IETF Logo Mail Archive

Re: [hybi] Masking only Payload/Extension Data

Greg Wilkins <gregw@intalio.com> Thu, 10 March 2011 21:21 UTC

Return-Path: <gregw@intalio.com>
X-Original-To: hybi@core3.amsl.com
Delivered-To: hybi@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 4B9E63A6A7F for <hybi@core3.amsl.com>; Thu, 10 Mar 2011 13:21:05 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.977
X-Spam-Level:
X-Spam-Status: No, score=-2.977 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id guPmm6M3YIy6 for <hybi@core3.amsl.com>; Thu, 10 Mar 2011 13:21:04 -0800 (PST)
Received: from mail-gw0-f44.google.com (mail-gw0-f44.google.com [74.125.83.44]) by core3.amsl.com (Postfix) with ESMTP id E537C3A6AC4 for <hybi@ietf.org>; Thu, 10 Mar 2011 13:21:03 -0800 (PST)
Received: by gwb20 with SMTP id 20so800709gwb.31 for <hybi@ietf.org>; Thu, 10 Mar 2011 13:22:22 -0800 (PST)
MIME-Version: 1.0
Received: by 10.52.65.225 with SMTP id a1mr3603452vdt.183.1299792141896; Thu, 10 Mar 2011 13:22:21 -0800 (PST)
Received: by 10.52.169.39 with HTTP; Thu, 10 Mar 2011 13:22:21 -0800 (PST)
In-Reply-To: <AANLkTi=HvWvOW7UEYL8Ua9zRiQGCe0iZehmA_oeA8-U-@mail.gmail.com>
References: <4D77B885.5050109@callenish.com> <OF36FEDDC6.06951577-ON8825784E.0062343E-8825784E.0066AC27@playstation.sony.com> <AANLkTinau4g1pB_ccJ31u7WRi5npYtHvXE5YRn5uTbeV@mail.gmail.com> <AANLkTikB4YeaYiF_NVGn61c1YxpNWbmEWQZu1WcN+=Jf@mail.gmail.com> <1299704939.2606.238.camel@ds9.ducksong.com> <20110309214212.GA29190@1wt.eu> <AANLkTi=i=8aWg=6+T7=Kn5dWeKkW6MYVCH_CuNkt_ZMM@mail.gmail.com> <AANLkTimip9o0RoZaBfONCmg5nuJVWXjOKDKgAt8zrNVV@mail.gmail.com> <AANLkTikbFBeM6+hiURSBqxFyjc2Wc-yh8UJnZiO+U0JX@mail.gmail.com> <20110310103914.GA32389@1wt.eu> <AANLkTik-TNXCMygBu3WqBHyhJWaG-XUTjCdXud9zHOgX@mail.gmail.com> <1299769498.2606.252.camel@ds9.ducksong.com> <4D78EFFD.5040906@warmcat.com> <AANLkTi=HvWvOW7UEYL8Ua9zRiQGCe0iZehmA_oeA8-U-@mail.gmail.com>
Date: Fri, 11 Mar 2011 08:22:21 +1100
Message-ID: <AANLkTikA2cdjbf6X5xtmSGMGq-Lq_tkW_Hp6_4RAECCG@mail.gmail.com>
From: Greg Wilkins <gregw@intalio.com>
To: John Tamplin <jat@google.com>
Content-Type: text/plain; charset="ISO-8859-1"
Cc: Hybi <hybi@ietf.org>
Subject: Re: [hybi] Masking only Payload/Extension Data
X-BeenThere: hybi@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Server-Initiated HTTP <hybi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hybi>
List-Post: <mailto:hybi@ietf.org>
List-Help: <mailto:hybi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Mar 2011 21:21:05 -0000

On 11 March 2011 03:22, John Tamplin <jat@google.com> wrote:
> While I agree it is awkward to not be able to have a totally separate layer
> where the masking is removed (since you can't know the length of the masked
> frames without looking inside the masking), I don't think anyone is going to
> implement it that way.

If masking is removed from the framing, Jetty will certainly be
implementing masking as a separate layer. It would be applied
internally as an extension.

> I don't see a difference here either -- if in the future a more
> sophisticated masking is required, an extension would be negotiated that
> will change it.

But that will not be possible because intermediaries and tools will
have been written that must understand the masking, so they can
understand the framing.
We know that it is impossible to suddenly change all intermediaries or
even to negotiate different protocols through them.    Once you make
masking part of the framing, it will be there forever.

The only way to achieve flexibility with masking is to allow elements
that don't care about masking (ie most intermediaries) to not have to
implement masking.

> for example, imagine the deflate-stream extension in -06 was not
> part of the standard but a later extension.

For the same reasons,  I think deflate-stream is a bad idea.     If it
was a good idea, then somebody would have done it to HTTP a long time
ago to reduce the verbosity of HTTP headers.

cheers

v2.23.0 | Report a Bug | By Email