Re: HTTP/2 and non-authoritative pushes
Tom Bergan <tombergan@chromium.org> Tue, 14 April 2020 22:56 UTC
Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7A0983A11F6 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 14 Apr 2020 15:56:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.919
X-Spam-Level:
X-Spam-Status: No, score=-2.919 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.168, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.248, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=chromium.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ckaWfZf08aQ2 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 14 Apr 2020 15:56:08 -0700 (PDT)
Received: from lyra.w3.org (lyra.w3.org [128.30.52.18]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 924B33A11F3 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Tue, 14 Apr 2020 15:56:08 -0700 (PDT)
Received: from lists by lyra.w3.org with local (Exim 4.92) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1jOUQp-00045e-Oh for ietf-http-wg-dist@listhub.w3.org; Tue, 14 Apr 2020 22:53:27 +0000
Resent-Date: Tue, 14 Apr 2020 22:53:27 +0000
Resent-Message-Id: <E1jOUQp-00045e-Oh@lyra.w3.org>
Received: from mimas.w3.org ([128.30.52.79]) by lyra.w3.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <tombergan@chromium.org>) id 1jOUQp-00044o-0y for ietf-http-wg@listhub.w3.org; Tue, 14 Apr 2020 22:53:27 +0000
Received: from mail-oi1-x229.google.com ([2607:f8b0:4864:20::229]) by mimas.w3.org with esmtps (TLS1.3:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.92) (envelope-from <tombergan@chromium.org>) id 1jOUQm-0000b0-MW for ietf-http-wg@w3.org; Tue, 14 Apr 2020 22:53:26 +0000
Received: by mail-oi1-x229.google.com with SMTP id x21so5727334oic.5 for <ietf-http-wg@w3.org>; Tue, 14 Apr 2020 15:53:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=i3Bzpi0L5dA5OtpTcJO86+wrqzTQwCFw3X9fEzNE2dQ=; b=d9CHznKxLW+KG0xxOtD8o2vrAHgD76xmpWstLvF5WTCJ577oUqLuVSIG1ATY9eLCyE g/Nd0pO2Q6KhMax49mVHhW1NvhrhJLNn4Kd5+qLycLYuIVDsEjqEUMIrV+LLFbALoL3+ MuXPWCjD9ZrG74Hlibzy4eyx0PnnyW5Tb27Vc=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=i3Bzpi0L5dA5OtpTcJO86+wrqzTQwCFw3X9fEzNE2dQ=; b=sYxRU+3HwoV+gALf0iNeKoOabkw2+N0iM5O3QVuSQJKWMgDsfSbgOVIODOmgsQudbD aMh6kxiFjnQLZWBxYkw9N1KtAjUmntSWDgiA6jCnj9t9cH9tJXLfw6Pxn/RiEwftkPiO OSmHUR7zm+yo0kSAGwwO/+RA3xeKs6GPNF6GYo7WhXxLDUAoWteB6YNKPLNeSBPksgLN 5K+gVWhLlU/g29FqGJ3nsgKISyTy8mBcz+deucGJ4KbTkd0c1bjEBFMmQp68+Sjyt1Dz /GcnvE/5yKyfdP6MzrKQJzI3NQM3KDoEyOAi+Y9/flu7zi1Onw80mIVG+3XZfilzWN0w i0mQ==
X-Gm-Message-State: AGi0PubOhNaZf53M5XuVAmkGDJEdTHQ9aXpK69eEgNpcEsMgQ8waVJZa +sJqjSQ5Qn2incmehD0SV6b3QGQXYtw=
X-Google-Smtp-Source: APiQypLgl2swldCPMulWEKx9DegR46QA3EYrZu+fWnhCxN6XpdW8f0r0RQrqUZItMGXmzfuPQMyxWw==
X-Received: by 2002:aca:b1d7:: with SMTP id a206mr7199749oif.97.1586904793152; Tue, 14 Apr 2020 15:53:13 -0700 (PDT)
Received: from mail-ot1-f54.google.com (mail-ot1-f54.google.com. [209.85.210.54]) by smtp.gmail.com with ESMTPSA id v21sm5822198oic.4.2020.04.14.15.53.11 for <ietf-http-wg@w3.org> (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Tue, 14 Apr 2020 15:53:12 -0700 (PDT)
Received: by mail-ot1-f54.google.com with SMTP id z17so1503099oto.4 for <ietf-http-wg@w3.org>; Tue, 14 Apr 2020 15:53:11 -0700 (PDT)
X-Received: by 2002:a9d:7349:: with SMTP id l9mr19531175otk.221.1586904791165; Tue, 14 Apr 2020 15:53:11 -0700 (PDT)
MIME-Version: 1.0
References: <CH2PR22MB2086EF4BC11F6FE056259A14DADA0@CH2PR22MB2086.namprd22.prod.outlook.com>
In-Reply-To: <CH2PR22MB2086EF4BC11F6FE056259A14DADA0@CH2PR22MB2086.namprd22.prod.outlook.com>
From: Tom Bergan <tombergan@chromium.org>
Date: Tue, 14 Apr 2020 15:53:00 -0700
X-Gmail-Original-Message-ID: <CA+3+x5Ed02oEYwR69jZx+tFMiy433iRzLc8VEDb6pP5huHR1UQ@mail.gmail.com>
Message-ID: <CA+3+x5Ed02oEYwR69jZx+tFMiy433iRzLc8VEDb6pP5huHR1UQ@mail.gmail.com>
To: Mike Bishop <mbishop@evequefou.be>
Cc: HTTP Working Group <ietf-http-wg@w3.org>
Content-Type: multipart/alternative; boundary="0000000000005efa7905a3481006"
Received-SPF: pass client-ip=2607:f8b0:4864:20::229; envelope-from=tombergan@chromium.org; helo=mail-oi1-x229.google.com
X-W3C-Hub-Spam-Status: No, score=-4.1
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: mimas.w3.org 1jOUQm-0000b0-MW 5c2e44a76b35c56ed8242c0b079dde81
X-Original-To: ietf-http-wg@w3.org
Subject: Re: HTTP/2 and non-authoritative pushes
Archived-At: <https://www.w3.org/mid/CA+3+x5Ed02oEYwR69jZx+tFMiy433iRzLc8VEDb6pP5huHR1UQ@mail.gmail.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/37508
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
On Tue, Apr 14, 2020 at 12:42 PM Mike Bishop <mbishop@evequefou.be> wrote: > Secondary Certs issue #1088 leads back to an interesting bit in RFC7540. > Section 8.2 says: > > > > The server MUST include a value in the ":authority" pseudo-header > > field for which the server is authoritative (see Section 10.1 <https://tools.ietf.org/html/rfc7540#section-10.1>). A > > client MUST treat a PUSH_PROMISE for which the server is not > > authoritative as a stream error (Section 5.4.2 <https://tools.ietf.org/html/rfc7540#section-5.4.2>) of type > > PROTOCOL_ERROR. > > > > Note that it doesn’t explicitly say which stream should be treated as > being in error. The simplest reading, since it’s an invalid PUSH_PROMISE, > would be the stream on which the PUSH_PROMISE was sent. However, the > server and the client might not have the same view of what origins the > server is authoritative for, for various reasons. Given that, blowing up > the *parent* request because of an invalid PUSH_PROMISE seems completely > unreasonable as a response. Should this indicate that it’s a stream error > on the promised stream? > I think most people interpreted this to be a stream error on the promised stream. Chrome already does this (although it uses REFUSED_STREAM_ERROR instead of PROTOCOL_ERROR): https://cs.chromium.org/chromium/src/net/spdy/spdy_session.cc?rcl=d9cde1be644011b978b48bf3eb8e35155b3cd800&l=2005 Firefox too (with the correct error code): https://dxr.mozilla.org/mozilla-central/source/netwerk/protocol/http/Http2Session.cpp#2009
- HTTP/2 and non-authoritative pushes Mike Bishop
- Re: HTTP/2 and non-authoritative pushes Ted Hardie
- Re: HTTP/2 and non-authoritative pushes Tom Bergan