symfony
diff --git a/‎src/Symfony/Component/HttpClient/Tests/Fixtures/ssl-server58562.php
Lines changed: 48 additions & 0 deletions b/‎src/Symfony/Component/HttpClient/Tests/Fixtures/ssl-server58562.php
Lines changed: 48 additions & 0 deletions
diff --git a/‎src/Symfony/Component/HttpClient/Tests/HttpClientTestCase.php
Lines changed: 30 additions & 0 deletions b/‎src/Symfony/Component/HttpClient/Tests/HttpClientTestCase.php
Lines changed: 30 additions & 0 deletions
diff --git a/‎src/Symfony/Component/HttpClient/Tests/MockHttpClientTest.php
Lines changed: 5 additions & 0 deletions b/‎src/Symfony/Component/HttpClient/Tests/MockHttpClientTest.php
Lines changed: 5 additions & 0 deletions
@@ -0,0 +1,48 @@
+<?php
+// Test server for https://github.com/symfony/symfony/pull/58562
+$context = stream_context_create(
+    ['ssl' => [
+        'local_cert' => __DIR__.'/tls/server.crt',
+        'local_pk' => __DIR__.'/tls/server.key',
+        'disable_compression' => true, // TLS compression attack vulnerability
+        'verify_peer' => false,
+        'allow_self_signed' => true,
+    ]]
+);
+
+$socket = stream_socket_server('ssl://127.0.0.1:8058', $errno, $errstr, STREAM_SERVER_BIND|STREAM_SERVER_LISTEN, $context);
+if (false === $socket) {
+    die("$errstr ($errno)");
+}
+$clients = [$socket];
+echo "started\n";
+while(true) {
+    $changed = $clients;
+    stream_select($changed, $write, $except, 10);
+    if (in_array($socket, $changed)) {
+        $client = stream_socket_accept($socket);
+        if (!$client) {
+            continue;
+        }
+        $clients[] = $client;
+        stream_set_blocking($client, false);
+        continue;
+    }
+    foreach ($changed as $client) {
+        $buffer = stream_get_contents($client);
+        if (false === $buffer) {
+            fclose($client);
+            $index = array_search($client, $clients);
+            unset($clients[$index]);
+        }
+        if ('' !== $buffer) {
+            fwrite($client, "HTTP/1.1 401 No ticket\r\n");
+            fwrite($client, "Cache-Control: max-age=0\r\n");
+            fwrite($client, "Connection: close\r\n");
+            fwrite($client, "Server: 127.0.0.1:8058\r\n\r\n");
+            fclose($client);
+            $index = array_search($client, $clients);
+            unset($clients[$index]);
+        }
+    }
+}
@@ -18,6 +18,7 @@
 use Symfony\Component\HttpClient\Internal\ClientState;
 use Symfony\Component\HttpClient\Response\StreamWrapper;
 use Symfony\Component\Process\Exception\ProcessFailedException;
+use Symfony\Component\Process\PhpExecutableFinder;
 use Symfony\Component\Process\Process;
 use Symfony\Contracts\HttpClient\Exception\RedirectionExceptionInterface;
 use Symfony\Contracts\HttpClient\HttpClientInterface;
@@ -311,6 +312,35 @@ public function testDnsFailure()
         $response->getStatusCode();
     }
 
+    /** @see https://github.com/symfony/symfony/pull/58562 */
+    public function testHandleEmptyResponseOnSslShutDown()
+    {
+        $finder = new PhpExecutableFinder();
+        $process = new Process(array_merge([$finder->find(false)], $finder->findArguments(), ['-dopcache.enable=0', '-f', __DIR__.'/Fixtures/ssl-server58562.php']));
+        $process->start();
+        $wait = 0;
+        do {
+            $wait += 500;
+            usleep(500000);
+        } while ($wait < 10000 && $process->isRunning() && !str_contains($process->getOutput(), "started\n"));
+        if (!$process->isRunning()) {
+            self::fail($process->getOutput() . "\n" . $process->getErrorOutput());
+        }
+        try {
+            $client = $this->getHttpClient(__FUNCTION__);
+            $response = $client->request('GET', 'https://127.0.0.1:8058/');
+            $headers = $response->getHeaders(false);
+            $this->assertSame(401, $response->getStatusCode());
+            $this->assertSame(['max-age=0'], $headers['cache-control']);
+            $this->assertSame(['close'], $headers['connection']);
+            $this->assertSame(['127.0.0.1:8058'], $headers['server']);
+        } catch (\Throwable $exception) {
+            self::fail($process->getOutput() . "\n" . $process->getErrorOutput() . "\n" . $exception->getMessage());
+        } finally {
+            $process->stop();
+        }
+    }
+
     private static function startVulcain(HttpClientInterface $client)
     {
         if (self::$vulcainStarted) {
 
@@ -42,6 +42,11 @@ public function testMocking($factory, array $expectedResponses)
         $this->assertSame(2, $client->getRequestsCount());
     }
 
+    public function testHandleEmptyResponseOnSslShutDown()
+    {
+        $this->markTestSkipped('This needs a real network connection.');
+    }
+
     public static function mockingProvider(): iterable
     {
         yield 'callable' => [
Original file line number	Diff line number	Diff line change
`@@ -42,6 +42,11 @@ public function testMocking($factory, array $expectedResponses)`
`42`	`42`	`$this->assertSame(2, $client->getRequestsCount());`
`43`	`43`	`}`
`44`	`44`
	`45`	`+ public function testHandleEmptyResponseOnSslShutDown()`
	`46`	`+ {`
	`47`	`+ $this->markTestSkipped('This needs a real network connection.');`
	`48`	`+ }`
	`49`	`+`
`45`	`50`	`public static function mockingProvider(): iterable`
`46`	`51`	`{`
`47`	`52`	`yield 'callable' => [`