Re: Comments on draft-ietf-httpbis-http2-04
Jeff Pinner <jpinner@twitter.com> Wed, 10 July 2013 14:45 UTC
Return-Path: <ietf-http-wg-request@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8405E11E811D for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 10 Jul 2013 07:45:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.58
X-Spam-Level:
X-Spam-Status: No, score=-9.58 tagged_above=-999 required=5 tests=[AWL=0.396, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bPLQS8z6hUJy for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 10 Jul 2013 07:45:07 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) by ietfa.amsl.com (Postfix) with ESMTP id 70BC811E8134 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Wed, 10 Jul 2013 07:45:00 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.72) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1UwvcE-0005rt-7s for ietf-http-wg-dist@listhub.w3.org; Wed, 10 Jul 2013 14:43:34 +0000
Resent-Date: Wed, 10 Jul 2013 14:43:34 +0000
Resent-Message-Id: <E1UwvcE-0005rt-7s@frink.w3.org>
Received: from lisa.w3.org ([128.30.52.41]) by frink.w3.org with esmtp (Exim 4.72) (envelope-from <jpinner@twitter.com>) id 1Uwvc6-0005qh-9G for ietf-http-wg@listhub.w3.org; Wed, 10 Jul 2013 14:43:26 +0000
Received: from mail-ob0-f174.google.com ([209.85.214.174]) by lisa.w3.org with esmtps (TLS1.0:RSA_ARCFOUR_SHA1:16) (Exim 4.72) (envelope-from <jpinner@twitter.com>) id 1Uwvc4-0000Sx-VA for ietf-http-wg@w3.org; Wed, 10 Jul 2013 14:43:26 +0000
Received: by mail-ob0-f174.google.com with SMTP id wd20so8503823obb.19 for <ietf-http-wg@w3.org>; Wed, 10 Jul 2013 07:42:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=twitter.com; s=google; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=hn+W5LGmg0tW8xIJDOINogOSM4PhjoeGmncXKGd45qQ=; b=n8/iks7Eu8Est1+2n82yAJVg8AC8wRgOOQJQXRIAmNkNfbOc75r3tKi4A5F17nH96m B89SQ1dRhziDPXGqWAh5LDGRdGv8t8Q00hUPJLqJfC6lEYY0F0d2r3VNt5eDwwRiukJL YaVVEQzS8AwJqI8GTzXQl/3KNQwkHs7K6m5h4=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:x-gm-message-state; bh=hn+W5LGmg0tW8xIJDOINogOSM4PhjoeGmncXKGd45qQ=; b=V0FFU+nt8O7vd0xmF0Dhs7XJlNgbrTIfENCEW6zL3lvvYl1QElIPNnn+JMSeXebobV aT0iFasUHhnLdq5gSSYo/G5hXFShAvaJ1AOwbdvizotVQsrcnNxs5byB44V8f+jGYLlj DWYRX2jOG9UcgLQ+WfnS1iRQccWEAmZgdFKf0X/tKMVcEdmNbkAVYplpDcSkaJKvDq/G ACyrmYeCWpnSaWMRBNLfSXDA8aek5yCPthEMjT76WTjh49uzZPNhnHniTb84YTxCjGN5 lUFr4Fe/5K1YU3z1ZXiOh/6/H3PMiNH2AYHJ73NrJp/kPylIocxCslhddPJ3LVIrtGdw q8zg==
MIME-Version: 1.0
X-Received: by 10.60.123.51 with SMTP id lx19mr28420718oeb.105.1373467379042; Wed, 10 Jul 2013 07:42:59 -0700 (PDT)
Received: by 10.182.7.37 with HTTP; Wed, 10 Jul 2013 07:42:58 -0700 (PDT)
In-Reply-To: <51DD4678.8030407@gmx.de>
References: <3072E3B4-63B4-4DFB-AFD8-08EE6407C6FB@apple.com> <CABkgnnWexuQb9vZPudJTJ+Gk0LAtcunWG1fThrk3Y_Eo9mDv=A@mail.gmail.com> <CA+pLO_gzNTpTabeuXE7SE+J8Bnx7ky3bnxdKLxB5A-DiAS01Uw@mail.gmail.com> <A5F07EB0-894D-4D70-B3F1-925AF19AC573@apple.com> <CA+pLO_jL63qxtFFvC=JN5iJSr2_B8KkBftX9K19M0x3qV7HOLw@mail.gmail.com> <51DD4678.8030407@gmx.de>
Date: Wed, 10 Jul 2013 07:42:58 -0700
Message-ID: <CA+pLO_hjjzn348fohHBWXb7jUPv1PGcG5zmQGavGpw-eu+e0+Q@mail.gmail.com>
From: Jeff Pinner <jpinner@twitter.com>
To: Julian Reschke <julian.reschke@gmx.de>
Cc: Michael Sweet <msweet@apple.com>, Martin Thomson <martin.thomson@gmail.com>, list <ietf-http-wg@w3.org>
Content-Type: multipart/alternative; boundary="047d7b5d45ee3d20de04e1294b2b"
X-Gm-Message-State: ALoCoQkc13MboHNis9F5Fbp+4r4EJgvHBAI0Rmskh96euedqzUMFIsqEC8sc0Iuj9kvTyRwO7zfK
Received-SPF: pass client-ip=209.85.214.174; envelope-from=jpinner@twitter.com; helo=mail-ob0-f174.google.com
X-W3C-Hub-Spam-Status: No, score=-3.9
X-W3C-Hub-Spam-Report: AWL=-3.100, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001
X-W3C-Scan-Sig: lisa.w3.org 1Uwvc4-0000Sx-VA b49b554030cbf8e357e21b686de99f75
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Comments on draft-ietf-httpbis-http2-04
Archived-At: <http://www.w3.org/mid/CA+pLO_hjjzn348fohHBWXb7jUPv1PGcG5zmQGavGpw-eu+e0+Q@mail.gmail.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/18672
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
Julian, if you recall (or have easily accessible) I'd love to hear the rational for the "ought to be handled as an error" line as opposed to a "SHOULD return a 400" or "MUST return a 400." Perhaps it is due to some subtlety that should lead us to reconsider the 2.0 requirement? Or perhaps it is due to legacy implementations and it could guide us in wording to add to a HTTP/1.1 <--> HTTP/2.0 section? - Jeff On Wed, Jul 10, 2013 at 4:33 AM, Julian Reschke <julian.reschke@gmx.de>wrote: > On 2013-07-09 22:59, Jeff Pinner wrote: > >> I am all for adding text to the "Additional HTTP >> Requirements/Considerations" sections that discuss how to upgrade from >> HTTP/1.1 to HTTP/2.0, including what to do about how to handle specific >> headers, Expect and Content-Length / Transfer-Encoding included. This >> would be useful not just to implementers migrating to HTTP/2.0 but also >> to proxies that upgrade/downgrade the protocol version. >> >> That being said, the requirements around Message Length in HTTP/1.1 are >> non-trivial and given that we want to support interoperability, I'd like >> to minimize adding additional requirements (especially those with >> conflicting semantics) in the HTTP/2.0 spec. >> >> P.S. the httpbis messaging draft states: >> >> If a message is received with both a Transfer-Encoding and a >> Content-Length header field, the Transfer-Encoding overrides the >> Content-Length. Such a message might indicate an attempt to >> perform request or response smuggling (bypass of security-related >> checks on message routing or content) and thus ought to be >> handled as an error. A sender MUST remove the received Content- >> Length field prior to forwarding such a message downstream. >> >> >> it would be nice to strengthen that language so that it matches the new >> HTTP/2.0 requirement. >> ... >> > > My 2 cents: HTTPbis says what it says based on a long discussion of the > topic. IMHO simply saying "should be aligned with whatever 2.0 says" is not > sufficient to change that. > > Best regards, Julian >
- Comments on draft-ietf-httpbis-http2-04 Michael Sweet
- Re: Comments on draft-ietf-httpbis-http2-04 Martin Thomson
- Re: Comments on draft-ietf-httpbis-http2-04 Jeff Pinner
- Re: Comments on draft-ietf-httpbis-http2-04 Michael Sweet
- Re: Comments on draft-ietf-httpbis-http2-04 Michael Sweet
- Re: Comments on draft-ietf-httpbis-http2-04 Jeff Pinner
- Re: Comments on draft-ietf-httpbis-http2-04 Julian Reschke
- Re: Comments on draft-ietf-httpbis-http2-04 Jeff Pinner
- Re: Comments on draft-ietf-httpbis-http2-04 Julian Reschke
- Re: Comments on draft-ietf-httpbis-http2-04 Martin Thomson