IETF Logo Mail Archive

Re: [Technical Errata Reported] RFC7230 (4189)

Willy Tarreau <w@1wt.eu> Wed, 22 April 2015 15:07 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 514CF1A03AB for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 22 Apr 2015 08:07:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.912
X-Spam-Level:
X-Spam-Status: No, score=-6.912 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id x7AJSr52GyCw for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 22 Apr 2015 08:07:33 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2EE0B1A03FF for <httpbisa-archive-bis2Juki@lists.ietf.org>; Wed, 22 Apr 2015 08:07:28 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.80) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1YkwCC-0005Bx-Se for ietf-http-wg-dist@listhub.w3.org; Wed, 22 Apr 2015 15:04:12 +0000
Resent-Date: Wed, 22 Apr 2015 15:04:12 +0000
Resent-Message-Id: <E1YkwCC-0005Bx-Se@frink.w3.org>
Received: from lisa.w3.org ([128.30.52.41]) by frink.w3.org with esmtp (Exim 4.80) (envelope-from <w@1wt.eu>) id 1YkwC8-0005Aq-Kd for ietf-http-wg@listhub.w3.org; Wed, 22 Apr 2015 15:04:08 +0000
Received: from wtarreau.pck.nerim.net ([62.212.114.60] helo=1wt.eu) by lisa.w3.org with esmtp (Exim 4.80) (envelope-from <w@1wt.eu>) id 1YkwC7-00039w-K8 for ietf-http-wg@w3.org; Wed, 22 Apr 2015 15:04:08 +0000
Received: (from willy@localhost) by pcw.home.local (8.14.3/8.14.3/Submit) id t3MF3TTG024009; Wed, 22 Apr 2015 17:03:29 +0200
Date: Wed, 22 Apr 2015 17:03:29 +0200
From: Willy Tarreau <w@1wt.eu>
To: Zhong Yu <zhong.j.yu@gmail.com>
Cc: Julian Reschke <julian.reschke@gmx.de>, "Roy T. Fielding" <fielding@gbiv.com>, Barry Leiba <barryleiba@computer.org>, RFC Errata System <rfc-editor@rfc-editor.org>, Pete Resnick <presnick@qti.qualcomm.com>, Mark Nottingham <mnot@mnot.net>, Simon Schüppel <simon.schueppel@googlemail.com>, HTTP Working Group <ietf-http-wg@w3.org>
Message-ID: <20150422150329.GG23949@1wt.eu>
References: <20141126195639.B3D5C181CE7@rfc-editor.org> <5476D0BC.70905@greenbytes.de> <CALaySJJh-9w2mnT9fV9dxaOJ_Tq=ipvV7nbNbEqY+g_6ppJjTg@mail.gmail.com> <723A86CD-6369-4A8A-B277-CBDA4439DCE9@gbiv.com> <55364CFE.1000007@gmx.de> <CACuKZqEUtPmph1QFgS8HAOvnxtpYm7eBNra9TwCCrOuNy0xGTg@mail.gmail.com> <20150422043125.GC23762@1wt.eu> <CACuKZqGWi5A_nGxU2L+T3rZGEM6yx5XzwUtP=r2qQ128jkHkCQ@mail.gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <CACuKZqGWi5A_nGxU2L+T3rZGEM6yx5XzwUtP=r2qQ128jkHkCQ@mail.gmail.com>
User-Agent: Mutt/1.4.2.3i
Received-SPF: pass client-ip=62.212.114.60; envelope-from=w@1wt.eu; helo=1wt.eu
X-W3C-Hub-Spam-Status: No, score=-4.0
X-W3C-Hub-Spam-Report: AWL=-2.023, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: lisa.w3.org 1YkwC7-00039w-K8 b36890e2459bc85c623be7b739fe20d7
X-Original-To: ietf-http-wg@w3.org
Subject: Re: [Technical Errata Reported] RFC7230 (4189)
Archived-At: <http://www.w3.org/mid/20150422150329.GG23949@1wt.eu>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/29372
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

On Wed, Apr 22, 2015 at 08:55:06AM -0500, Zhong Yu wrote:
> Well, Willy you are right that we cannot change a rule that has been
> in effect for 20 years. If a parser doesn't follow the rule, it is a
> bug, and it needs to be fixed.

Yes. And RFC7230 says that we should not emit folded header fields anymore
IIRC so we don't need to recommend how to emit them either.

> Out of curiosity, I constructed the following response, and tested on
> 5 major browsers
> 
> HTTP/1.1 200 OK\r\n
> Connection: close\r\n
> Content-Type: text/plain;charset=UTF-8\r\n
> <SP>\r\n
> Server: test-folding\r\n
> \r\n
> 123456789
> 
> IE displays the response as
> 
> Server: test-folding\r\n
> \r\n
> 123456789
> 
> That doesn't seem right.

Indeed, that deserves a bug report. I don't know if that can be
used as a content smuggling attack to send improper responses in
data that have not been validated by an upstream proxy for example
and which would be parsed as the response to the second request.
That said, for those to appear like a valid response, the upstream
proxy would need to accept something with spaces in the header
names, which is unlikely to happen if it behaves properly on
header folding (in general they're either very lax or very strict).

Thanks,
Willy

v2.39.1 | Report a Bug | By Email | System Status