1 files changed, 71 insertions, 6 deletions
diff --git a/src/sync/naughty_list.rs b/src/sync/naughty_list.rs
index 60ab949..0abb986 100644
--- a/src/sync/naughty_list.rs
+++ b/src/sync/naughty_list.rs
@@ -232,12 +232,12 @@ impl NaughtyListTracker {
            }
        }
-        // Protocol errors
+        // Protocol errors - specifically WebSocket/Nostr protocol violations
-        if error_lower.contains("websocket")
+        // Note: We check for "websocket" specifically, NOT generic "protocol" keyword
-            || error_lower.contains("protocol")
+        // because git errors often contain "protocol error" (e.g., "fatal: protocol error: bad line length")
-            || error_lower.contains("invalid frame")
+        // which are transient network issues, not persistent infrastructure problems.
-        {
+        if error_lower.contains("websocket") || error_lower.contains("invalid frame") {
-            // Exclude connection errors
+            // Exclude connection errors (transient)
            if !error_lower.contains("connection")
                && !error_lower.contains("timeout")
                && !error_lower.contains("refused")
@@ -622,3 +622,68 @@ mod tests {
        assert_eq!(NaughtyCategory::ProtocolError.as_str(), "protocol_error");
    }
 }
+#[cfg(test)]
+mod production_tests {
+    use super::*;
+    /// Production case from relay.ngit.dev - remote warning should not be classified
+    #[test]
+    fn test_classify_production_relay_ngit_dev_warning() {
+        let error =
+            "remote: warning: unable to access '/root/.config/git/attributes': Permission denied";
+        assert_eq!(NaughtyListTracker::classify_error(error), None);
+    }
+    /// Git protocol errors are transient, not persistent infrastructure issues
+    #[test]
+    fn test_git_protocol_errors_not_naughty() {
+        // These are common git protocol errors that should NOT be classified as naughty
+        let git_protocol_errors = [
+            "fatal: protocol error: bad line length character: remo",
+            "fatal: protocol error: expected old/new/ref, got 'shallow",
+            "fatal: git upload-pack: protocol error",
+            "error: protocol error: bad pack header",
+            "fatal: protocol error: bad band #3",
+        ];
+        for error in git_protocol_errors {
+            assert_eq!(
+                NaughtyListTracker::classify_error(error),
+                None,
+                "Git protocol error should not be classified as naughty: {}",
+                error
+            );
+        }
+    }
+    /// Remote warning followed by git protocol error - both should be filtered/ignored
+    #[test]
+    fn test_warning_with_git_protocol_error() {
+        let error = "remote: warning: unable to access '/root/.config/git/attributes': Permission denied\nfatal: protocol error: bad line length character: remo";
+        assert_eq!(
+            NaughtyListTracker::classify_error(error),
+            None,
+            "Warning + git protocol error should not be classified as naughty"
+        );
+    }
+    /// WebSocket protocol errors ARE naughty (persistent infrastructure issues)
+    #[test]
+    fn test_websocket_errors_still_naughty() {
+        let websocket_errors = [
+            "websocket protocol error",
+            "websocket handshake failed",
+            "invalid frame received",
+        ];
+        for error in websocket_errors {
+            assert_eq!(
+                NaughtyListTracker::classify_error(error),
+                Some(NaughtyCategory::ProtocolError),
+                "WebSocket error should be classified as protocol_error: {}",
+                error
+            );
+        }
+    }
+}

diff --git a/src/sync/naughty_list.rs b/src/sync/naughty_list.rs index 60ab949..0abb986 100644 --- a/src/sync/naughty_list.rs +++ b/src/sync/naughty_list.rs
@@ -232,12 +232,12 @@ impl NaughtyListTracker {
232	}	232	}
233	}	233	}
234		234
235	// Protocol errors	235	// Protocol errors - specifically WebSocket/Nostr protocol violations
236	if error_lower.contains("websocket")	236	// Note: We check for "websocket" specifically, NOT generic "protocol" keyword
237	\|\| error_lower.contains("protocol")	237	// because git errors often contain "protocol error" (e.g., "fatal: protocol error: bad line length")
238	\|\| error_lower.contains("invalid frame")	238	// which are transient network issues, not persistent infrastructure problems.
239	{	239	if error_lower.contains("websocket") \|\| error_lower.contains("invalid frame") {
240	// Exclude connection errors	240	// Exclude connection errors (transient)
241	if !error_lower.contains("connection")	241	if !error_lower.contains("connection")
242	&& !error_lower.contains("timeout")	242	&& !error_lower.contains("timeout")
243	&& !error_lower.contains("refused")	243	&& !error_lower.contains("refused")
@@ -622,3 +622,68 @@ mod tests {
622	assert_eq!(NaughtyCategory::ProtocolError.as_str(), "protocol_error");	622	assert_eq!(NaughtyCategory::ProtocolError.as_str(), "protocol_error");
623	}	623	}
624	}	624	}
		625
		626	#[cfg(test)]
		627	mod production_tests {
		628	use super::*;
		629
		630	/// Production case from relay.ngit.dev - remote warning should not be classified
		631	#[test]
		632	fn test_classify_production_relay_ngit_dev_warning() {
		633	let error =
		634	"remote: warning: unable to access '/root/.config/git/attributes': Permission denied";
		635	assert_eq!(NaughtyListTracker::classify_error(error), None);
		636	}
		637
		638	/// Git protocol errors are transient, not persistent infrastructure issues
		639	#[test]
		640	fn test_git_protocol_errors_not_naughty() {
		641	// These are common git protocol errors that should NOT be classified as naughty
		642	let git_protocol_errors = [
		643	"fatal: protocol error: bad line length character: remo",
		644	"fatal: protocol error: expected old/new/ref, got 'shallow",
		645	"fatal: git upload-pack: protocol error",
		646	"error: protocol error: bad pack header",
		647	"fatal: protocol error: bad band #3",
		648	];
		649
		650	for error in git_protocol_errors {
		651	assert_eq!(
		652	NaughtyListTracker::classify_error(error),
		653	None,
		654	"Git protocol error should not be classified as naughty: {}",
		655	error
		656	);
		657	}
		658	}
		659
		660	/// Remote warning followed by git protocol error - both should be filtered/ignored
		661	#[test]
		662	fn test_warning_with_git_protocol_error() {
		663	let error = "remote: warning: unable to access '/root/.config/git/attributes': Permission denied\nfatal: protocol error: bad line length character: remo";
		664	assert_eq!(
		665	NaughtyListTracker::classify_error(error),
		666	None,
		667	"Warning + git protocol error should not be classified as naughty"
		668	);
		669	}
		670
		671	/// WebSocket protocol errors ARE naughty (persistent infrastructure issues)
		672	#[test]
		673	fn test_websocket_errors_still_naughty() {
		674	let websocket_errors = [
		675	"websocket protocol error",
		676	"websocket handshake failed",
		677	"invalid frame received",
		678	];
		679
		680	for error in websocket_errors {
		681	assert_eq!(
		682	NaughtyListTracker::classify_error(error),
		683	Some(NaughtyCategory::ProtocolError),
		684	"WebSocket error should be classified as protocol_error: {}",
		685	error
		686	);
		687	}
		688	}
		689	}