IETF Logo Mail Archive

Re: HTTP router point-of-view concerns

Michael Sweet <msweet@apple.com> Fri, 12 July 2013 12:42 UTC

Return-Path: <ietf-http-wg-request@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6C28521F9A29 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Fri, 12 Jul 2013 05:42:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.599
X-Spam-Level:
X-Spam-Status: No, score=-10.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ibpXB4GUrFLu for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Fri, 12 Jul 2013 05:42:42 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) by ietfa.amsl.com (Postfix) with ESMTP id D3EA811E8105 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Fri, 12 Jul 2013 05:42:38 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.72) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1UxcfT-0001pO-GS for ietf-http-wg-dist@listhub.w3.org; Fri, 12 Jul 2013 12:41:47 +0000
Resent-Date: Fri, 12 Jul 2013 12:41:47 +0000
Resent-Message-Id: <E1UxcfT-0001pO-GS@frink.w3.org>
Received: from maggie.w3.org ([128.30.52.39]) by frink.w3.org with esmtp (Exim 4.72) (envelope-from <msweet@apple.com>) id 1UxcfK-0001oa-Mb for ietf-http-wg@listhub.w3.org; Fri, 12 Jul 2013 12:41:38 +0000
Received: from mail-out.apple.com ([17.151.62.50]) by maggie.w3.org with esmtps (TLS1.0:RSA_ARCFOUR_MD5:16) (Exim 4.72) (envelope-from <msweet@apple.com>) id 1UxcfJ-0008Ke-DG for ietf-http-wg@w3.org; Fri, 12 Jul 2013 12:41:38 +0000
MIME-version: 1.0
Content-transfer-encoding: 7bit
Content-type: text/plain; CHARSET="US-ASCII"
Received: from relay6.apple.com ([17.128.113.90]) by mail-out.apple.com (Oracle Communications Messaging Server 7u4-23.01 (7.0.4.23.0) 64bit (built Aug 10 2011)) with ESMTP id <0MPT00843PW4DJW1@mail-out.apple.com> for ietf-http-wg@w3.org; Fri, 12 Jul 2013 05:40:52 -0700 (PDT)
X-AuditID: 1180715a-b7f306d000004235-43-51dff9540b10
Received: from kencur (kencur.apple.com [17.151.62.38]) (using TLS with cipher RC4-MD5 (128/128 bits)) (Client did not present a certificate) by relay6.apple.com (Apple SCV relay) with SMTP id E2.CA.16949.459FFD15; Fri, 12 Jul 2013 05:40:52 -0700 (PDT)
Received: from [172.16.42.12] (24-231-68-177.eastlink.ca [24.231.68.177]) by kencur.apple.com (Oracle Communications Messaging Server 7u4-24.01(7.0.4.24.0) 64bit (built Nov 17 2011)) with ESMTPSA id <0MPT00H21PVZO640@kencur.apple.com> for ietf-http-wg@w3.org; Fri, 12 Jul 2013 05:40:52 -0700 (PDT)
References: <CA+qvzFPUpcm6kUtJx+rTw8Dpp4Gtx4Bmr3XPDhjNsjchUfN9_w@mail.gmail.com> <51DE1E32.9010801@treenet.co.nz> <CAP+FsNdcYhA=V5Z+zbt70b5e7WmcmXgjG5M9L3vfXeXfTwmRnw@mail.gmail.com> <51DE327C.7010901@treenet.co.nz> <CABkgnnXeqD6wh0dcJ1Dz=4PLAJNkDeGcCuzMr9ATd_7xS7nbGQ@mail.gmail.com> <CABP7RbcUkLf3CTAB4jwicnsiKWLGVY6=hX0k=0256SR_gcVt9A@mail.gmail.com> <092D65A8-8CB7-419D-B6A4-77CAE40A0026@gmail.com> <3835.1373612286@critter.freebsd.dk> <CD9E163F-1225-4DA8-9982-8BDBD16B1051@mnot.net> <1772.1373629495@critter.freebsd.dk>
In-reply-to: <1772.1373629495@critter.freebsd.dk>
Message-id: <C0C65ACC-673E-4E07-B2D0-B84723755E6F@apple.com>
Cc: Mark Nottingham <mnot@mnot.net>, Sam Pullara <spullara@gmail.com>, James M Snell <jasnell@gmail.com>, Martin Thomson <martin.thomson@gmail.com>, Amos Jeffries <squid3@treenet.co.nz>, HTTP Working Group <ietf-http-wg@w3.org>
X-Mailer: iPad Mail (10B329)
From: Michael Sweet <msweet@apple.com>
Date: Fri, 12 Jul 2013 08:40:48 -0400
To: Poul-Henning Kamp <phk@phk.freebsd.dk>
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFlrOLMWRmVeSWpSXmKPExsUiON1OTTfk5/1Ag3/nxCwOt8xicmD0ODpv P2sAYxSXTUpqTmZZapG+XQJXxp8X7AVNwhU7jh9hb2A8wdfFyMkhIWAicbD5BzuELSZx4d56 ti5GLg4hgSYmiWffjrJCOBuZJP4tWckI4SxgkfhwawULSAuvgLjE66NTGEFsTgFDiYbrr5lA bGYBLYn1O49D2doST95dYIWot5E486wTbAWzwHNGiYsHT7BB7JaR2Lz9MdgdbAJqEr8n9YE1 CAvoS0z8cwAsziKgKrH33A+wxSJAC9bOPss0gVFgFpI7ZiHZPQvJ7gWMzKsYBYpScxIrzfQS CwpyUvWS83M3MYKCr6Ewagdjw3KrQ4wCHIxKPLyN1+4FCrEmlhVX5h5ilOBgVhLhvWl2P1CI NyWxsiq1KD++qDQntfgQozQHi5I4L+/ju4FCAumJJanZqakFqUUwWSYOTqkGRrUPdxlv8Phw HQn///zvLL8nnYYnzPiXyrmY58951vmqfZmDnkJQu+x2PVOFuU0xor27pD+p8X9n38PoEDFX Vzqjas726Qvii5ZKGva8e7i1w4qp//IqnYmMMtNPNHdHpuzzbT0vN5cjc/1y+5MT7Juvnf+q 2aSbKejZe+T6+uhdszQv/Z3qqMRSnJFoqMVcVJwIAAKZ8U86AgAA
Received-SPF: pass client-ip=17.151.62.50; envelope-from=msweet@apple.com; helo=mail-out.apple.com
X-W3C-Hub-Spam-Status: No, score=-5.3
X-W3C-Hub-Spam-Report: RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.303, SPF_PASS=-0.001
X-W3C-Scan-Sig: maggie.w3.org 1UxcfJ-0008Ke-DG 75fecd1bae55ad54f938d9e1b389ad8c
X-Original-To: ietf-http-wg@w3.org
Subject: Re: HTTP router point-of-view concerns
Archived-At: <http://www.w3.org/mid/C0C65ACC-673E-4E07-B2D0-B84723755E6F@apple.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/18722
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

Then just add the User-Agent and Server values to the settings frames the client and server exchange?


Sent from my iPad

On 2013-07-12, at 7:44 AM, Poul-Henning Kamp <phk@phk.freebsd.dk> wrote:

> In message <CD9E163F-1225-4DA8-9982-8BDBD16B1051@mnot.net>, Mark Nottingham wri
> tes:
> 
>> This has been brought up a number of times. I think what we need is a =
>> concrete proposal *with* a detailed plan for a workable transition to =
>> the new mechanism -- which seems to be the (or at least one) sticking =
>> point whenever this comes up.
> 
> I have given a concrete example multiple times, it's very simple:
> 
>    The client always sends along a session-identifier of N (128?)
>    bits.
> 
>    If the first bit is zero, this is an anonymous, transient
>    session, not (to be) associated with any other session.
> 
>    If the first bit is one, this is a persistent session
>    identifier, which the server can use to look up any relevant
>    state or information from previous instances of this
>    session, in its local database.
> 
>    This replaces the Cookie: and Set-Cookie: headers, which
>    SHALL NOT be sent in the HTTP/2.0 protocol.
> 
> Advantages:
> 
>    We get a fixed size session-identifier for HTTP routers to
>    use for flow-routing.
> 
>    We get an actual (client controlled) session-concept, rather
>    than all sorts of ad-hoc simulations with cookies.
> 
>    Data with privacy-concerns are stored on the server not on
>    random clients the user happens to borrow or use.
> 
>    The overhead of encrypting and signing the data in cookies
>    is avoided, since they are stored on the server side where
>    nobody can fudge them.
> 
> Backwards compatibility:
> 
>    It should be obvious that simulating the Cookie concept for
>    framework compatibility on the server side is a trivial
>    matter of programming:  Rather than send set-cookies, write
>    them to a database, indexed by the session-id.  Rather than
>    receive Cookie: headers, look them up in the database.
> 
> There, solved.
> 
> Again.
> 
> -- 
> Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
> phk@FreeBSD.ORG         | TCP/IP since RFC 956
> FreeBSD committer       | BSD since 4.3-tahoe    
> Never attribute to malice what can adequately be explained by incompetence.
>

v2.23.0 | Report a Bug | By Email