Re: alt-svc and proxies

Martin Thomson <martin.thomson@gmail.com> Wed, 06 January 2016 00:33 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2087E1B2DB7 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 5 Jan 2016 16:33:45 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.012
X-Spam-Level:
X-Spam-Status: No, score=-7.012 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id r8CEG3vqrTNM for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 5 Jan 2016 16:33:43 -0800 (PST)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D0A0F1A9100 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Tue, 5 Jan 2016 16:33:43 -0800 (PST)
Received: from lists by frink.w3.org with local (Exim 4.80) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1aGbzE-0001nq-TM for ietf-http-wg-dist@listhub.w3.org; Wed, 06 Jan 2016 00:30:00 +0000
Resent-Date: Wed, 06 Jan 2016 00:30:00 +0000
Resent-Message-Id: <E1aGbzE-0001nq-TM@frink.w3.org>
Received: from maggie.w3.org ([128.30.52.39]) by frink.w3.org with esmtps (TLS1.2:DHE_RSA_AES_128_CBC_SHA1:128) (Exim 4.80) (envelope-from <martin.thomson@gmail.com>) id 1aGbzB-0001ls-QA for ietf-http-wg@listhub.w3.org; Wed, 06 Jan 2016 00:29:57 +0000
Received: from mail-io0-f174.google.com ([209.85.223.174]) by maggie.w3.org with esmtps (TLS1.2:RSA_ARCFOUR_SHA1:128) (Exim 4.80) (envelope-from <martin.thomson@gmail.com>) id 1aGbz7-0001Tg-EJ for ietf-http-wg@w3.org; Wed, 06 Jan 2016 00:29:56 +0000
Received: by mail-io0-f174.google.com with SMTP id q21so203584417iod.0 for <ietf-http-wg@w3.org>; Tue, 05 Jan 2016 16:29:32 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; bh=+ct9SIyDMXCZRRtJLJ0XcDAKQJ+LOGwh9UYVuWTORq4=; b=jX48+bGg50HhZ9BUeSEmaRaMJu4UjnZLl2eM1T/gBgu+RmoS6sR9XXomIm8YvsK4y3 c2V1FeXPeWmZj4Cryq+hl44lNc7CPLVxLKuXeuWtBfSO+uWlqAdG1qp22HSA3bzFoU4b USyMgpUFyEohkjOT2TnZemkkqh682ArQmmb/gcnUVUZ/usUogchKxW9Yml7UP9ClQrtV HdS3jWrS+ZZxFf0uCPbZ55lGc8G4SGaszL8DZP8wPBDuM2Q8Jh44GqAcui4MuSX3iBns mPgheAf2GEa+nfoIqSgBlHyQS6vlBVC7ADEfgvahH8z84T+C4SaWJQEzXnZ2KwK/wSkB AarA==
MIME-Version: 1.0
X-Received: by 10.107.33.12 with SMTP id h12mr32441248ioh.108.1452040166882; Tue, 05 Jan 2016 16:29:26 -0800 (PST)
Received: by 10.36.149.130 with HTTP; Tue, 5 Jan 2016 16:29:26 -0800 (PST)
In-Reply-To: <2C515BE8694C6F4B9B6A578BCAC32E2F6D53A153@MBX021-W3-CA-2.exch021.domain.local>
References: <2C515BE8694C6F4B9B6A578BCAC32E2F6D538FCC@MBX021-W3-CA-2.exch021.domain.local> <CABkgnnXCsjxvNN9F+4PDwrenRg8Or_b7Sp19TRXYbUbawmN+xg@mail.gmail.com> <2C515BE8694C6F4B9B6A578BCAC32E2F6D53A153@MBX021-W3-CA-2.exch021.domain.local>
Date: Wed, 06 Jan 2016 11:29:26 +1100
Message-ID: <CABkgnnUHTstLV8h-w1pjQ1k=dhy8+6q0w-bCnK_8Qy9j0hThUg@mail.gmail.com>
From: Martin Thomson <martin.thomson@gmail.com>
To: Piotr Galecki <piotr_galecki@affirmednetworks.com>
Cc: HTTP Working Group <ietf-http-wg@w3.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Received-SPF: pass client-ip=209.85.223.174; envelope-from=martin.thomson@gmail.com; helo=mail-io0-f174.google.com
X-W3C-Hub-Spam-Status: No, score=-7.9
X-W3C-Hub-Spam-Report: AWL=1.837, BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, W3C_AA=-1, W3C_DB=-1, W3C_IRA=-1, W3C_IRR=-3, W3C_WL=-1
X-W3C-Scan-Sig: maggie.w3.org 1aGbz7-0001Tg-EJ 1ea1d6b7f5df216c528cb0bf3cc007d2
X-Original-To: ietf-http-wg@w3.org
Subject: Re: alt-svc and proxies
Archived-At: <http://www.w3.org/mid/CABkgnnUHTstLV8h-w1pjQ1k=dhy8+6q0w-bCnK_8Qy9j0hThUg@mail.gmail.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/30851
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

On 5 January 2016 at 17:01, Piotr Galecki
<piotr_galecki@affirmednetworks.com> wrote:
> Even though it is not required Forward Proxy could still strip Alt-Svc header since the header has no use to user agent
> and it could only have undesirable consequences if user-agent incorrectly implements alt services.

A proxy can (and likely will) strip the header field.  However, we
can't guarantee it.  That's why we have the text I cited.

Other than that, there is nothing we can do about people who decide to
ignore specs and do what they please.

> The draft does not clarify that origin server should be used for proxy selection.
> Perhaps the following would make it more clear?
> "A client SHOULD use origin, rather than alternative service, when evaluating configuration rules for proxy selection. If a proxy was selected for a given request the client SHOULD NOT directly connect to an alternative service for this request, but instead route it through that proxy."

That's probably not an improvement.  We don't want to start to create
rules about proxy selection here, which your text does.  And I
actually think that proxy selection might be improved by having an
alt-svc input.