IETF Logo Mail Archive

Re: [http-state] Updated draft

Daniel Stenberg <daniel@haxx.se> Sun, 16 August 2009 12:45 UTC

Return-Path: <daniel@haxx.se>
X-Original-To: http-state@core3.amsl.com
Delivered-To: http-state@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 12AFB3A6ADD for <http-state@core3.amsl.com>; Sun, 16 Aug 2009 05:45:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.871
X-Spam-Level:
X-Spam-Status: No, score=-2.871 tagged_above=-999 required=5 tests=[AWL=-0.622, BAYES_00=-2.599, HELO_EQ_SE=0.35]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FS5JLF5lxjGV for <http-state@core3.amsl.com>; Sun, 16 Aug 2009 05:44:59 -0700 (PDT)
Received: from kluster1.contactor.se (kluster1.contactor.se [91.191.140.11]) by core3.amsl.com (Postfix) with ESMTP id BA2313A6AB8 for <http-state@ietf.org>; Sun, 16 Aug 2009 05:44:58 -0700 (PDT)
Received: from linux2.contactor.se (linux2.contactor.se [91.191.140.14]) by kluster1.contactor.se (8.13.8/8.13.8/Debian-3) with ESMTP id n7GCj00U004190; Sun, 16 Aug 2009 14:45:00 +0200
Date: Sun, 16 Aug 2009 14:45:00 +0200
From: Daniel Stenberg <daniel@haxx.se>
X-X-Sender: dast@linux2.contactor.se
To: Adam Barth <ietf@adambarth.com>
In-Reply-To: <7789133a0908151642w47c1dbf1x48268e657b0d71cc@mail.gmail.com>
Message-ID: <alpine.DEB.2.00.0908161440520.25988@yvahk2.pbagnpgbe.fr>
References: <7789133a0908151008p35ff30e6w2761368fe70d41a6@mail.gmail.com> <alpine.DEB.2.00.0908152250410.18461@yvahk2.pbagnpgbe.fr> <7789133a0908151642w47c1dbf1x48268e657b0d71cc@mail.gmail.com>
User-Agent: Alpine 2.00 (DEB 1167 2008-08-23)
X-fromdanielhimself: yes
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"; format="flowed"
Cc: http-state <http-state@ietf.org>
Subject: Re: [http-state] Updated draft
X-BeenThere: http-state@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discuss HTTP State Management Mechanism <http-state.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/http-state>, <mailto:http-state-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/http-state>
List-Post: <mailto:http-state@ietf.org>
List-Help: <mailto:http-state-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/http-state>, <mailto:http-state-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 16 Aug 2009 12:45:00 -0000

On Sat, 15 Aug 2009, Adam Barth wrote:

>> The section about the sorting of the cookie-list. Do implementations really
>> bother about in which order
>
> Yes.  The bit about sorting by path length is definitely required for 
> compatibility.  I remember reading some old bug reports about that.  I 
> suspect the bit about creation date is important too, although I don't have 
> concrete examples of sites that break.

Hm, ok. It would be very interesting if you can come up with real-world cases 
where this is actually enforced/checked since curl doesn't do any sorting of 
this kind and I would be surprised if all other cookie implementations do.

-- 

  / daniel.haxx.se

v2.23.0 | Report a Bug | By Email