fix: parse SQLite DATE strings before forwarding to MariaDB mirror

TheLastCicada · TheLastCicada · commit 4aa768b2011e · 2026-04-17T12:02:22.000-07:00
The prior revision patched Sequelize's base DATE._stringify to force
a MariaDB-safe format, on the hypothesis that some steady-state write
paths bypassed the mysql.DATE subclass. Empirical tracing (all three
write paths - single INSERT, bulk INSERT, INSERT ... ON DUPLICATE KEY
UPDATE - instrumented against the query generator) shows that is NOT
the case: every MySQL write dispatches through mysql.DATE.stringify,
which already emits "YYYY-MM-DD HH:mm:ss".

The actual source of the residual "Incorrect datetime value" CI errors
was the reconnect-backfill path. `source.findAll({ raw: true })`
returns SQLite DATE columns as raw strings ("YYYY-MM-DD HH:mm:ss.SSS
+00:00") without running sqlite.DATE.parse. The strings were forwarded
verbatim into `mirror.bulkCreate`, which MariaDB strict mode rejected.

Fix: drop `raw: true` from backfill's findAll calls. Model instances
run sqlite.DATE.parse during construction, so DATE columns become Date
objects on dataValues; mysql.DATE then serialises them safely.

Use `.get({ plain: true, raw: true })` to extract the plain payload -
plain:true alone runs attribute-level `get()` accessors, which would
corrupt columns like ProjectV2.projectSector (stored as JSON, returned
as Array by the getter) when bulkCreate'd into the mirror's STRING/TEXT
column.

The sqlite PK-only orphan sweep keeps `raw: true` - its projection
excludes DATE and custom-getter columns, and a comment now documents
that invariant.

Revert the previous base-class `_stringify` monkey-patch and the
no-op `timezone: "+00:00"` constructor options (that value is already
Sequelize's default). Simplify the datetime regression test to pin
only the mysql subclass's output contract - the one Sequelize API we
actually depend on.
diff --git a/src/config/config.js b/src/config/config.js
@@ -1,55 +1,8 @@
-import Sequelize from 'sequelize';
-import moment from 'moment';
 import { getConfig, getConfigV2 } from '../utils/config-loader';
 import { getChiaRoot } from '../utils/chia-root.js';
 import { logger } from './logger.js';
 import { createHash } from 'crypto';
 
-// Force MariaDB-compatible datetime serialisation across all code paths.
-//
-// Sequelize 6's default BaseTypes.DATE._stringify formats dates as
-//   "YYYY-MM-DD HH:mm:ss.SSS Z"        (e.g. "2026-04-17 17:07:13.399 +00:00")
-// which recent MariaDB strict mode rejects:
-//   Incorrect datetime value: '2026-04-17 17:07:13.399 +00:00'
-//     for column `cadt_mirror_test`.`audit`.`createdAt` at row 1
-//
-// The mysql-specific subclass emits a safe format ("YYYY-MM-DD HH:mm:ss"),
-// but some runtime paths in Sequelize end up calling the BASE class's
-// _stringify even when the column belongs to a MySQL dialect. Observed
-// in CI: V2 mirror produced ~60 "Incorrect datetime value" errors per
-// live-api run even with `timezone: "+00:00"` set at the Sequelize
-// constructor level.
-//
-// Fix: patch BASE DATE._stringify to emit the MariaDB-safe format, and
-// explicitly restore the original "YYYY-MM-DD HH:mm:ss.SSS Z" format on
-// the SQLite subclass (whose `parse()` relies on the trailing offset
-// for round-trip). This leaves MySQL/MariaDB writes safe regardless of
-// which dispatch path Sequelize chooses, without breaking SQLite.
-const _origBaseStringify = Sequelize.DataTypes.DATE.prototype._stringify;
-Sequelize.DataTypes.DATE.prototype._stringify = function _stringify(
-  date,
-  options,
-) {
-  if (!moment.isMoment(date)) {
-    date = this._applyTimezone(date, options);
-  }
-  // Drop fractional seconds and the " Z" offset. MariaDB strict mode
-  // rejects " +00:00". CADT doesn't use sub-second resolution on any
-  // DATE column.
-  return date.format('YYYY-MM-DD HH:mm:ss');
-};
-// SQLite's DATE class only overrides `parse`, not `_stringify`, so the
-// base-class patch above would otherwise silently change the format of
-// SQLite writes. SQLite's `parse()` appends options.timezone when the
-// string lacks a "+"/"-" offset - if we stripped the offset on write,
-// parse() would concatenate the offset on read, producing a value
-// different from what was written. Shadow an own-property `_stringify`
-// on `sqlite.DATE.prototype` that points to the original base
-// serialiser, so SQLite retains the "YYYY-MM-DD HH:mm:ss.SSS Z" format.
-if (Sequelize.DataTypes.sqlite && Sequelize.DataTypes.sqlite.DATE) {
-  Sequelize.DataTypes.sqlite.DATE.prototype._stringify = _origBaseStringify;
-}
-
 const chiaRoot = getChiaRoot();
 const persistanceFolder = `${chiaRoot}/cadt/v1`;
 const v2PersistanceFolder = `${chiaRoot}/cadt/v2`;
@@ -108,18 +61,6 @@ export default {
     host: getConfig().MIRROR_DB.DB_HOST || '',
     dialect: 'mysql',
     logging: mirrorLogging,
-    // Tell Sequelize to serialise Date values as UTC without a trailing
-    // "+00:00" offset. Recent MariaDB strict mode rejects the
-    // "YYYY-MM-DD HH:MM:SS.SSS +00:00" format Sequelize emits by default,
-    // with errors like:
-    //   Incorrect datetime value: '2026-04-16 22:41:27.490 +00:00'
-    //     for column `cadt_mirror_test`.`audit`.`createdAt` at row 1
-    // Setting timezone at the Sequelize constructor level (as opposed to
-    // Model.init, where it is silently ignored) produces the MariaDB-safe
-    // "YYYY-MM-DD HH:MM:SS" format. Without this, every mirror write that
-    // touches a DATE/DATETIME column is silently dropped by the
-    // fire-and-forget safeMirrorDbHandler.
-    timezone: '+00:00',
   },
   // V2 Database Configurations
   v2Local: {
@@ -155,8 +96,5 @@ export default {
     host: getConfigV2().MIRROR_DB?.DB_HOST || '',
     dialect: 'mysql',
     logging: mirrorLogging,
-    // See comment on `mirror` above. Same MariaDB strict-mode datetime
-    // issue applies to V2.
-    timezone: '+00:00',
   },
 };
diff --git a/src/database/index.js b/src/database/index.js
@@ -332,6 +332,11 @@ const sweepMirrorOrphans = async (source, mirror, name) => {
   }
   const pkAttr = pkAttrs[0];
 
+  // `raw: true` is safe here - the projection is PK-only, so there are
+  // no DATE or custom-getter columns whose raw SQLite representation
+  // could leak into a bulk write (which is the hazard backfillMirror
+  // avoids). If a future change adds more projected attributes, revisit
+  // the raw:true pattern (see backfillMirror for the safe variant).
   const mirrorPkRows = await mirror.findAll({
     attributes: [pkAttr],
     raw: true,
@@ -475,13 +480,29 @@ export const backfillMirror = async () => {
           while (true) {
             const where =
               lastPk === null ? undefined : { [pk]: { [Sequelize.Op.gt]: lastPk } };
-            const rows = await source.findAll({
-              raw: true,
+            // NOTE: Do NOT pass `raw: true` to findAll. With raw:true
+            // Sequelize returns SQLite values as-stored (strings),
+            // including DATE columns as "YYYY-MM-DD HH:mm:ss.SSS +00:00".
+            // Forwarding those strings verbatim to MariaDB's bulkCreate
+            // triggers strict-mode "Incorrect datetime value" rejections.
+            // Building model instances runs sqlite.DATE.parse so DATE
+            // columns become real Date objects; mysql.DATE then serialises
+            // them in the MariaDB-safe "YYYY-MM-DD HH:mm:ss" format.
+            //
+            // `.get({ plain: true, raw: true })` extracts dataValues
+            // directly (bypassing any attribute-level `get()` accessors
+            // a source model may define). Dates remain Date objects on
+            // dataValues because the sqlite parser runs during instance
+            // construction, not at get() time.
+            const instances = await source.findAll({
               where,
               limit: BACKFILL_BATCH_SIZE,
               order: [[pk, 'ASC']],
             });
-            if (rows.length === 0) break;
+            if (instances.length === 0) break;
+            const rows = instances.map((r) =>
+              r.get({ plain: true, raw: true }),
+            );
             await mirror.bulkCreate(rows, { updateOnDuplicate: updateFields });
             synced += rows.length;
             lastPk = rows[rows.length - 1][pk];
diff --git a/src/database/v2/index.js b/src/database/v2/index.js
@@ -496,13 +496,31 @@ export const backfillMirrorV2 = async () => {
           while (true) {
             const where =
               lastPk === null ? undefined : { [pk]: { [Sequelize.Op.gt]: lastPk } };
-            const rows = await source.findAll({
-              raw: true,
+            // NOTE: Do NOT pass `raw: true` to findAll. With raw:true
+            // Sequelize returns SQLite values as-stored (strings),
+            // including DATE columns as "YYYY-MM-DD HH:mm:ss.SSS +00:00".
+            // Forwarding those strings verbatim to MariaDB's bulkCreate
+            // triggers strict-mode "Incorrect datetime value" rejections.
+            // Building model instances runs sqlite.DATE.parse so DATE
+            // columns become real Date objects; mysql.DATE then serialises
+            // them in the MariaDB-safe "YYYY-MM-DD HH:mm:ss" format.
+            //
+            // `.get({ plain: true, raw: true })` extracts dataValues
+            // directly (bypassing any attribute-level `get()` accessors -
+            // e.g. ProjectV2.projectSector returns a parsed Array via its
+            // getter, but the mirror column stores the raw JSON string).
+            // Dates are still Date objects on dataValues because the
+            // sqlite parser runs during instance construction, not at
+            // get() time.
+            const instances = await source.findAll({
               where,
               limit: BACKFILL_BATCH_SIZE,
               order: [[pk, 'ASC']],
             });
-            if (rows.length === 0) break;
+            if (instances.length === 0) break;
+            const rows = instances.map((r) =>
+              r.get({ plain: true, raw: true }),
+            );
             await mirror.bulkCreate(rows, { updateOnDuplicate: updateFields });
             synced += rows.length;
             lastPk = rows[rows.length - 1][pk];
@@ -581,6 +599,11 @@ const sweepMirrorOrphansV2 = async (source, mirror, name) => {
   }
   const pkAttr = pkAttrs[0];
 
+  // `raw: true` is safe here - the projection is PK-only, so there are
+  // no DATE or custom-getter columns whose raw SQLite representation
+  // could leak into a bulk write (which is the hazard backfillMirrorV2
+  // avoids). If a future change adds more projected attributes, revisit
+  // the raw:true pattern (see backfillMirrorV2 for the safe variant).
   const mirrorPkRows = await mirror.findAll({
     attributes: [pkAttr],
     raw: true,
diff --git a/tests/v2/integration/mirror-datetime-format.spec.js b/tests/v2/integration/mirror-datetime-format.spec.js
@@ -1,54 +1,45 @@
 import { expect } from 'chai';
 import Sequelize from 'sequelize';
 
-// Import config.js (via the barrel) to install the DATE._stringify patch.
-// The patch is applied once at module load; this file only exercises it.
-// eslint-disable-next-line no-unused-vars
-import _config from '../../../src/config/config.js';
-
 /**
  * Regression test for the Sequelize mirror datetime format.
  *
- * Recent MariaDB strict mode rejects Sequelize's default DATE serialization
- * of "YYYY-MM-DD HH:mm:ss.SSS Z" (e.g. "2026-04-17 17:07:13.399 +00:00")
- * with "Incorrect datetime value". `src/config/config.js` patches the base
- * DATE._stringify to emit "YYYY-MM-DD HH:mm:ss" for MySQL/MariaDB while
- * retaining the original format for SQLite (whose parse() depends on the
- * trailing offset for round-trip).
+ * Recent MariaDB strict mode rejects Sequelize's base DATE serialization
+ * ("YYYY-MM-DD HH:mm:ss.SSS Z", e.g. "2026-04-17 17:07:13.399 +00:00")
+ * with "Incorrect datetime value".
+ *
+ * Normal mirror writes are safe because Sequelize dispatches to the
+ * dialect-specific mysql.DATE class, which emits "YYYY-MM-DD HH:mm:ss"
+ * (no offset, no fractional seconds). Empirically verified: single
+ * INSERT, bulk INSERT, and INSERT ... ON DUPLICATE KEY UPDATE all route
+ * through mysql.DATE._stringify and never touch the base-class method.
+ *
+ * This test pins that contract so a future Sequelize upgrade that changes
+ * the mysql subclass serialiser (e.g. to emit an ISO "T" separator, or
+ * to re-introduce a trailing offset) is caught here rather than silently
+ * in a live-api run.
  *
- * If this test fails, CADT's MySQL mirror writes will silently drop every
- * insert that touches a DATE/DATETIME column in strict-mode MariaDB.
+ * Separately, backfill's findAll({ raw: true }) path would have returned
+ * SQLite DATE values as offset-bearing strings and forwarded them to
+ * MariaDB verbatim - that class of bug is prevented by the
+ * `.get({ plain: true, raw: true })` call in backfillMirror[V2], which
+ * has its own coverage in the V1/V2 reconnect specs.
  */
-describe('Mirror datetime serialization', function () {
+describe('Mirror datetime serialization (mysql subclass contract)', function () {
   const sampleDate = new Date('2026-04-17T17:07:13.399Z');
 
-  it('BASE DATE._stringify must emit the MariaDB-safe format (no offset, no fractional seconds)', function () {
-    const out = Sequelize.DataTypes.DATE.prototype.stringify(sampleDate, {
+  it('mysql DATE._stringify must emit "YYYY-MM-DD HH:mm:ss" (no offset, no fractional seconds)', function () {
+    const out = Sequelize.DataTypes.mysql.DATE.prototype.stringify(sampleDate, {
       timezone: '+00:00',
     });
     expect(out).to.equal('2026-04-17 17:07:13');
-    expect(out).to.not.include('+');
-    expect(out).to.not.include('Z');
-    expect(out).to.not.include('.');
-  });
-
-  it('SQLite DATE._stringify must retain the original format (with trailing offset) for round-trip', function () {
-    const out = Sequelize.DataTypes.sqlite.DATE.prototype.stringify(
-      sampleDate,
-      { timezone: '+00:00' },
-    );
-    // SQLite's own parse() needs this offset suffix to reconstruct a Date
-    expect(out).to.include('+00:00');
-    const parsed = Sequelize.DataTypes.sqlite.DATE.parse(out, {
-      timezone: '+00:00',
-    });
-    expect(parsed.getTime()).to.equal(sampleDate.getTime());
   });
 
-  it('mysql DATE._stringify must continue to emit the MariaDB-safe format', function () {
+  it('mysql DATE._stringify must honour the constructor-level timezone option', function () {
+    // Non-UTC timezone must shift the formatted wall-clock time.
     const out = Sequelize.DataTypes.mysql.DATE.prototype.stringify(sampleDate, {
-      timezone: '+00:00',
+      timezone: '+05:30',
     });
-    expect(out).to.equal('2026-04-17 17:07:13');
+    expect(out).to.equal('2026-04-17 22:37:13');
   });
 });
