🐛 relax hard assert for response type in the synchronous code

Ousret · Ousret · commit f3a4f9a9fdc5 · 2026-03-10T10:22:37.000+01:00
partially resolve #320
diff --git a/mypy-requirements.txt b/mypy-requirements.txt
@@ -1,4 +1,4 @@
-mypy==1.13.0; python_version >= '3.8'
+mypy==1.19.1; python_version >= '3.8'
 mypy==1.4.1; python_version < '3.8'
 idna>=2.0.0
 cryptography<47
@@ -15,3 +15,4 @@ wsproto>=1.2,<2
 aiofile>=3.9.0,<4
 zstandard>=0.18.0
 wsproto
+types-PySocks
diff --git a/src/urllib3/_async/connection.py b/src/urllib3/_async/connection.py
@@ -813,7 +813,7 @@ async def connect(self) -> None:
                 self.assert_hostname,
                 self.cert_reqs,
             )
-            is NotImplemented
+            is False
         ):
             server_hostname: str = self.host
             tls_in_tls = False
diff --git a/src/urllib3/_collections.py b/src/urllib3/_collections.py
@@ -357,7 +357,6 @@ def extend(self, *args: ValidHTTPHeaderSource, **kwargs: str) -> None:
             for key, val in other.items():
                 self.add(key, val)
         elif isinstance(other, typing.Iterable):
-            other = typing.cast(typing.Iterable[typing.Tuple[str, str]], other)
             for key, value in other:
                 self.add(key, value)
         elif hasattr(other, "keys") and hasattr(other, "__getitem__"):
diff --git a/src/urllib3/backend/_async/hface.py b/src/urllib3/backend/_async/hface.py
@@ -14,9 +14,9 @@
 
 
 try:  # We shouldn't do this, it is private. Only for chain extraction check. We should find another way.
-    from _ssl import Certificate  # type: ignore[import-not-found]
+    from _ssl import Certificate
 except (ImportError, AttributeError):
-    Certificate = None
+    Certificate = None  # type: ignore[misc,assignment]
 
 from ..._collections import HTTPHeaderDict
 from ..._constant import (
@@ -311,8 +311,8 @@ def _custom_tls(
         cert_reqs: int | str | None = None,
     ) -> bool:
         """Meant to support TLS over QUIC meanwhile cpython does not ship with its native implementation."""
-        if self._svn != HttpVersion.h3:
-            return NotImplemented
+        if self._svn is not HttpVersion.h3:
+            return False
 
         cert_use_common_name = False
 
@@ -532,7 +532,7 @@ async def _post_conn(self) -> None:  # type: ignore[override]
                         self.conn_info.issuer_certificate_der = (
                             ssl.PEM_cert_to_DER_cert(chain[1].public_bytes())
                         )
-                        self.conn_info.issuer_certificate_dict = chain[1].get_info()
+                        self.conn_info.issuer_certificate_dict = chain[1].get_info()  # type: ignore[assignment]
 
             if cipher_tuple:
                 self.conn_info.cipher = cipher_tuple[0]
diff --git a/src/urllib3/backend/hface.py b/src/urllib3/backend/hface.py
@@ -19,9 +19,9 @@
 
 
 try:  # We shouldn't do this, it is private. Only for chain extraction check. We should find another way.
-    from _ssl import Certificate  # type: ignore[import-not-found]
+    from _ssl import Certificate
 except (ImportError, AttributeError):
-    Certificate = None
+    Certificate = None  # type: ignore[misc,assignment]
 
 from .._collections import HTTPHeaderDict
 from .._constant import (
@@ -336,8 +336,8 @@ def _custom_tls(
         cert_reqs: int | str | None = None,
     ) -> bool:
         """Meant to support TLS over QUIC meanwhile cpython does not ship with its native implementation."""
-        if self._svn != HttpVersion.h3:
-            return NotImplemented
+        if self._svn is not HttpVersion.h3:
+            return False
 
         cert_use_common_name = False
 
@@ -574,7 +574,7 @@ def _post_conn(self) -> None:
                         self.conn_info.issuer_certificate_der = (
                             ssl.PEM_cert_to_DER_cert(chain[1].public_bytes())
                         )
-                        self.conn_info.issuer_certificate_dict = chain[1].get_info()
+                        self.conn_info.issuer_certificate_dict = chain[1].get_info()  # type: ignore[assignment]
 
             elif hasattr(self.sock, "getpeercert"):
                 self.conn_info.certificate_der = self.sock.getpeercert(binary_form=True)
@@ -608,7 +608,7 @@ def _post_conn(self) -> None:
                         self.conn_info.issuer_certificate_der = (
                             ssl.PEM_cert_to_DER_cert(chain[1].public_bytes())
                         )
-                        self.conn_info.issuer_certificate_dict = chain[1].get_info()
+                        self.conn_info.issuer_certificate_dict = chain[1].get_info()  # type: ignore[assignment]
 
             if cipher_tuple:
                 self.conn_info.cipher = cipher_tuple[0]
diff --git a/src/urllib3/connection.py b/src/urllib3/connection.py
@@ -791,7 +791,7 @@ def connect(self) -> None:
                 self.assert_hostname,
                 self.cert_reqs,
             )
-            is NotImplemented
+            is False
         ):
             server_hostname: str = self.host
             tls_in_tls = False
diff --git a/src/urllib3/connectionpool.py b/src/urllib3/connectionpool.py
@@ -1894,7 +1894,12 @@ def urlopen(
             assert isinstance(response, ResponsePromise)
             return response  # actually a response promise!
 
-        assert isinstance(response, HTTPResponse)
+        # we are relaxing that constraint to behave properly
+        # with 3rd party mocking tool such as vcrpy.
+        # see https://github.com/jawah/urllib3.future/issues/320
+        # for more details.
+        # assert isinstance(response, HTTPResponse)
+        response = typing.cast(HTTPResponse, response)
 
         if redirect and response.get_redirect_location():
             # Handle redirect?
diff --git a/src/urllib3/contrib/_socks_legacy.py b/src/urllib3/contrib/_socks_legacy.py
@@ -41,7 +41,7 @@
 from __future__ import annotations
 
 try:
-    import socks  # type: ignore[import-not-found]
+    import socks
 except ImportError:
     import warnings
 
@@ -113,13 +113,13 @@ def _new_conn(self) -> socks.socksocket:
         try:
             conn = socks.create_connection(
                 (self.host, self.port),
-                proxy_type=self._socks_options["socks_version"],
+                proxy_type=self._socks_options["socks_version"],  # type: ignore[arg-type]
                 proxy_addr=self._socks_options["proxy_host"],
-                proxy_port=self._socks_options["proxy_port"],
+                proxy_port=self._socks_options["proxy_port"],  # type: ignore[arg-type]
                 proxy_username=self._socks_options["username"],
                 proxy_password=self._socks_options["password"],
                 proxy_rdns=self._socks_options["rdns"],
-                timeout=self.timeout,
+                timeout=self.timeout,  # type: ignore[arg-type]
                 **extra_kw,
             )
 
diff --git a/src/urllib3/contrib/hface/protocols/_protocols.py b/src/urllib3/contrib/hface/protocols/_protocols.py
@@ -329,7 +329,7 @@ def multiplexed(self) -> bool:
     def should_wait_remote_flow_control(
         self, stream_id: int, amt: int | None = None
     ) -> bool | None:
-        return NotImplemented
+        return NotImplemented  # type: ignore[no-any-return]
 
 
 class HTTP2Protocol(HTTPOverTCPProtocol, metaclass=ABCMeta):
diff --git a/src/urllib3/contrib/imcc/_ctypes.py b/src/urllib3/contrib/imcc/_ctypes.py
@@ -220,7 +220,7 @@ def pull_error(self) -> typing.NoReturn:
 #
 class PySSLContextStruct(ctypes.Structure):
     _fields_ = (
-        _head_extra_fields
+        _head_extra_fields  # type: ignore[assignment]
         + [
             ("ob_refcnt", ctypes.c_ssize_t),  # Py_ssize_t ob_refcnt;
             ("ob_type", ctypes.c_void_p),  # PyTypeObject *ob_type;
diff --git a/src/urllib3/contrib/resolver/_async/doh/_urllib3.py b/src/urllib3/contrib/resolver/_async/doh/_urllib3.py
@@ -402,7 +402,7 @@ async def getaddrinfo(  # type: ignore[override]
                             remote_preemptive_quic_rr = True
                         else:
                             rr_decode: dict[str, str] = dict(
-                                tuple(_.lower().split("=", 1))
+                                tuple(_.lower().split("=", 1))  # type: ignore[misc]
                                 for _ in rr.split(" ")
                                 if "=" in _
                             )
diff --git a/src/urllib3/contrib/resolver/doh/_urllib3.py b/src/urllib3/contrib/resolver/doh/_urllib3.py
@@ -388,7 +388,7 @@ def getaddrinfo(
                             remote_preemptive_quic_rr = True
                         else:
                             rr_decode: dict[str, str] = dict(
-                                tuple(_.lower().split("=", 1))
+                                tuple(_.lower().split("=", 1))  # type: ignore[misc]
                                 for _ in rr.split(" ")
                                 if "=" in _
                             )
diff --git a/src/urllib3/contrib/resolver/system/_socket.py b/src/urllib3/contrib/resolver/system/_socket.py
@@ -54,7 +54,8 @@ def getaddrinfo(
             tuple[str, int] | tuple[str, int, int, int],
         ]
     ]:
-        return socket.getaddrinfo(
+        # the | tuple[int, bytes] is silently ignored, can't happen with our cases.
+        return socket.getaddrinfo(  # type: ignore[return-value]
             host=host,
             port=port,
             family=family,
diff --git a/src/urllib3/contrib/socks.py b/src/urllib3/contrib/socks.py
@@ -59,7 +59,7 @@
     from ..exceptions import DependencyWarning
 
     try:
-        import socks  # type: ignore  # noqa
+        import socks  # noqa
     except ImportError:
         warnings.warn(
             (
diff --git a/src/urllib3/contrib/ssa/__init__.py b/src/urllib3/contrib/ssa/__init__.py
@@ -290,7 +290,7 @@ async def connect(self, addr: tuple[str, int] | tuple[str, int, int, int]) -> No
                     "Likely FD Kernel/Loop Racing Allocation Error. You should retry."
                 )
 
-        if self.type == socket.SOCK_STREAM or self.type == -1:
+        if self.type == socket.SOCK_STREAM or self.type == -1:  # type: ignore[comparison-overlap]
             self._reader, self._writer = await asyncio.open_connection(sock=self._sock)
         elif self.type == socket.SOCK_DGRAM:
             self._reader, self._writer = await open_dgram_connection(sock=self._sock)
diff --git a/src/urllib3/contrib/webextensions/protocol.py b/src/urllib3/contrib/webextensions/protocol.py
@@ -47,7 +47,7 @@ def _read_error_catcher(self) -> typing.Generator[None, None, None]:
             except SocketTimeout as e:
                 clean_exit = True
                 pool = (
-                    self._response._pool  # type: ignore[has-type]
+                    self._response._pool
                     if self._response and hasattr(self._response, "_pool")
                     else None
                 )
@@ -60,7 +60,7 @@ def _read_error_catcher(self) -> typing.Generator[None, None, None]:
                     raise SSLError(e) from e
                 clean_exit = True  # ws algorithms based on timeouts can expect this without being harmful!
                 pool = (
-                    self._response._pool  # type: ignore[has-type]
+                    self._response._pool
                     if self._response and hasattr(self._response, "_pool")
                     else None
                 )
@@ -100,7 +100,7 @@ def _write_error_catcher(self) -> typing.Generator[None, None, None]:
 
             except SocketTimeout as e:
                 pool = (
-                    self._response._pool  # type: ignore[has-type]
+                    self._response._pool
                     if self._response and hasattr(self._response, "_pool")
                     else None
                 )
diff --git a/src/urllib3/poolmanager.py b/src/urllib3/poolmanager.py
@@ -914,7 +914,13 @@ def urlopen(
             # the established connection is not capable of doing multiplexed request
             kw["multiplexed"] = False
 
-        assert isinstance(response, HTTPResponse)
+        # we are relaxing that constraint to behave properly
+        # with 3rd party mocking tool such as vcrpy.
+        # see https://github.com/jawah/urllib3.future/issues/320
+        # for more details.
+        # assert isinstance(response, HTTPResponse)
+        response = typing.cast(HTTPResponse, response)
+
         redirect_location = redirect and response.get_redirect_location()
         if not redirect_location:
             return response
diff --git a/src/urllib3/response.py b/src/urllib3/response.py
@@ -34,7 +34,7 @@
 
 except (AttributeError, ImportError, ValueError):  # Defensive:
     try:
-        from compression import zstd  # type: ignore[no-redef,import-not-found]
+        from compression import zstd  # type: ignore[no-redef]
     except ImportError:
         zstd = None  # type: ignore[assignment]
 
@@ -463,6 +463,7 @@ def retries(self) -> Retry | None:
     def retries(self, retries: Retry | None) -> None:
         # Override the request_url if retries has a redirect location.
         if retries is not None and retries.history:
+            assert retries.history[-1].redirect_location is not None
             self.url = retries.history[-1].redirect_location
         self._retries = retries
 
diff --git a/src/urllib3/util/ssl_.py b/src/urllib3/util/ssl_.py
@@ -255,7 +255,7 @@ def _is_has_never_check_common_name_reliable(
     try:
         from ssl import OP_NO_RENEGOTIATION
     except ImportError:
-        OP_NO_RENEGOTIATION = None  # type: ignore[assignment]
+        OP_NO_RENEGOTIATION = None  # type: ignore[misc,assignment]
 
     PROTOCOL_SSLv23 = PROTOCOL_TLS
 
@@ -297,13 +297,13 @@ def _is_has_never_check_common_name_reliable(
             IS_FIPS = 32 not in HASHFUNC_MAP
 
 except ImportError:
-    OP_NO_COMPRESSION = 0x20000  # type: ignore[assignment]
-    OP_NO_TICKET = 0x4000  # type: ignore[assignment]
-    OP_NO_SSLv2 = 0x1000000  # type: ignore[assignment]
-    OP_NO_SSLv3 = 0x2000000  # type: ignore[assignment]
-    PROTOCOL_SSLv23 = PROTOCOL_TLS = 2  # type: ignore[assignment]
-    PROTOCOL_TLS_CLIENT = PROTOCOL_TLS
-    OP_NO_RENEGOTIATION = None  # type: ignore[assignment]
+    OP_NO_COMPRESSION = 0x20000  # type: ignore[misc,assignment]
+    OP_NO_TICKET = 0x4000  # type: ignore[misc,assignment]
+    OP_NO_SSLv2 = 0x1000000  # type: ignore[misc,assignment]
+    OP_NO_SSLv3 = 0x2000000  # type: ignore[misc,assignment]
+    PROTOCOL_SSLv23 = PROTOCOL_TLS = 2  # type: ignore[misc,assignment]
+    PROTOCOL_TLS_CLIENT = PROTOCOL_TLS  # type: ignore[misc]
+    OP_NO_RENEGOTIATION = None  # type: ignore[misc,assignment]
     SUPPORT_MIN_MAX_TLS_VERSION = False
     IS_FIPS = False
 
diff --git a/test/conftest.py b/test/conftest.py
@@ -77,7 +77,7 @@ async def run_app() -> int:
 
         port = asyncio.run_coroutine_threadsafe(
             run_app(),
-            io_loop.asyncio_loop,  # type: ignore[attr-defined]
+            io_loop.asyncio_loop,
         ).result()
         yield ServerConfig(
             scheme,
@@ -121,7 +121,7 @@ async def run_app() -> tuple[ServerConfig, ServerConfig]:
 
         proxy_config, server_config = asyncio.run_coroutine_threadsafe(
             run_app(),
-            io_loop.asyncio_loop,  # type: ignore[attr-defined]
+            io_loop.asyncio_loop,
         ).result()
         yield (proxy_config, server_config)
 
diff --git a/test/contrib/test_socks.py b/test/contrib/test_socks.py
@@ -126,7 +126,7 @@ def fake_getaddrinfo(
     ]:
         gai_list = real_getaddrinfo(host, port, family, type, proto, flags)
         gai_list = [gai for gai in gai_list if gai[0] == socket.AF_INET]
-        return gai_list[:1]
+        return gai_list[:1]  # type: ignore[return-value]
 
     monkeypatch.setattr(socket, "getaddrinfo", fake_getaddrinfo)
 
diff --git a/test/test_response.py b/test/test_response.py
@@ -486,7 +486,7 @@ def test_io_closed_consistently(self, sock: socket.socket) -> None:
     def test_io_bufferedreader(self) -> None:
         fp = BytesIO(b"foo")
         resp = HTTPResponse(fp, preload_content=False)
-        br = BufferedReader(resp)  # type: ignore[arg-type]
+        br = BufferedReader(resp)  # type: ignore[type-var]
 
         assert br.read() == b"foo"
 
@@ -498,12 +498,12 @@ def test_io_bufferedreader(self) -> None:
         fp = BytesIO(b"hello\nworld")
         resp = HTTPResponse(fp, preload_content=False)
         with pytest.raises(ValueError, match="readline of closed file"):
-            list(BufferedReader(resp))  # type: ignore[arg-type]
+            list(BufferedReader(resp))  # type: ignore[type-var]
 
         b = b"fooandahalf"
         fp = BytesIO(b)
         resp = HTTPResponse(fp, preload_content=False)
-        br = BufferedReader(resp, 5)  # type: ignore[arg-type]
+        br = BufferedReader(resp, 5)  # type: ignore[type-var]
 
         br.read(1)  # sets up the buffer, reading 5
         assert len(fp.read()) == (len(b) - 5)
@@ -516,7 +516,7 @@ def test_io_bufferedreader(self) -> None:
     def test_io_not_autoclose_bufferedreader(self) -> None:
         fp = BytesIO(b"hello\nworld")
         resp = HTTPResponse(fp, preload_content=False, auto_close=False)
-        reader = BufferedReader(resp)  # type: ignore[arg-type]
+        reader = BufferedReader(resp)  # type: ignore[type-var]
         assert list(reader) == [b"hello\n", b"world"]
 
         assert not reader.closed

Original file line number	Diff line number	Diff line change
`@@ -813,7 +813,7 @@ async def connect(self) -> None:`
`813`	`813`	`self.assert_hostname,`
`814`	`814`	`self.cert_reqs,`
`815`	`815`	`)`
`816`		`- is NotImplemented`
	`816`	`+ is False`
`817`	`817`	`):`
`818`	`818`	`server_hostname: str = self.host`
`819`	`819`	`tls_in_tls = False`
Original file line number	Diff line number	Diff line change
`@@ -791,7 +791,7 @@ def connect(self) -> None:`
`791`	`791`	`self.assert_hostname,`
`792`	`792`	`self.cert_reqs,`
`793`	`793`	`)`
`794`		`- is NotImplemented`
	`794`	`+ is False`
`795`	`795`	`):`
`796`	`796`	`server_hostname: str = self.host`
`797`	`797`	`tls_in_tls = False`
Original file line number	Diff line number	Diff line change
`@@ -220,7 +220,7 @@ def pull_error(self) -> typing.NoReturn:`
`220`	`220`	`#`
`221`	`221`	`class PySSLContextStruct(ctypes.Structure):`
`222`	`222`	`_fields_ = (`
`223`		`- _head_extra_fields`
	`223`	`+ _head_extra_fields # type: ignore[assignment]`
`224`	`224`	`+ [`
`225`	`225`	`("ob_refcnt", ctypes.c_ssize_t), # Py_ssize_t ob_refcnt;`
`226`	`226`	`("ob_type", ctypes.c_void_p), # PyTypeObject *ob_type;`