HTTP/2 and non-authoritative pushes
Mike Bishop <mbishop@evequefou.be> Tue, 14 April 2020 19:42 UTC
Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7E9333A0DBB for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 14 Apr 2020 12:42:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.651
X-Spam-Level:
X-Spam-Status: No, score=-2.651 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.248, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=evequefou.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8V3XvAB8RNyO for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 14 Apr 2020 12:42:12 -0700 (PDT)
Received: from lyra.w3.org (lyra.w3.org [128.30.52.18]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8D9823A0DB9 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Tue, 14 Apr 2020 12:42:12 -0700 (PDT)
Received: from lists by lyra.w3.org with local (Exim 4.92) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1jORPD-0005Wq-4A for ietf-http-wg-dist@listhub.w3.org; Tue, 14 Apr 2020 19:39:35 +0000
Resent-Date: Tue, 14 Apr 2020 19:39:35 +0000
Resent-Message-Id: <E1jORPD-0005Wq-4A@lyra.w3.org>
Received: from titan.w3.org ([128.30.52.76]) by lyra.w3.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <mbishop@evequefou.be>) id 1jORPB-0005W5-Pj for ietf-http-wg@listhub.w3.org; Tue, 14 Apr 2020 19:39:33 +0000
Received: from mail-eopbgr770099.outbound.protection.outlook.com ([40.107.77.99] helo=NAM02-SN1-obe.outbound.protection.outlook.com) by titan.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <mbishop@evequefou.be>) id 1jORP9-0006bp-A9 for ietf-http-wg@w3.org; Tue, 14 Apr 2020 19:39:33 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=hRzCk4xynsQW+jDFyDh8uPlKMokaI7SC3ER2jWVJ0JEDoLxLv17nu4d5ApvGCiDydbs7bkKjbggnpuqMbF2NvDhIk//J4q8lLtLWEMwbp5G7i/ItKqk+mpdiAC9ZIHegCI46/II7ReEIxstT0l9qDZRcsbfGkO5bsnlctWdDdlzHNjs30IOvBJ5+5zyyqLHV4TAQxtcRphC7/GXypDDI2n3fBJKn5dj/X2QPlzthhGOYRBH94387pjpOKWDuh0Dla3l3NM4Fo3Z7paWf1rLL2YlBQudo0NWEQPVELOlJyLX6/q0bHyJfhMyPnFKECJ2QeB02oSIyL0JJDzJQ8mp6Wg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=t0DiPIztS7i0pNSTx3SfrimhhJH5kIH/D4OHGIemSWA=; b=WlDulhMc6zhmiR0Db4LuBQV4Jy3/TxbTNMlbBgWaeTZzBnS06fPnF6p51TPzTSkmJrNd8ykZmBowtJ2Geu76nLmye4HT6gSkBUDPq3CIbpbyM/7BAfj454FvdTL20wsxAsUNKlZODCQAVV3Dv3ONhW8cCkwRyHHikwFZnH32Zw6+Gel5LIH5l2nEZ7cLGWE3eYgL7Z7lkk4ZoD1XEA5Y+VdJex88yZ2WNaELvd22zoJdcyD13qml5bgiePacQw97h0TFjrBRUu/dtnoOPuR4oIOxdQpnYlPPW7qLoe0gLXs+26aNftQQQ5g2qLTRYcS4od/jBVSnxroALKyNT3S7tQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=evequefou.be; dmarc=pass action=none header.from=evequefou.be; dkim=pass header.d=evequefou.be; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=evequefou.onmicrosoft.com; s=selector2-evequefou-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=t0DiPIztS7i0pNSTx3SfrimhhJH5kIH/D4OHGIemSWA=; b=sYmDHGBEgRRUi454gav7aqLomum/lG6NjzTy8pSu3bui0qGJa52i8ivBl0Vm24HJ9okjHkjQEoJ+sCQYfO7zpusBvCBzVBy4jtOFn5pMGPj/2GC8aLzY2GX0WwG1vvGylZzxgFxkv5GoBgYX+G3Nycc/Qg6Vx7j6zEKmBd173pU=
Received: from CH2PR22MB2086.namprd22.prod.outlook.com (2603:10b6:610:8c::8) by CH2PR22MB1912.namprd22.prod.outlook.com (2603:10b6:610:85::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2900.20; Tue, 14 Apr 2020 19:39:18 +0000
Received: from CH2PR22MB2086.namprd22.prod.outlook.com ([fe80::5d05:3b25:6510:2a3d]) by CH2PR22MB2086.namprd22.prod.outlook.com ([fe80::5d05:3b25:6510:2a3d%4]) with mapi id 15.20.2900.028; Tue, 14 Apr 2020 19:39:18 +0000
From: Mike Bishop <mbishop@evequefou.be>
To: HTTP Working Group <ietf-http-wg@w3.org>
Thread-Topic: HTTP/2 and non-authoritative pushes
Thread-Index: AdYSk2Qm9QiZtpioT+yMzNo+1S4dMw==
Date: Tue, 14 Apr 2020 19:39:18 +0000
Message-ID: <CH2PR22MB2086EF4BC11F6FE056259A14DADA0@CH2PR22MB2086.namprd22.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=mbishop@evequefou.be;
x-originating-ip: [2600:2b00:930c:7701:6de5:fe32:8a13:ee38]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 6e5b8d6b-8b94-45e3-b531-08d7e0ab85b3
x-ms-traffictypediagnostic: CH2PR22MB1912:
x-microsoft-antispam-prvs: <CH2PR22MB191220927327FEFD33D9B0B4DADA0@CH2PR22MB1912.namprd22.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 0373D94D15
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:CH2PR22MB2086.namprd22.prod.outlook.com;PTR:;CAT:NONE;SFTY:;SFS:(10019020)(366004)(376002)(396003)(136003)(39830400003)(346002)(2906002)(64756008)(5660300002)(76116006)(8936002)(66446008)(81156014)(66476007)(6506007)(186003)(52536014)(66946007)(8676002)(508600001)(55016002)(6916009)(316002)(86362001)(33656002)(7696005)(71200400001)(66556008)(9686003);DIR:OUT;SFP:1102;
received-spf: None (protection.outlook.com: evequefou.be does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata: 9gGJ7vVbZSLcWqEIzgiX7K0RrN1wSjNoa2rrQuroI67QeKEYrteZ8MO58B7TSCbLmdTOMdGd9+Kbn41RrAaY0oDl5+3jOzRvkhs7aQ2ik464C0COGhTdpwoIq6YDnjaU4lYVx8R4LHUFKNUqOzw6Eynos9NLu4nps/cUAgd00R2+USofmJ0Zrbie5hQ+cwCUbKgabu9FtO1asy3pos2R6A==
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_CH2PR22MB2086EF4BC11F6FE056259A14DADA0CH2PR22MB2086namp_"
MIME-Version: 1.0
X-OriginatorOrg: evequefou.be
X-MS-Exchange-CrossTenant-Network-Message-Id: 6e5b8d6b-8b94-45e3-b531-08d7e0ab85b3
X-MS-Exchange-CrossTenant-originalarrivaltime: 14 Apr 2020 19:39:18.1807 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 41eaf50b-882d-47eb-8c4c-0b5b76a9da8f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ma/3G4d5sC2vo+j1iNFFqAFxUJXjSu7BBsY/4jRFcqkWtzO5m4L8wunGOUR6OKOKWwMgK21fIMziCBGee7jqmA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CH2PR22MB1912
Received-SPF: pass client-ip=40.107.77.99; envelope-from=mbishop@evequefou.be; helo=NAM02-SN1-obe.outbound.protection.outlook.com
X-W3C-Hub-Spam-Status: No, score=-4.7
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.819, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: titan.w3.org 1jORP9-0006bp-A9 113299b7119825bc998a55133af5367c
X-Original-To: ietf-http-wg@w3.org
Subject: HTTP/2 and non-authoritative pushes
Archived-At: <https://www.w3.org/mid/CH2PR22MB2086EF4BC11F6FE056259A14DADA0@CH2PR22MB2086.namprd22.prod.outlook.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/37505
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
Secondary Certs issue #1088 leads back to an interesting bit in RFC7540. Section 8.2 says: The server MUST include a value in the ":authority" pseudo-header field for which the server is authoritative (see Section 10.1<https://tools.ietf.org/html/rfc7540#section-10.1>). A client MUST treat a PUSH_PROMISE for which the server is not authoritative as a stream error (Section 5.4.2<https://tools.ietf.org/html/rfc7540#section-5.4.2>) of type PROTOCOL_ERROR. Note that it doesn't explicitly say which stream should be treated as being in error. The simplest reading, since it's an invalid PUSH_PROMISE, would be the stream on which the PUSH_PROMISE was sent. However, the server and the client might not have the same view of what origins the server is authoritative for, for various reasons. Given that, blowing up the parent request because of an invalid PUSH_PROMISE seems completely unreasonable as a response. Should this indicate that it's a stream error on the promised stream? (In Secondary Certs, the draft currently requires that the server have sent the certificate for the origin it wants to push for prior to pushing content, and violation of that is a connection error. That doubly seems excessive, and I'll change that in a PR shortly.)
- HTTP/2 and non-authoritative pushes Mike Bishop
- Re: HTTP/2 and non-authoritative pushes Ted Hardie
- Re: HTTP/2 and non-authoritative pushes Tom Bergan