IETF Logo Mail Archive

Re: RFC 9113 and :authority header field

Willy Tarreau <w@1wt.eu> Thu, 30 June 2022 17:26 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 16AC0C13A225 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 30 Jun 2022 10:26:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.661
X-Spam-Level:
X-Spam-Status: No, score=-2.661 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.25, MAILING_LIST_MULTI=-1, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9SBiqT2oC-h3 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 30 Jun 2022 10:26:38 -0700 (PDT)
Received: from lyra.w3.org (lyra.w3.org [128.30.52.18]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 283F8C13A242 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Thu, 30 Jun 2022 10:25:34 -0700 (PDT)
Received: from lists by lyra.w3.org with local (Exim 4.94.2) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1o6xs7-001Pll-5n for ietf-http-wg-dist@listhub.w3.org; Thu, 30 Jun 2022 17:22:31 +0000
Resent-Date: Thu, 30 Jun 2022 17:22:31 +0000
Resent-Message-Id: <E1o6xs7-001Pll-5n@lyra.w3.org>
Received: from titan.w3.org ([128.30.52.76]) by lyra.w3.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from <w@1wt.eu>) id 1o6xs6-001Pk8-EA for ietf-http-wg@listhub.w3.org; Thu, 30 Jun 2022 17:22:29 +0000
Received: from wtarreau.pck.nerim.net ([62.212.114.60] helo=1wt.eu) by titan.w3.org with esmtp (Exim 4.94.2) (envelope-from <w@1wt.eu>) id 1o6xs5-007Onp-31 for ietf-http-wg@w3.org; Thu, 30 Jun 2022 17:22:29 +0000
Received: (from willy@localhost) by pcw.home.local (8.15.2/8.15.2/Submit) id 25UHMENq021255; Thu, 30 Jun 2022 19:22:14 +0200
Date: Thu, 30 Jun 2022 19:22:14 +0200
From: Willy Tarreau <w@1wt.eu>
To: Stefan Eissing <stefan@eissing.org>
Cc: "tatsuhiro.t@gmail.com" <tatsuhiro.t@gmail.com>, HTTP <ietf-http-wg@w3.org>
Message-ID: <20220630172214.GA21109@1wt.eu>
References: <CAPyZ6=+q+MoOOwoCxbtFjt+gqsjHBqTzz9KXNVcs3EP-4VFp=Q@mail.gmail.com> <D7142A8A-5B80-46F5-A653-2307EE2DC5D8@gbiv.com> <CAPyZ6=LCSDAsPoFCQ2cRO-i+dpo5vnp2L5A7ZLw8dvRtDs6HUg@mail.gmail.com> <20220629055254.GA18881@1wt.eu> <697C5255-A33F-4DEE-AA7A-236DC7481EFA@eissing.org> <20220630071314.GA20634@1wt.eu> <392D0C8A-4EBC-4DD9-8C84-F06E837177BC@eissing.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <392D0C8A-4EBC-4DD9-8C84-F06E837177BC@eissing.org>
User-Agent: Mutt/1.10.1 (2018-07-13)
Received-SPF: pass client-ip=62.212.114.60; envelope-from=w@1wt.eu; helo=1wt.eu
X-W3C-Hub-Spam-Status: No, score=-4.9
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, W3C_AA=-1, W3C_IRA=-1, W3C_WL=-1
X-W3C-Scan-Sig: titan.w3.org 1o6xs5-007Onp-31 076a1ca32adffef8e2f8a0c3c83e6cb0
X-Original-To: ietf-http-wg@w3.org
Subject: Re: RFC 9113 and :authority header field
Archived-At: <https://www.w3.org/mid/20220630172214.GA21109@1wt.eu>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/40227
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

On Thu, Jun 30, 2022 at 04:50:48PM +0200, Stefan Eissing wrote:
> > Am 30.06.2022 um 09:13 schrieb Willy Tarreau <w@1wt.eu>:
> > 
> > No, this one should not forge a :authority where there was not any,
> > it's the case that's covered by the "unless" rule in the spec, so
> > you'd get this:
> > 
> > H1 GET / HTTP/1.1, Host: example.com
> > -> H2 host: example.com, :scheme: <context>
> > -> H0 GET / HTTP/1.0, Host: example.com
> > -> H1 GET / HTTP/1.1, Host: example.com
> > 
> 
> I see. That is what you described as an "internal flag" to preserve that
> information in a gateway. And what is causing the problems at some CDNs
> (missing :authority). Thanks.
> 
> Well, since Apache httpd misses that flag our http2 proxy always sends
> :authority. I think I'll leave it that way until there is more acceptance of
> such a change.

That's reasonable. We've been doing this for quite some time (3 years
IIRC) and only got a few complaints, because you need to have another
H2->H1 gateway behind your reverse-proxy so that it starts to make a
difference, and when you're in infrastructures that start to chain
multiple H2 gateways, most often your final endpoints are HTTP/1.1
compliant and do not have issues with this.

Cheers,
Willy

v2.23.0 | Report a Bug | By Email