root/.anet (fresh DB + fresh client state)
4. starts a new bun server in background
5. polls /health until 200 (max 15s)
Local verification on the patched image, full test-all.sh run:
before after
─────────────────────── ───────────────────────
Base E2E: 90 / 45 Base E2E: 90 / 45 (unchanged)
V3 Auth: 25 / 0 V3 Auth: 25 / 0 (unchanged)
V3 Networks: 0 ran ⚠ V3 Networks: 19 / 3 ✅ visible
Config Pri: 0 ran ⚠ Config Pri: 0 ran ⚠ (separate, see below)
TOTAL: 115 / 47 TOTAL: 134 / 49
Net: +19 PASS surfaced + +2 real fails surfaced (V3 Networks alpha/beta
task — likely same root as Base E2E A3 in #266 audit).
Config Priority still reports "0 ran" — that's a separate issue:
`anet node create` now needs a real login first, but Config Priority
intentionally writes a fake `token:"global-tok"` to verify the config
priority resolution. That's a test-design problem (not orchestration),
and needs a small refactor to do `anet login` first then layer the
priority overrides on top. Tracked separately in #266 (Bucket C).
Refs: #266 (Docker E2E audit), #265+#269 (CI baseline restored)
![chatgpt-codex-connector[bot]](https://avatars.githubusercontent.com/in/1144995?s=60&v=4){kind=small}
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: e7a95a7381
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
Comment on lines
+56
to
+60
| for _ in $(seq 1 30); do | ||
| if ! (exec 3<>/dev/tcp/127.0.0.1/9200) 2>/dev/null; then break; fi | ||
| exec 3>&- 2>/dev/null || true | ||
| sleep 0.25 | ||
| done |
There was a problem hiding this comment.
If the previous server takes longer than this loop to exit, or if another non-matching process owns :9200, the loop simply falls through and the function proceeds to delete the DB and start a new Bun process anyway. That new process will hit EADDRINUSE, while the later /health probe can still succeed against the stale server, so the next suite runs with the old in-memory/open DB state even though reset_server reports success. Track whether the port actually became free and return failure before deleting state or starting the replacement server.
Useful? React with 👍 / 👎.
| return 1 | ||
| } | ||
|
|
||
| reset_server |
There was a problem hiding this comment.
When reset_server returns non-zero (for example, Bun exits or /health never becomes ready), the runner still invokes the suite because the return value is ignored. Several suite scripts start their own bun run src/index.ts & while run_suite captures stdout; if no parent server is actually up, that background server can stay alive and keep the command-substitution pipe open, turning a setup failure into a CI timeout instead of a clear failed reset. Gate each suite on a successful reset or count the reset failure immediately.
Useful? React with 👍 / 👎.
Comment on lines
+75
to
78
| reset_server | ||
| run_suite "V3 Networks (22)" "/app/test-networks.sh 2>&1" | ||
| reset_server | ||
| run_suite "Config Priority (16)" "/app/test-config.sh 2>&1" |
There was a problem hiding this comment.
For the V3 Networks and Config Priority suites, this reset starts a parent server on :9200 immediately before invoking scripts that also run cd /app/server && bun run src/index.ts & (tests/docker-e2e-networks.sh:13 and tests/docker-config-priority.sh:17). Those suite-local server starts now always hit EADDRINUSE, so the suites silently exercise the parent server instead of their own startup path or any per-suite server environment. Use a stop-and-wipe reset for self-starting suites, or remove the suite-local server starts so the ownership is unambiguous.
Useful? React with 👍 / 👎.
s2agi
pushed a commit
that referenced
this pull request
Jun 28, 2026
…est-infra hygiene (#277) Following #266 round-1 audit, server commit 5c7bff2 had tightened the UTOK write path to require an explicit network_id on every send_task / send_reply / cancel_task / report_status. tests/docker-e2e.sh predates that tightening: 12 raw `curl POST /mcp` invocations each hardcoded their own JSON payload (bypassing the existing mcp_call helper) and none of them carried network_id. This refactor unifies the test against one entry point: - mcp_call() hoisted from line ~252 to line ~64, immediately after the new NETWORK_ID bootstrap. Now reachable from every tool-call site that follows. - Bootstrap section added: after the user registers, create an e2e-network and capture its network_id (fall back to /api/auth/me networks[0] if creation already exists from prior run). - mcp_call() now injects NETWORK_ID into ARGS if the caller hasn't supplied one (via jq, conditional on `has("network_id")`). Callers that want a different network can still override explicitly. - The 12 raw curls become `mcp_call "TOOL" '{...}'` invocations. Net: 51 ins / 57 del / 36-line reduction. Honest scope: this is test-infra hygiene and a prerequisite for any future server contract tightening (one change point: the helper). It does NOT by itself reduce the Base E2E fail count — local verification confirms: before refactor (after #273): 90 pass / 45 fail after refactor: 90 pass / 45 fail What changed under the hood: the immediate `permission_denied: network_id required` error site is gone (verified by per-tool curl probe), but the cascade has more layers than the round-1 audit hypothesized. Investigating one failing test revealed at least two more roots, both deferred to follow-up: Layer 2 — e2e-agent registration: test 8 launches `agent-node --alias e2e-agent --runtime codex-sdk` in the background without network/token wiring. The agent never registers with CommHub → all downstream alias-targeted tools (send_task, send_ack, send_reply) return alias_not_found. Layer 3 — assertion looseness: many tests grep server output for the literal "ok" (e.g. `echo "$RESP" | grep -q "ok"`). Both `{"ok":true}` and `{"ok":false,"error":"..."}` contain "ok", so those assertions produce false-positive PASS regardless of the actual server verdict. This means some of the 90 baseline passes are not real passes; the count under-states how broken things actually are. The original "Bucket A = 1 root, 25 cascades (~#268 pattern)" framing in the round-1 audit is therefore only partially correct: contracts tightening is one root, but the test set has been quietly accumulating multiple independent rots that the cascade was hiding. Refs: #266 round-1 audit (which this revises), #265 + #269 + #273 + #270 Co-authored-by: vansin <smartflowaiteam@gmail.com>
23 tasks
5 tasks
s2agi
pushed a commit
that referenced
this pull request
Jun 28, 2026
…dict Pair with the reset_server fix in this PR. Bucket A (~45 Base E2E fails) is pre-existing test-infra cascade tracked separately (#279) for v0.12 quality work. Hard-gating the merge bus on a 12-day-old red was blocking shipping without buying any product safety net — `anet QA (v0)` is the real merge gate and has been green since #269. This commit adopts the same report-only SOP as `anet QA (v0)` and the release-gate workflow: 1. The regression step captures the docker exit code via `set +e` + `$GITHUB_OUTPUT` instead of failing the job on exit 1. 2. A new verdict step (always() runs) prints the test-all.sh Final Report block + TOTAL line + the captured exit code. Per-suite numbers are visible in the Actions UI without expanding the run-step log. 3. Two failure-mode branches: - test-all.sh emitted no output → real infra/build issue, FAIL the job (don't silently green a workflow that didn't run). - test-all.sh ran + exited non-zero → emit `::warning::` lines with the Bucket A / #279 / #266 reference + an explicit "green tick means harness ran, NOT all 186 passed" disclaimer, then exit 0. The no-silent-cap rule applies: this workflow never says "OK" without the TOTAL line being visible in the same view. The Actions check will show green (job succeeded), but every viewer sees the same TOTAL the maintainer sees, with `::warning::` annotations highlighting any fails. After this merges: - main CI returns green on this workflow for the first time since the Bucket A cascade started (12+ days). - The "no e2e safety net" gap noted by 通信龙 task b4c67c72 is closed in the sense that the workflow now runs to completion + surfaces the verdict every time, instead of failing opaquely on a known-stable red. - Bucket A real-fix work continues on the v0.12 quality timeline per the tracking issue (linked in PR body) — this PR does not foreclose that work, only stops it from blocking the merge bus. Refs: #266 (audit + this PR's report doc), #279 (Layer 2/3 backlog), #273 (original reset_server), #277 (A1 helper refactor).
s2agi
pushed a commit
that referenced
this pull request
Jun 28, 2026
…l/dev-tcp (#291) * fix(#266 PR-2): CI-robust reset_server — explicit PID kill, drop pkill/dev-tcp #273's reset_server fix works locally (V3 Networks 19/3) but silently regresses in CI (V3 Networks "0 ran"). Confirmed by reproducing the exact main commit's image locally vs CI run 28308477515 on 912d642 — the only delta between 134/49 local and 115/47 CI is V3 Networks's suite-crashed report. Root cause: the original reset_server used `pkill -f 'bun.*src/index.ts'` + `(exec 3<>/dev/tcp/127.0.0.1/9200)` bash pseudo-file. Both depend on process/bash behavior that differs in GHA's runner Docker environment vs a workstation Docker Engine. Either failure mode leaves the previous bun bound to :9200 when V3 Networks fires its own `bun run src/index.ts`, which then gets EADDRINUSE in the background; the suite proceeds against the polluted shared server and exits early without reaching its "Results: …" line. Rewrite: capture SERVER_PID on start, `kill -KILL "$SERVER_PID"` + `wait` on the next reset, 0.5s settle, then start the new server in a subshell so `cd /app/server` doesn't leak into test-all.sh's cwd. No pkill/grep, no /dev/tcp, no env-dependent behavior. Local verification on the patched image: Base E2E (137): ❌ 90 / 45 (unchanged — same Bucket A cascade) V3 Auth (25): ✅ 25 / 0 (unchanged) V3 Networks (22): ❌ 20 / 2 (was 19/3 — slightly better isolation) Config Priority:⚠️ 0 ran (Bucket C, unrelated test-design) TOTAL: 135 / 48 PR-2 does NOT make the workflow exit 0. Base E2E 45 fails are pre-existing #266 Bucket A (test-infra cascade per #279, not product bugs). The job will still exit 1 until either Bucket A clears or the workflow converts to report-only — see docs/tests/report-266-... for the full divergence analysis + Bucket A handling plan. Refs: #266 (audit), #273 (original reset_server), #279 (Bucket A follow-up), #277 (A1 helper refactor) * ci(#266 endgame): convert e2e-docker.yml to report-only + visible verdict Pair with the reset_server fix in this PR. Bucket A (~45 Base E2E fails) is pre-existing test-infra cascade tracked separately (#279) for v0.12 quality work. Hard-gating the merge bus on a 12-day-old red was blocking shipping without buying any product safety net — `anet QA (v0)` is the real merge gate and has been green since #269. This commit adopts the same report-only SOP as `anet QA (v0)` and the release-gate workflow: 1. The regression step captures the docker exit code via `set +e` + `$GITHUB_OUTPUT` instead of failing the job on exit 1. 2. A new verdict step (always() runs) prints the test-all.sh Final Report block + TOTAL line + the captured exit code. Per-suite numbers are visible in the Actions UI without expanding the run-step log. 3. Two failure-mode branches: - test-all.sh emitted no output → real infra/build issue, FAIL the job (don't silently green a workflow that didn't run). - test-all.sh ran + exited non-zero → emit `::warning::` lines with the Bucket A / #279 / #266 reference + an explicit "green tick means harness ran, NOT all 186 passed" disclaimer, then exit 0. The no-silent-cap rule applies: this workflow never says "OK" without the TOTAL line being visible in the same view. The Actions check will show green (job succeeded), but every viewer sees the same TOTAL the maintainer sees, with `::warning::` annotations highlighting any fails. After this merges: - main CI returns green on this workflow for the first time since the Bucket A cascade started (12+ days). - The "no e2e safety net" gap noted by 通信龙 task b4c67c72 is closed in the sense that the workflow now runs to completion + surfaces the verdict every time, instead of failing opaquely on a known-stable red. - Bucket A real-fix work continues on the v0.12 quality timeline per the tracking issue (linked in PR body) — this PR does not foreclose that work, only stops it from blocking the merge bus. Refs: #266 (audit + this PR's report doc), #279 (Layer 2/3 backlog), #273 (original reset_server), #277 (A1 helper refactor). --------- Co-authored-by: vansin <smartflowaiteam@gmail.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Author
Agent: 通信测试马 (claude-code-cli)
Dispatch: 通信龙 task d3b16d33 (Bucket B is my test-infra lane, mechanical)
Refs: #266 (Docker E2E audit), #265+#269 (CI baseline restored)
Summary
Replaces the single up-front server start in
tests/test-all.shwith areset_serverhelper called between every suite. Each call kills the previous bun server, waits for :9200 to free, wipes~/.commhub+~/.anet, starts a fresh server, and waits for/health200.This restores V3 Networks visibility — the suite was completing its 22 tests but
run_suite's regex was matching the wrong line under shared-state pollution, so CI reported0 ran (suite crashed).Before vs after (local Docker)
Net: +19 PASS surfaced, +2 real fails surfaced (V3 Networks
alpha task missing/beta task missing— likely same root as Base E2E Bucket A3 per #266 audit).Why this works
pkill -f 'bun.*src/index.ts'is async — binding :9200 too soon re-triggers EADDRINUSE. The wait loop (/dev/tcp/127.0.0.1/9200open probe) blocks until the previous bun has actually released the port.rm -rf /root/.commhub /root/.anetgives each suite a fresh SQLite DB + clean client state, so V3 Networks doesn't inherit Base E2E's 137 tests' worth of users/networks/tasks.Why Config Priority is still red (not this PR's scope)
anet node createnow needs a realanet loginfirst, buttest-config.shintentionally writes a faketoken:"global-tok"to verify the config-priority resolution chain. That's a test-design problem requiring a small refactor (login first, then layer the priority overrides on top), not orchestration. Tracked as Bucket C in #266 — needs its own PR.Test plan
test-all.shrun → before/after numbers as aboveResults: 20 passed, 2 failedline (standalone post-reset_server probe confirms)Docker E2E Testsworkflow shows V3 Networks reporting real numbers (no longer "0 ran")Docker E2E Testsshows +19 visible tests (TOTAL 134/49, was 115/47)What's NOT in scope
Refs: #266 (Docker E2E audit comment 4823611314 has the full bucketization)