Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 99.77%. Comparing base (4ffba87) to head (8fe58dd).

@@           Coverage Diff           @@
##           master    #1762   +/-   ##
=======================================
  Coverage   99.77%   99.77%           
=======================================
  Files          33       33           
  Lines        3509     3511    +2     
  Branches      493      494    +1     
=======================================
+ Hits         3501     3503    +2     
  Misses          5        5           
  Partials        3        3           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

Merging this PR will not alter performance

✅ 14 untouched benchmarks

_{Comparing bluetoothbot:koan/fix-issue-1328 (8fe58dd) with master (4ffba87)}

@bluetoothbot rr

@bluetoothbot rr

PR Review — fix: skip NSEC records in ServiceBrowser to suppress spurious updates

Tight, well-targeted fix: skip NSEC in ServiceBrowser.async_update_records so non-existence assertions (RFC 6762 §6.1) don't masquerade as service updates. The cdef cython.uint _TYPE_NSEC declaration in browser.pxd correctly preserves the C-int hot-path compare, matching the existing _TYPE_PTR pattern. The switch from is to == resolves the prior Copilot comment cleanly with no perf cost under Cython. The regression test now uses Event.wait() and try/finally, addressing @bdraco's earlier feedback on the previous iteration. Only nits: the IPV6_LOOPBACK_FIND_TIMEOUT PyPy bump in tests/init.py is unrelated scope creep that would be cleaner as its own PR, and the test could note why the bundled insert doesn't race against an Updated callback. None of these block merge.

🟢 Suggestions

IPV6_LOOPBACK_FIND_TIMEOUT = 1.0 if _IS_PYPY else 0.5

        # NSEC inject runs synchronously through the event loop; once
        # _inject_response returns, async_update_records has already
        # decided not to enqueue a callback for the NSEC record.
        _inject_response(
            zc,
            mock_incoming_msg(
                [
                    r.DNSNsec(
                        registration_name,
                        const._TYPE_NSEC,
                        const._CLASS_IN | const._CLASS_UNIQUE,
                        const._DNS_OTHER_TTL,
                        registration_name,
                        [const._TYPE_AAAA],
                    ),
                ]
            ),
        )

        assert callbacks == [("add", type_, registration_name)]

Checklist

• Fix matches issue description (NSEC no longer fires Updated)
• Cython .pxd updated in same commit as .py constant addition
• Hot-path comparison stays a C int compare under Cython
• Test addresses previous reviewer feedback (Event + try/finally)
• Docstring and comment style match CLAUDE.md (terse, RFC-cited)
• PR scope is single-purpose — suggestion ＃1
• Free-threaded (3.14t) safety: no new module-level mutable state
• No Co-Authored-By agent trailer in commits

Summary

Tight, well-targeted fix: skip NSEC in ServiceBrowser.async_update_records so non-existence assertions (RFC 6762 §6.1) don't masquerade as service updates. The cdef cython.uint _TYPE_NSEC declaration in browser.pxd correctly preserves the C-int hot-path compare, matching the existing _TYPE_PTR pattern. The switch from is to == resolves the prior Copilot comment cleanly with no perf cost under Cython. The regression test now uses Event.wait() and try/finally, addressing @bdraco's earlier feedback on the previous iteration. Only nits: the IPV6_LOOPBACK_FIND_TIMEOUT PyPy bump in tests/init.py is unrelated scope creep that would be cleaner as its own PR, and the test could note why the bundled insert doesn't race against an Updated callback. None of these block merge.

Automated review by Kōan89bf71b
2319c03
47f97d2
f47827a

Rebase with requested adjustments

Branch koan/fix-issue-1328 was rebased onto master and review feedback was applied.

Changes applied

• applied.

• Summary

• Replaced fixed time.sleep(0.2) delays with deterministic sync in test_service_browser_nsec_record_does_not_trigger_update (per @bdraco's remove the fixed time.sleep and use proper sync and Copilot's flakiness comments at lines 1126/1143):
• Added service_added = Event() set inside add_service.
• First time.sleep → assert service_added.wait(timeout=5).
• Second time.sleep removed: _inject_response synchronously drives async_update_records on the loop, and NSEC is skipped before any callback is enqueued, so no further wait is needed. A short comment notes the invariant.
• Wrapped browser/zc lifecycle in try/finally (per Copilot comment at line 1147) so browser.cancel() and zc.close() always run even when an assertion fails.
• No change to browser.py: the existing diff already converted record_type is _TYPE_PTR to record_type == _TYPE_PTR, so Copilot's is/== consistency concern is already satisfied in this PR.

Stats

3 files changed, 75 insertions(+), 1 deletion(-)

CI status

CI will be checked asynchronously.

Automated by Kōan

@bluetoothbot rr

Rebase with requested adjustments

Branch koan/fix-issue-1328 was rebased onto master and review feedback was applied.

Stats

4 files changed, 76 insertions(+), 2 deletions(-)

CI status

CI will be checked asynchronously.

Automated by Kōan