Skip to content

πŸ› Fixed flaky unit tests caused by DNS stubs lost after sinon.restore() #27168

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
ErisDS merged 3 commits into from
Apr 8, 2026
Merged

πŸ› Fixed flaky unit tests caused by DNS stubs lost after sinon.restore() #27168

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
113c166
Fixed flaky unit tests caused by DNS stubs lost after sinon.restore()
ErisDS Apr 6, 2026
04894d3
Hardened DNS re-stub against afterEach hook failures
ErisDS Apr 8, 2026
8a9adb9
Used node: protocol for dns import to satisfy SonarCloud
ErisDS Apr 8, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 0 additions & 6 deletions ghost/core/test/unit/server/lib/request-external.test.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -371,12 +371,6 @@ describe('External Request', function () {
});

describe('general behavior', function () {
beforeEach(function () {
sinon.stub(dnsPromises, 'lookup').callsFake(function () {
return Promise.resolve({address: '123.123.123.123'});
});
});

afterEach(async function () {
await configUtils.restore();
sinon.restore();
Expand Down
3 changes: 0 additions & 3 deletions ghost/core/test/unit/server/services/mail/ghost-mailer.test.js
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,3 @@
const dns = require('dns');
const sinon = require('sinon');
const mail = require('../../../../../core/server/services/mail');
const settingsCache = require('../../../../../core/shared/settings-cache');
Expand Down Expand Up @@ -123,8 +122,6 @@ describe('Mail: Ghostmailer', function () {
configUtils.set({mail: {}});

mailer = new mail.GhostMailer();

sinon.stub(dns, 'resolveMx').yields(null, []);
});

afterEach(function () {
Expand Down
6 changes: 1 addition & 5 deletions ghost/core/test/unit/server/services/mentions/mention-discovery-service.test.js
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
const sinon = require('sinon');
const dnsPromises = require('dns').promises;

const assert = require('node:assert/strict');
const nock = require('nock');

Expand All @@ -13,10 +13,6 @@ describe('MentionDiscoveryService', function () {

beforeEach(function () {
nock.disableNetConnect();
// externalRequest does dns lookup; stub to make sure we don't fail with fake domain names
sinon.stub(dnsPromises, 'lookup').callsFake(function () {
return Promise.resolve({address: '123.123.123.123'});
});
});

afterEach(function () {
Expand Down
26 changes: 17 additions & 9 deletions ghost/core/test/unit/server/services/mentions/mention-sending-service.test.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,7 @@ const nock = require('nock');
const externalRequest = require('../../../../../core/server/lib/request-external.js');
const sinon = require('sinon');
const logging = require('@tryghost/logging');
const dnsPromises = require('node:dns').promises;
const {createModel} = require('./utils/index.js');

// mock up job service
Expand Down Expand Up @@ -514,15 +515,22 @@ describe('MentionSendingService', function () {
});

it('Does not send to private IP behind DNS', async function () {
this.retries(1);
// Test that we don't make a request when a domain resolves to a private IP
// domaincontrol.com -> 127.0.0.1
const service = new MentionSendingService({externalRequest});
await assert.rejects(service.send({
source: new URL('https://example.com/source'),
target: new URL('https://target.com/target'),
endpoint: new URL('http://domaincontrol.com/webmentions')
}), /non-permitted private IP/);
// Stub DNS to return a private IP for the target domain
dnsPromises.lookup.restore?.();
const dnsStub = sinon.stub(dnsPromises, 'lookup').callsFake(() => {
return Promise.resolve({address: '127.0.0.1', family: 4});
});

try {
const service = new MentionSendingService({externalRequest});
await assert.rejects(service.send({
source: new URL('https://example.com/source'),
target: new URL('https://target.com/target'),
endpoint: new URL('http://domaincontrol.com/webmentions')
}), /non-permitted private IP/);
} finally {
dnsStub.restore();
}
});
});
});
15 changes: 13 additions & 2 deletions ghost/core/test/utils/overrides.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -103,8 +103,19 @@ mochaHooks.afterEach = async function () {

clearTimeout(timeout);

if (originalAfterEach) {
await originalAfterEach();
try {
if (originalAfterEach) {
await originalAfterEach();
}
} finally {
// Re-apply network disabling after each test. Individual test afterEach hooks
// often call sinon.restore() which removes the DNS stubs set up by
// disableNetwork() in beforeAll. Without re-applying, subsequent tests make
// real DNS lookups on nocked domains which can be slow on CI, causing flaky
// timeouts (e.g. ExternalMediaInliner CDN storage adapter tests).
// Wrapped in finally so DNS stubs are restored even if a previous afterEach
// hook throws.
mockManager.disableNetwork();
}
};

Expand Down
Loading