IETF Logo Mail Archive

Re: signatures vs sf-date

Julian Reschke <julian.reschke@gmx.de> Fri, 02 December 2022 09:22 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2FE07C14CF19 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Fri, 2 Dec 2022 01:22:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.748
X-Spam-Level:
X-Spam-Status: No, score=-2.748 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.25, MAILING_LIST_MULTI=-1, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmx.de
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NQoXefMV4sdj for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Fri, 2 Dec 2022 01:22:24 -0800 (PST)
Received: from lyra.w3.org (lyra.w3.org [128.30.52.18]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ADF16C14CF10 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Fri, 2 Dec 2022 01:22:24 -0800 (PST)
Received: from lists by lyra.w3.org with local (Exim 4.94.2) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1p12FE-008U13-Gb for ietf-http-wg-dist@listhub.w3.org; Fri, 02 Dec 2022 09:22:08 +0000
Resent-Date: Fri, 02 Dec 2022 09:22:08 +0000
Resent-Message-Id: <E1p12FE-008U13-Gb@lyra.w3.org>
Received: from mimas.w3.org ([128.30.52.79]) by lyra.w3.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from <julian.reschke@gmx.de>) id 1p12FC-008TzV-DL for ietf-http-wg@listhub.w3.org; Fri, 02 Dec 2022 09:22:06 +0000
Received: from mout.gmx.net ([212.227.15.15]) by mimas.w3.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from <julian.reschke@gmx.de>) id 1p12FA-005h2Q-L0 for ietf-http-wg@w3.org; Fri, 02 Dec 2022 09:22:06 +0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=gmx.de; s=s31663417; t=1669972907; bh=7JQcsfS+YM1MU1YL6ATvtR6ryLoivb4p3MIgx9SaD0g=; h=X-UI-Sender-Class:Date:Subject:To:Cc:References:From:In-Reply-To; b=TBB3/hCl9+xegxSwuMYptAi6c5bPt303wVTlkeAPqN4LnMeyLKaiYJa6no6A+AA1Y C82apV/wYuZwGYImbIRK9VTaK9CJtCyq3ZEHpb3c6bm8b4PWw9KEcy1KL5bruXmf7O SC20D4uSn77KyDzR2jGpUhF/44JvIPFWyhq4TgUTWP2isejfvyWag84gMcPa03a0GE tavXn50sFEVTuvbZFo0rBMIDqYripUerDUCC1AYHINP4M+6RL716vQv8L9LPmDXIan I381z6msqUNCYYMxQKx1/HcXEy7VaM82Fs+K9dOPm+o3n8h07d/tvc3PBR9K2yzPwI vn+Z2EVK/wN8A==
X-UI-Sender-Class: 724b4f7f-cbec-4199-ad4e-598c01a50d3a
Received: from [10.173.37.15] ([193.105.139.131]) by mail.gmx.net (mrgmx005 [212.227.17.190]) with ESMTPSA (Nemesis) id 1MtwZ4-1oi8uN2hTg-00uFJJ; Fri, 02 Dec 2022 10:21:47 +0100
Message-ID: <4e251954-afb6-fa08-616c-db95e23ad1fd@gmx.de>
Date: Fri, 02 Dec 2022 10:21:45 +0100
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Thunderbird/102.5.0
Content-Language: en-US
To: Poul-Henning Kamp <phk@phk.freebsd.dk>, "Martin J. Dürst" <duerst@it.aoyama.ac.jp>
Cc: ietf-http-wg@w3.org
References: <2070c8e0-98d6-7b63-77c3-550bcd661397@gmx.de> <202212011735.2B1HZYgm004808@critter.freebsd.dk> <e580db7e-c0ec-0f1a-17af-5719ab09468c@gmx.de> <202212020810.2B28ALnL004331@critter.freebsd.dk> <eee5a787-da37-feb1-098a-7d2d9c0f1d37@it.aoyama.ac.jp> <202212020848.2B28mGbc004600@critter.freebsd.dk>
From: Julian Reschke <julian.reschke@gmx.de>
In-Reply-To: <202212020848.2B28mGbc004600@critter.freebsd.dk>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: quoted-printable
X-Provags-ID: V03:K1:qbQvErN0YvG41E6ggllJQ25MGJMGnW3sbugRER9atEyMRSHSlDi WvJDrWX9XdXYkczLS0EmGD2r9QTm7gsS6nHmkC+mXelzMIfN3CHcn5/VqVDHHDIodOQkXQM oARQ7jruZB65pUGY/RRkac6Q1JlSBYaEFKHEo5MNVnZBZJdT+iRlzG2LDoag1oIl3AgMeZ4 mhAbdYqGJeIC8i1qofeQA==
UI-OutboundReport: notjunk:1;M01:P0:zIWQ5Sf2joU=;EYk7fw8U1oyvQJBRjlmMp9y1cf0 d/OpulDkbS/TP4u4+AHa+kfUiim5kxBzn4cU2uCZF1BD5m2EDKUayTsEyH2njtFyE8leE81L7 AOWxf9Iwub+tRCJpI5VN209ZtdH3ksnbr9CCUKuXmH7sPdMDcjNDSBSHlMjSrLlQKGEYoesvg LEbBx/kZxd7I5MjZb7EEFjRoMLKFU9WDEKbcrAMzsiqeJHAFF1ll3wAFCztHx8XiUEbH51nlW MMI12NsAe57fsKUe4I/O7w+QY7ErnpCnXxsGgwjh2BdmCxlsFoI9tzLgICWtSA/xhEcATT1ti X5XjKA7NL8jdmij5ADbhTBWC8ZS9fGuHI/i2Mns8l+nxfnguqJskXpBk/bOEWuqPFJBms1MHS PConEimkMoXxGj9Td/rM1nOrRQ4RClsKD/ZpHxVSolMLp9ZmI31FB9tb+vVmyAv00TXwg5CrH kgLcEEYx9llBXVCfVD95lr+lY3ECqcfeL3Dw2Qth8wcNzp3t1T0RgqkKDmxYF4PMA+qpDSUND 8h2HFw4Ydy5WtBL5+YWfx0UEXDATbLzIx3Sg/4yRbsW7O79hwOr3QpFswGbf2Jet3gWrNY42U TyN02p3ZQL2Jx8/ibzVK2DP5OMxH2wWL/VFzTvboz+0a9T6Qw9OyGsGDcHPgZxUvfwPQx7EcA E5FguhxC+Zhm6p2uDvwjstfYavf8+ooe5JPaw8WMblRflNRZ7Lj7m9wtPOiwVeWiOQHL7Lk2d ZklFrF5TL8F46YSUzoP55dEXsNDWUdwYYxJUuyYkGfl1ejjFYEZ4L/vUBnsIdX1JAf6F+I6Qk Gqps9aVSrw2TluFYZ+mKcn3jHzBXNLjKn06AoD6/E+KTKCLxDBE19Vp/9RPt9NtM3nw4AhE9d ZbpUKD74CjWPFlPq7p1bj1+11J7KwEXiauB3/QEXJS+Tr8Q43haYzoEXTjoWou9T7IhALffgt i0oXWymWWmW3zRPQHG/4M4ZcU6Y=
Received-SPF: pass client-ip=212.227.15.15; envelope-from=julian.reschke@gmx.de; helo=mout.gmx.net
X-W3C-Hub-DKIM-Status: validation passed: (address=julian.reschke@gmx.de domain=gmx.de), signature is good
X-W3C-Hub-Spam-Status: No, score=-6.1
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, NICE_REPLY_A=-0.258, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_IRA=-1, W3C_WL=-1
X-W3C-Scan-Sig: mimas.w3.org 1p12FA-005h2Q-L0 0158c6fb863cf0a75fca1d5f7eabcdd5
X-Original-To: ietf-http-wg@w3.org
Subject: Re: signatures vs sf-date
Archived-At: <https://www.w3.org/mid/4e251954-afb6-fa08-616c-db95e23ad1fd@gmx.de>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/40601
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

On 02.12.2022 09:48, Poul-Henning Kamp wrote:
> --------
> Martin J. Dürst writes:
>> On 2022-12-02 17:10, Poul-Henning Kamp wrote:
>>> --------
>>> Julian Reschke writes:
>>>
>>> (Apologies for resending, I think I botched the copy to the list)
>>>
>>>> That said, LC on draft-ietf-httpapi-rfc7807bis surfaced issues with the
>>>> missing support for non-ASCII characters in sf strings, and we really
>>>> shouldn't ignore that issue.
>>>
>>> That was always intentional in sf, and I do not think we should wade into
>>> that sump *ever*.
>>
>> What sump? Non-ASCII is used all over the Web, without there being any
>> "sump".
>
> Non-Ascii is widely used in the /contents/ transported with HTTP.

Yes.

> It has never, to my knowledge, been used, much less widely used, in
> the /envelope/ used to steer that transport (ie: the HTTP-headers).

It has, for instance in Content-Disposition (which, FWIW, has an
encoding scheme for that that works over ASCII).

> The HTTP standards go out of their way to avoid it being necessary
> too, for instance, for the response status codes, the numerical
> value controls.
>
> Also: All major HTTP implementations I personally know will fail
> your HTTP traffic hard, if you send anything with the high bit set
> in the headers.

Yes. That's why we regularly see requests for a string format for use in
fields that can express non-ASCII characters without having to set that bit.

See <https://github.com/httpwg/http-extensions/issues/537>, 4 years ago.
See, in particular,
<https://github.com/httpwg/http-extensions/issues/537#issuecomment-477534651>.

> We included sf-binary specifically to stop the proliferation of
> workarounds for that state of affairs, because there are legitimate
> needs to move binary information efficiently, for instance X.509
> certificates and other cryptographic information.

Yes, sf-binary can be used for non-ASCII strings, but it's really only a
workaround. For instance, tooling doesn't know whether the contents is
supposed to be a string and thus will not decode it.

Be aware that the "tooling" argument is the *only* reason we are adding
sf-date; otherwise sf-integer would be just fine.

> If some standard draft decide that they, against all the evidence
> and common sense, absolutely need to put I18N content in a HTTP
> field, they are more than welcome to specify the use of sf-binary
> with any encoding, fixed or variable, they prefer.

Well. See
<https://www.ietf.org/archive/id/draft-ietf-httpapi-rfc7807bis-04.html#section-4>.

>> If that's the solution, then please specify it,
>
> There is no problem to be solved.

Yes, there is. Just dismissing it will not stop this discussion.

> Poul-Henning
>
> PS: I call it a sump, because even though I have had email continuously
> since 1988, there has never been /a single/ day, where I did not
> receive at least one email, with screwed up character-set encoding.

How many JSON files do you find regularly with broken strings? (Yes,
when transferred over US-ASCII transport)

Best regards, Julian

v2.23.0 | Report a Bug | By Email