Re: [http-state] [Technical Errata Reported] RFC6265 (3430)
Barry Leiba <barryleiba@computer.org> Fri, 14 December 2012 14:30 UTC
Return-Path: <barryleiba@gmail.com>
X-Original-To: http-state@ietfa.amsl.com
Delivered-To: http-state@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1A5E021F87C9 for <http-state@ietfa.amsl.com>; Fri, 14 Dec 2012 06:30:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -103.045
X-Spam-Level:
X-Spam-Status: No, score=-103.045 tagged_above=-999 required=5 tests=[AWL=-0.068, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ucrUPbXElJYI for <http-state@ietfa.amsl.com>; Fri, 14 Dec 2012 06:30:47 -0800 (PST)
Received: from mail-vb0-f44.google.com (mail-vb0-f44.google.com [209.85.212.44]) by ietfa.amsl.com (Postfix) with ESMTP id 0A23F21F87C5 for <http-state@ietf.org>; Fri, 14 Dec 2012 06:30:46 -0800 (PST)
Received: by mail-vb0-f44.google.com with SMTP id fc26so3954706vbb.31 for <http-state@ietf.org>; Fri, 14 Dec 2012 06:30:46 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type; bh=c9LxroKw8fF0xzRx1lROvHl8lJSoLcBwNMl2GPpGGG0=; b=ocy/Kn8yOQUbrR2iv72evBBQy9p+ApkyrVf2KFmJeZcqzwu56ZlOYkV6vNCCz6L4LK JEICLmTJEHPDrAnACZW4UqdCKR1KVl+4aQ3pCGJzQx4QENPspmgUzZ3LaH+M7z9N0SMl +KOp5ezR42yEAkC02hHVt76gkco9zZKu6myWBKf5kjQrApHQqSzv4JHzbBtrmyRuiPDr sZ93xyZbs40TvuFPUgOKUNlUClcRiw4e5TRMv9POqHicoPxb7HQfeJhJLCPc3hQ5ApNr TIMrR1IGf/+a0Ug2UABe3nHJc1XWfl79/k4zVgvpScqndzZi2bQsGvqNgx8QECdP9r/s hGcQ==
MIME-Version: 1.0
Received: by 10.220.149.69 with SMTP id s5mr9502374vcv.23.1355495446361; Fri, 14 Dec 2012 06:30:46 -0800 (PST)
Sender: barryleiba@gmail.com
Received: by 10.58.28.231 with HTTP; Fri, 14 Dec 2012 06:30:45 -0800 (PST)
In-Reply-To: <20121213222237.C5069B1E006@rfc-editor.org>
References: <20121213222237.C5069B1E006@rfc-editor.org>
Date: Fri, 14 Dec 2012 09:30:45 -0500
X-Google-Sender-Auth: GdIV1B3ifwc582HBnovuUM9pLHM
Message-ID: <CALaySJK6YimPpKK6bbnAZBwNyqhjD2zNCJFSQFbQSx_40nQv1Q@mail.gmail.com>
From: Barry Leiba <barryleiba@computer.org>
To: RFC Errata System <rfc-editor@rfc-editor.org>
Content-Type: text/plain; charset="ISO-8859-1"
Cc: http-state@ietf.org, Pete Resnick <presnick@qti.qualcomm.com>, zhong.j.yu@gmail.com, abarth@eecs.berkeley.edu
Subject: Re: [http-state] [Technical Errata Reported] RFC6265 (3430)
X-BeenThere: http-state@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Discuss HTTP State Management Mechanism <http-state.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/http-state>, <mailto:http-state-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/http-state>
List-Post: <mailto:http-state@ietf.org>
List-Help: <mailto:http-state-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/http-state>, <mailto:http-state-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 14 Dec 2012 14:30:48 -0000
> The following errata report has been submitted for RFC6265, > "HTTP State Management Mechanism". > -------------------------------------- > You may review the report below and at: > http://www.rfc-editor.org/errata_search.php?rfc=6265&eid=3430 > -------------------------------------- > Type: Technical > Reported by: Zhong Yu <zhong.j.yu@gmail.com> > > Section: 4.1.1 > > Original Text > ------------- > max-age-av = "Max-Age=" non-zero-digit *DIGIT > ; In practice, both expires-av and max-age-av > ; are limited to dates representable by the > ; user agent. > non-zero-digit = %x31-39 > ; digits 1 through 9 > > > Corrected Text > -------------- > max-age-av = "Max-Age=" 1*DIGIT > ; In practice, both expires-av and max-age-av > ; are limited to dates representable by the > ; user agent. > > > Notes > ----- > The current text forbids a server to send Max-Age=0. Actually, it's much worse than that: the ABNF for max-age-av does not match the text in Section 5.2.2 at all (5.2.2 allows a "-" as well, and values less than or equal to zero). Before verifying this, we need to check whether things like "-1" were meant to be valid -- whether the error is only in the ABNF, or whether 5.2.2 is (also) wrong. The easiest fix is to make the ABNF match Section 5.2.2, which could be done this way: Original Text ------------- max-age-av = "Max-Age=" non-zero-digit *DIGIT Corrected Text ------------- max-age-av = "Max-Age=" (DIGIT / ("-" non-zero-digit)) *DIGIT If Section 5.2.2 correctly expresses the intent, then this seems the right erratum. Otherwise, there is an erratum in 5.2.2. Adam, Jeff (and others): comments? What was the intent when the text was written? Barry
- [http-state] [Technical Errata Reported] RFC6265 … RFC Errata System
- Re: [http-state] [Technical Errata Reported] RFC6… Barry Leiba
- Re: [http-state] [Technical Errata Reported] RFC6… Dan Winship
- Re: [http-state] [Technical Errata Reported] RFC6… Barry Leiba
- Re: [http-state] [Technical Errata Reported] RFC6… Zhong Yu