RE: Server Push Error Codes

Mike Bishop <Michael.Bishop@microsoft.com> Wed, 24 August 2016 18:59 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6901312B056 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 24 Aug 2016 11:59:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.568
X-Spam-Level:
X-Spam-Status: No, score=-7.568 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-0.548, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CtqB6-pXtS1p for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 24 Aug 2016 11:59:13 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C641212D685 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Wed, 24 Aug 2016 11:59:08 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.80) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1bcdIC-0002oI-Ek for ietf-http-wg-dist@listhub.w3.org; Wed, 24 Aug 2016 18:52:52 +0000
Resent-Date: Wed, 24 Aug 2016 18:52:52 +0000
Resent-Message-Id: <E1bcdIC-0002oI-Ek@frink.w3.org>
Received: from maggie.w3.org ([128.30.52.39]) by frink.w3.org with esmtps (TLS1.2:DHE_RSA_AES_128_CBC_SHA1:128) (Exim 4.80) (envelope-from <Michael.Bishop@microsoft.com>) id 1bcdHz-0002lu-Ni for ietf-http-wg@listhub.w3.org; Wed, 24 Aug 2016 18:52:39 +0000
Received: from mail-co1nam03on0102.outbound.protection.outlook.com ([104.47.40.102] helo=NAM03-CO1-obe.outbound.protection.outlook.com) by maggie.w3.org with esmtps (TLS1.0:RSA_AES_256_CBC_SHA1:256) (Exim 4.80) (envelope-from <Michael.Bishop@microsoft.com>) id 1bcdHv-0007oe-Aa for ietf-http-wg@w3.org; Wed, 24 Aug 2016 18:52:38 +0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=I/IZH0GprUvEr2vhiKIp8C4w/k9UjKW1AibZcQkqNGM=; b=iKCCkJIZOa+RxYAhD2w+5FOuDv52KLUQuYovIujxStfk8Gdha3FQjbo0S7w0IeM1m3oMJrJFiQyQ9SB8+MzvRQYZfC9yBVW6YtZYKDWgQZel+5mIOUlsTtw/YmKvIWq08Jqq/+wTMy+empZC3oP8Ivg7Fb8ef7HMMObmIB7C/fk=
Received: from BY1PR03MB1338.namprd03.prod.outlook.com (10.162.109.20) by BY1PR03MB1340.namprd03.prod.outlook.com (10.162.109.22) with Microsoft SMTP Server (version=TLS1_0, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P384) id 15.1.587.13; Wed, 24 Aug 2016 18:52:06 +0000
Received: from BY1PR03MB1338.namprd03.prod.outlook.com ([10.162.109.20]) by BY1PR03MB1338.namprd03.prod.outlook.com ([10.162.109.20]) with mapi id 15.01.0587.013; Wed, 24 Aug 2016 18:52:07 +0000
From: Mike Bishop <Michael.Bishop@microsoft.com>
To: Patrick McManus <mcmanus@ducksong.com>, Mark Nottingham <mnot@mnot.net>
CC: Martin Thomson <martin.thomson@gmail.com>, HTTP Working Group <ietf-http-wg@w3.org>
Thread-Topic: Server Push Error Codes
Thread-Index: AQHR/cBX5p+UlkNiwEu6R8KJf0vNK6BXlb4AgAACoYCAAKz4AIAALt1A
Date: Wed, 24 Aug 2016 18:52:07 +0000
Message-ID: <BY1PR03MB133892E1E0F4B2DF5BB87D1D87EA0@BY1PR03MB1338.namprd03.prod.outlook.com>
References: <077CD10C-E189-47B0-A221-3EA270B2B55D@mnot.net> <CABkgnnVE8OBy_oxbw86ZNf0AHnywmTPAgEFNm8w9sSu-Q0FXKw@mail.gmail.com> <2099D099-70BC-43E2-A3BD-2891C87FE74A@mnot.net> <CAOdDvNqrjyS99S_O01kgDMzGTwRd+Y4tmE=HVd4v=cD4fffiOQ@mail.gmail.com>
In-Reply-To: <CAOdDvNqrjyS99S_O01kgDMzGTwRd+Y4tmE=HVd4v=cD4fffiOQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Michael.Bishop@microsoft.com;
x-originating-ip: [2001:4898:80e8:9::390]
x-ms-office365-filtering-correlation-id: 8010decb-74ad-4928-4a5a-08d3cc4fbf7f
x-microsoft-exchange-diagnostics: 1; BY1PR03MB1340; 6:B6L4gNMU5v+7aX6/qS0AG5ILSZW3eoCZpuHwm0g+Rw22LCTdMqVn2N6rpel12auFVuIOoIcUnhMZ7dDYJXJrZ27vO48l4drc77V/uUi9oqhblOe87elxippKHW+dwk2g/3rNWoIQYAfEGXd7LlWSP4ue4cbN2curUm3sA/H2q1p/Q7qS4+S1hiUyYI6jUsbBPGM506YUi6ryZ6ZYblHGC/CWLRHX8CVTk0wAXPftxoUTYE5vnlm2kt4l4LjBQ4pE0vJVXdrwgaZCfGB1kBkuUOp3upC7hG8MdGL7gTs6IQUWRewWOSCbXM3SXSoaEwoJjtXGHgGVKLgam9gUitl0sg==; 5:QzzlrIV2ani7P482VdGHvl+tYO8S7MESc0ohWXeZsikFTgnIDRVKtqtIO+DTnNxx7HZA5+2W0gt0j2OSKsb9QZXeSqBoaMldDi6gzE/MPGXkBdZCPm1kXf1z74dzOybFmtLmxYZbpzKrkw/r9ljcng==; 24:F3Wej81wT394pg7nGbk1Q27RQTqlCvPkOcdRSW9ey0JD+KzvgpaH9kno9hOHoQReBdJ8PYZRmz82LV5XNm5LP1quIxUpjK4UB/IP+GhLpzs=; 7:VVtKS+/FAdwPZ2vhfsIVmLRtv2GYfG79yxNsKAENf9unpQq76SJw1RUvLBpbn2C3lXZxe5D8/pjMU/FtDEazKtFyKCGfa8829HZfaCoBhMGl0iIwQong3seqhKxDm2Nzoie9qwwXIrWgJBM2+ADDD30zhHJy6Nk6L7dMxGEp03/gEoQzils6Ci4xEG0WbubKq49+OzvldyFzKc9fN6rpw3rsn1ryyqNI1HXADF+sIMlVBOHGXMZ81OS1VuwaL0U7
x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:BY1PR03MB1340;
x-microsoft-antispam-prvs: <BY1PR03MB1340525837C86F6E0650591C87EA0@BY1PR03MB1340.namprd03.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(158342451672863)(21748063052155);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(61425038)(6040176)(601004)(2401047)(8121501046)(5005006)(3002001)(10201501046)(6055026)(61426038)(61427038); SRVR:BY1PR03MB1340; BCL:0; PCL:0; RULEID:; SRVR:BY1PR03MB1340;
x-forefront-prvs: 0044C17179
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(6009001)(7916002)(189002)(199003)(377454003)(3480700004)(8990500004)(122556002)(7846002)(81156014)(8676002)(77096005)(106356001)(81166006)(7736002)(8936002)(74316002)(15975445007)(10290500002)(2900100001)(106116001)(93886004)(5005710100001)(87936001)(2950100001)(105586002)(97736004)(50986999)(7696003)(10400500002)(19580395003)(9686002)(54356999)(5002640100001)(16236675004)(92566002)(2906002)(19625215002)(86612001)(76576001)(189998001)(5660300001)(101416001)(4326007)(68736007)(76176999)(586003)(5001770100001)(33656002)(3660700001)(6116002)(102836003)(790700001)(19300405004)(99286002)(19580405001)(10090500001)(86362001)(3280700002)(3826002); DIR:OUT; SFP:1102; SCL:1; SRVR:BY1PR03MB1340; H:BY1PR03MB1338.namprd03.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_BY1PR03MB133892E1E0F4B2DF5BB87D1D87EA0BY1PR03MB1338namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Aug 2016 18:52:07.5754 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY1PR03MB1340
Received-SPF: pass client-ip=104.47.40.102; envelope-from=Michael.Bishop@microsoft.com; helo=NAM03-CO1-obe.outbound.protection.outlook.com
X-W3C-Hub-Spam-Status: No, score=-4.0
X-W3C-Hub-Spam-Report: AWL=-2.454, BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, W3C_NW=0.5
X-W3C-Scan-Sig: maggie.w3.org 1bcdHv-0007oe-Aa cd38a3deb093e58bb5b008ab14638112
X-Original-To: ietf-http-wg@w3.org
Subject: RE: Server Push Error Codes
Archived-At: <http://www.w3.org/mid/BY1PR03MB133892E1E0F4B2DF5BB87D1D87EA0@BY1PR03MB1338.namprd03.prod.outlook.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/32360
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

Agree on the specific tracking element.  Unauthoritative gets a little hazier when we start dealing with secondary certs, however.  As Mark/Martin have alluded to, you shouldn’t get into the situation where the server believes that the client trusts it for an authority but the client doesn’t.  But if it happens, you want a way to identify that it’s happening so you can start debugging why.  (I’ll note that the certificates draft doesn’t currently define any HTTP/2 error codes for “cert doesn’t match the requested name,” which is probably an oversight.  The closest is UNSUPPORTED_CERTIFICATE, saying that the certificate did not contain required extensions, which could include the name.)

From: Patrick McManus [mailto:mcmanus@ducksong.com]
Sent: Wednesday, August 24, 2016 8:59 AM
To: Mark Nottingham <mnot@mnot.net>
Cc: Martin Thomson <martin.thomson@gmail.com>; HTTP Working Group <ietf-http-wg@w3.org>
Subject: Re: Server Push Error Codes

I'm not real enthusiastic about push_is_cached.. it specifically leaks a tracker. Admittedly its pretty easy to infer this anyway but I'd look harder at it before codifying
as for push_unauthoritative, that's already a protocol error. I'm not sure we need fine grained feedback to tune algorithms etc with.. you're just not allowed to do that so it should be rare. I'm not opposed though.
I would be interested in both CONTENT_TYPE_NOT_SUPPORTED _and_ CONTENT_ENCODING_NOT_SUPPORTED .. I think brotli and webp are the exemplars. CT could be hard to figure out, but might be worth special casing the obvious stuff.