Fixed the problem with socket, which might leak when tunnel proxy connection couldn't be establish

[cdeler]

Fixes encode/httpx#1360

I extracted a tunnel proxy connection establishing into the separated method, and wrapped it by try-except statement, closing the proxy_connection if it's necessary.

Also I added the unit test and a test fixture from encode/httpx#1360 comments

[cdeler]

In the test case I had to filter out any warnings from encode/httpx#825

The couldn't appear in this test case (as it's run under trio), so I felt free to do that

[tomchristie]

Great stuff! So...

I think the first thing would be to try to get the change footprint of this PR down a bit.

• I'd suggest we keep a single _tunnel_request method, rather than splitting out into two methods here?
• Can we catch the exception more narrowly? Perhaps we could have a top-level TransportError class, in the same way as httpx. Then, in cases like this we could just catch TransportError.

[tomchristie]

Actually thinking about it let's treat that second line item independently of this pull request.

[cdeler]

@tomchristie do I understand correctly the plan:

1. to introduce the root exception for all httpcore exceptions, to name the class TransportError. This change should go in the separate PR
2. as soon as (1) has been merged, to merge _establish_tunnel_proxy_connection back into _tunnel_request, catching TransportError instead of Exception?

Talking about (2) we can try. But also it means that there are cases (some error conditions) when we do not clean up resources. The conditions are exceptions not inherited by TransportError...

[tomchristie]

No don't worry about (2) at all. We can think about that some other day.

[cdeler]

Therefore I'm to just eliminate _establish_tunnel_proxy_connection, moving this code back to _tunnel_request to reduce the PR footprint, yes? (sorry for repeating questions, I want to fully understand you)

[cdeler]

@tomchristie
I did that, so the PR became significantly smaller (but it's required to compare it ignoring whitespace changes)

[florimondmanca]

Interesting, and a bit fiddly, so I'm being a bit careful :-)

[florimondmanca]

Is the host mismatch between url / headers expected? I think this is somewhat related to the block file passed to pproxy. If so, ad assuming the block file is intended to be a list of URL hosts that cannot be requested through the proxy…

• Should we set the blocked hostname to something more explicit like blockedhost.org?
• If the different host in url and headers is on purpose and required, add a small comment to explain why?

[cdeler]

You are right! I missed that the url and header are different, and it might confuse. Moreover the server name is not so clear. I'm renaming this host to "blockedhost.example.com" (and changing the fixture the same way)

[florimondmanca]

Do we want to explicitly put this operation outside the try/except block? I assume the only operations that we want to fail upon is socket-related stuff, so proxy_connection.arequest() and proxy_connection.start_tls(). Anything that's not related to it, such as adding to the pool, should be left outside the block, correct?

[cdeler]

Yes, you are right, the try-except block should be as narrow as possible

[florimondmanca]

I'd suggest we add a small docstring here with any relevant docs material from pproxy (eg a link to relevant docs) describing what a "block file" is and what effect it has?

[cdeler]

I added some docs to http_proxy_server and create_proxy_block_file

[cdeler]

@florimondmanca
Thank you for the review, I fixed all you mentioned

[florimondmanca]

Rad :) Great one!