[hybi] [Technical Errata Reported] RFC6455 (4398)
RFC Errata System <rfc-editor@rfc-editor.org> Wed, 24 June 2015 08:39 UTC
Return-Path: <wwwrun@rfc-editor.org>
X-Original-To: hybi@ietfa.amsl.com
Delivered-To: hybi@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C556A1B3236 for <hybi@ietfa.amsl.com>; Wed, 24 Jun 2015 01:39:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.912
X-Spam-Level:
X-Spam-Status: No, score=-106.912 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, USER_IN_WHITELIST=-100] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gOKe7q2_u9-4 for <hybi@ietfa.amsl.com>; Wed, 24 Jun 2015 01:39:28 -0700 (PDT)
Received: from rfc-editor.org (rfc-editor.org [4.31.198.49]) by ietfa.amsl.com (Postfix) with ESMTP id 32D0D1B3232 for <hybi@ietf.org>; Wed, 24 Jun 2015 01:39:28 -0700 (PDT)
Received: by rfc-editor.org (Postfix, from userid 30) id F377F180206; Wed, 24 Jun 2015 01:36:37 -0700 (PDT)
To: ifette+ietf@google.com, Alexey.Melnikov@isode.com, barryleiba@computer.org, Salvatore.Loreto@ericsson.com, Gabriel.Montenegro@microsoft.com
X-PHP-Originating-Script: 6000:errata_mail_lib.php
From: RFC Errata System <rfc-editor@rfc-editor.org>
Message-Id: <20150624083637.F377F180206@rfc-editor.org>
Date: Wed, 24 Jun 2015 01:36:37 -0700
Archived-At: <http://mailarchive.ietf.org/arch/msg/hybi/TuMebAsImHAhDUgg7SzZS3Cab9g>
Cc: mkwst@google.com, hybi@ietf.org, rfc-editor@rfc-editor.org
Subject: [hybi] [Technical Errata Reported] RFC6455 (4398)
X-BeenThere: hybi@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Server-Initiated HTTP <hybi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hybi>, <mailto:hybi-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/hybi/>
List-Post: <mailto:hybi@ietf.org>
List-Help: <mailto:hybi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Jun 2015 08:39:29 -0000
The following errata report has been submitted for RFC6455, "The WebSocket Protocol". -------------------------------------- You may review the report below and at: http://www.rfc-editor.org/errata_search.php?rfc=6455&eid=4398 -------------------------------------- Type: Technical Reported by: Mike West <mkwst@google.com> Section: 4.1 Original Text ------------- 1. The components of the WebSocket URI passed into this algorithm (/host/, /port/, /resource name/, and /secure/ flag) MUST be valid according to the specification of WebSocket URIs specified in Section 3. If any of the components are invalid, the client MUST _Fail the WebSocket Connection_ and abort these steps. Corrected Text -------------- 1. The components of the WebSocket URI passed into this algorithm (/host/, /port/, /resource name/, and /secure/ flag) MUST be valid according to the specification of WebSocket URIs specified in Section 3. If any of the components are invalid, the client MUST _Fail the WebSocket Connection_ and abort these steps. 2. If secure is false, and the algorithm in Mixed Content's "§5.1 Does settings object restrict mixed content?" returns Restricts Mixed Content when applied to client's entry script's relevant settings object's, then the client MUST fail the WebSocket connection and abort the connection. Notes ----- This change is suggested by the W3C's "Mixed Content" document (https://w3c.github.io/webappsec/specs/mixedcontent/#websockets-integration), and will bring WebSockets' behaviors into line with XMLHttpRequest, EventSource, and Fetch, all of which act as though there was a network error when blocking a mixed content request, rather than throwing a SecurityError exception. Instructions: ------------- This erratum is currently posted as "Reported". If necessary, please use "Reply All" to discuss whether it should be verified or rejected. When a decision is reached, the verifying party (IESG) can log in to change the status and edit the report, if necessary. -------------------------------------- RFC6455 (draft-ietf-hybi-thewebsocketprotocol-17) -------------------------------------- Title : The WebSocket Protocol Publication Date : December 2011 Author(s) : I. Fette, A. Melnikov Category : PROPOSED STANDARD Source : BiDirectional or Server-Initiated HTTP APP Area : Applications Stream : IETF Verifying Party : IESG
- [hybi] [Technical Errata Reported] RFC6455 (4398) RFC Errata System
- Re: [hybi] [Technical Errata Reported] RFC6455 (4… Barry Leiba
- Re: [hybi] [Technical Errata Reported] RFC6455 (4… Mike West
- Re: [hybi] [Technical Errata Reported] RFC6455 (4… Alexey Melnikov
- [hybi] [Errata Held for Document Update] RFC6455 … RFC Errata System