Re: Design Issue: Frame Size Items
William Chan (陈智昌) <willchan@chromium.org> Tue, 07 May 2013 20:57 UTC
Return-Path: <ietf-http-wg-request@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D26E021F92F5 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 7 May 2013 13:57:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.676
X-Spam-Level:
X-Spam-Status: No, score=-9.676 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TzBjw5o09G8k for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 7 May 2013 13:57:50 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) by ietfa.amsl.com (Postfix) with ESMTP id 6523621F92EC for <httpbisa-archive-bis2Juki@lists.ietf.org>; Tue, 7 May 2013 13:57:50 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.72) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1UZowf-0005E3-6F for ietf-http-wg-dist@listhub.w3.org; Tue, 07 May 2013 20:57:09 +0000
Resent-Date: Tue, 07 May 2013 20:57:09 +0000
Resent-Message-Id: <E1UZowf-0005E3-6F@frink.w3.org>
Received: from maggie.w3.org ([128.30.52.39]) by frink.w3.org with esmtp (Exim 4.72) (envelope-from <willchan@google.com>) id 1UZowU-0005DB-WA for ietf-http-wg@listhub.w3.org; Tue, 07 May 2013 20:56:59 +0000
Received: from mail-qc0-f176.google.com ([209.85.216.176]) by maggie.w3.org with esmtps (TLS1.0:RSA_ARCFOUR_SHA1:16) (Exim 4.72) (envelope-from <willchan@google.com>) id 1UZowU-0002ol-0q for ietf-http-wg@w3.org; Tue, 07 May 2013 20:56:58 +0000
Received: by mail-qc0-f176.google.com with SMTP id a11so568221qcx.21 for <ietf-http-wg@w3.org>; Tue, 07 May 2013 13:56:32 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:x-received:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type; bh=Ghd2tVOXPVlKA6UOA5HmzaG6O7//FHqmTKDorOyw4Dg=; b=Y08JvcTp27+O4ga0ZBN4BK7XdwjXdvbPGu18tvTkhySngppAxo1xtBiOXZ6lCixceM fZ8L1G9YoUhjlEMiUiOzUwZL+6OjNLpTIM35rttTQzxXI/CzQ8VhyqbkJfmIEcc3W946 X/hC9fg1dL7d6aD/ydPdTtW9j5f9CqB/LqDVVSeM8vyDk0IWsVL/zHl0mlGFylabC/sm 7cB1AMasRKUVqj0edR3hz7ReuQg2QHYYW7NbH4PREdq3F5Z8AoNTsn7u5JhZGd1barAC kWvFhGJYeU+6bPNgkj2jPe1QPo9VRZ+EkFSfQW7xLJFKVPJ4nBUasHUlS5sLUv3PSnDl rTqw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; h=mime-version:x-received:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type; bh=Ghd2tVOXPVlKA6UOA5HmzaG6O7//FHqmTKDorOyw4Dg=; b=mew1mm7LNBF8SXr7k5yyUe5wzZkX86jwfiuXPQXeTeXbYVCeU7YnBWgjqnbUiEROIa cBJJNCOXacZtQG4EOEOzOjdtJaPL/wdnQSHxHk46J+HYmmV6/BM64mOEx9no/OLoGCu7 j2LhEM+NIjzCqdjzK5G3wwGFR6YxIT4RhLJg8=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:x-received:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type :x-gm-message-state; bh=Ghd2tVOXPVlKA6UOA5HmzaG6O7//FHqmTKDorOyw4Dg=; b=hPsWZpBlqDpYwz18IwpZgJ317ebPhPMP9jJywL129LYYqwTXoM8Pro0CiVzNlocEnh Uh3ae/zwDli2Ls7Dkv8Cryw3ICExAJTbEljgY9IP+8syfiG98zVrsWdhyWizTjizUKqP Yf0aye+tDWYStnXGkFuOFeAIcUWwjLlbvvagN34q7RH9/DsFuS+O9kzmLI6NKVA372lN ckobcEIecSS5n94W7aXOgRbHLiKeqPuNmzjabtqLWvWqFnAiPM0nlGF9T4JJiAJ+OP3o pZgpNV/9NlEAfCtsHvlGQzh7miiVHrVBIvaK/VBA6OUajNh9GnP5evyXlwEw8qf2W6PQ XGXw==
MIME-Version: 1.0
X-Received: by 10.224.57.82 with SMTP id b18mr2952223qah.36.1367960191960; Tue, 07 May 2013 13:56:31 -0700 (PDT)
Sender: willchan@google.com
Received: by 10.229.180.4 with HTTP; Tue, 7 May 2013 13:56:31 -0700 (PDT)
In-Reply-To: <94923.1367959316@critter.freebsd.dk>
References: <CABP7RbcUDvmYjUjE703UTgOcYTSLBohR7EFw2Rb9u-EDkB7htg@mail.gmail.com> <abb2201dec3a405aa735f1d09a7a8404@BY2PR03MB025.namprd03.prod.outlook.com> <94923.1367959316@critter.freebsd.dk>
Date: Tue, 07 May 2013 17:56:31 -0300
X-Google-Sender-Auth: QEZlxTN1J-t6jY2aAU5q8ZTO9QE
Message-ID: <CAA4WUYjtQVc+pm47aDfgO0K4jZJdRC-7yKoW9JdaSzcBwxu8Fw@mail.gmail.com>
From: "William Chan (陈智昌)" <willchan@chromium.org>
To: Poul-Henning Kamp <phk@phk.freebsd.dk>
Cc: Mike Bishop <Michael.Bishop@microsoft.com>, James M Snell <jasnell@gmail.com>, "ietf-http-wg@w3.org" <ietf-http-wg@w3.org>
Content-Type: multipart/alternative; boundary="089e01538d544f56ff04dc270def"
X-Gm-Message-State: ALoCoQncXN8vOwHoZwJMsEf34PcEYPETpDdfGLHZXH99OUvk25j7rUXKpVy/3BWLLUrS1GMYyslh61AKtZe2EdSHtumT59sr1IVQh+f6NC6QDOFAIrLk9oBK6F3tihB7w1b8bmaycj8GKISJahI+cng8Lm0tUBfLTnGQm+VUTbzUaQa+MCze+z+JrgRRJ0ySLLPgiY4GAkyG
Received-SPF: pass client-ip=209.85.216.176; envelope-from=willchan@google.com; helo=mail-qc0-f176.google.com
X-W3C-Hub-Spam-Status: No, score=-4.2
X-W3C-Hub-Spam-Report: AWL=-2.035, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-1.324, SPF_PASS=-0.001
X-W3C-Scan-Sig: maggie.w3.org 1UZowU-0002ol-0q 24253f3701bc95908ffbb10766f57d14
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Design Issue: Frame Size Items
Archived-At: <http://www.w3.org/mid/CAA4WUYjtQVc+pm47aDfgO0K4jZJdRC-7yKoW9JdaSzcBwxu8Fw@mail.gmail.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/17879
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
Beyond just the DoS impact, I think it's simply required from a correctness perspective. Unlike our other limits in SETTINGS, this proposed one must not be exceeded, since it's incorrect not to process control frames that modify session state, like the compression context. On Tue, May 7, 2013 at 5:41 PM, Poul-Henning Kamp <phk@phk.freebsd.dk>wrote: > In message > <abb2201dec3a405aa735f1d09a7a8404@BY2PR03MB025.namprd03.prod.outlook > .com>, Mike Bishop writes: > > > Better to know up front. We can specify an initial (large) value > > and peers only need to change it if they need to restrict to a > > smaller value. > > I think you got that backwards... > > The default limit needs to be small, until the server is willing to > invest resources in the client. > > (Repeat after me: HTTP/2.0 SHALL make DoS attacks harder, not easier.) > > -- > Poul-Henning Kamp | UNIX since Zilog Zeus 3.20 > phk@FreeBSD.ORG | TCP/IP since RFC 956 > FreeBSD committer | BSD since 4.3-tahoe > Never attribute to malice what can adequately be explained by incompetence. > >
- Design Issue: Frame Size Items James M Snell
- RE: Design Issue: Frame Size Items Mike Bishop
- Re: Design Issue: Frame Size Items Martin Thomson
- Re: Design Issue: Frame Size Items Roberto Peon
- Re: Design Issue: Frame Size Items James M Snell
- Re: Design Issue: Frame Size Items James M Snell
- Re: Design Issue: Frame Size Items William Chan (陈智昌)
- Re: Design Issue: Frame Size Items William Chan (陈智昌)
- Re: Design Issue: Frame Size Items Roberto Peon
- Re: Design Issue: Frame Size Items Poul-Henning Kamp
- Re: Design Issue: Frame Size Items William Chan (陈智昌)
- Re: Design Issue: Frame Size Items Martin Thomson
- Re: Design Issue: Frame Size Items William Chan (陈智昌)
- Re: Design Issue: Frame Size Items James M Snell
- Re: Design Issue: Frame Size Items Poul-Henning Kamp
- Re: Design Issue: Frame Size Items James M Snell
- Re: Design Issue: Frame Size Items James M Snell
- Re: Design Issue: Frame Size Items Poul-Henning Kamp