IETF Logo Mail Archive

Re: [hybi] I-D Action: draft-ietf-hybi-thewebsocketprotocol-13.txt

"Richard L. Barnes" <rbarnes@bbn.com> Thu, 08 September 2011 15:04 UTC

Return-Path: <rbarnes@bbn.com>
X-Original-To: hybi@ietfa.amsl.com
Delivered-To: hybi@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ED29A21F899D for <hybi@ietfa.amsl.com>; Thu, 8 Sep 2011 08:04:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.554
X-Spam-Level:
X-Spam-Status: No, score=-106.554 tagged_above=-999 required=5 tests=[AWL=0.045, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kx8b-ODChRHy for <hybi@ietfa.amsl.com>; Thu, 8 Sep 2011 08:04:29 -0700 (PDT)
Received: from smtp.bbn.com (smtp.bbn.com [128.33.0.80]) by ietfa.amsl.com (Postfix) with ESMTP id 723A321F891D for <hybi@ietf.org>; Thu, 8 Sep 2011 08:04:29 -0700 (PDT)
Received: from [192.1.255.224] (port=54328 helo=col-dhcp-192-1-255-224.bbn.com) by smtp.bbn.com with esmtps (TLSv1:AES128-SHA:128) (Exim 4.74 (FreeBSD)) (envelope-from <rbarnes@bbn.com>) id 1R1gBJ-0006ft-6O; Thu, 08 Sep 2011 11:06:21 -0400
Mime-Version: 1.0 (Apple Message framework v1084)
Content-Type: text/plain; charset="us-ascii"
From: "Richard L. Barnes" <rbarnes@bbn.com>
In-Reply-To: <CABLsOLBKgnTFga821t2AZ1dXobTsfMb5v8CTJhm_Nr8WMkonaA@mail.gmail.com>
Date: Thu, 08 Sep 2011 11:06:19 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <53451FDB-77F7-42A1-8D16-05094C35AB5D@bbn.com>
References: <20110831184207.1514.64093.idtracker@ietfa.amsl.com> <0fc901cc6878$1681eec0$0a00a8c0@Venus> <CAH9hSJb2rH+fX0AnekYxsEkHKzb15aHrg_hDQw1baWLiWBF-3w@mail.gmail.com> <17b501cc6d31$3016d6d0$0a00a8c0@Venus> <CAH9hSJYhLpcXrOtS-nzLt2YW9QbngEsfdcNF+0TadyVA6rrK1A@mail.gmail.com> <17ef01cc6d39$3575ae50$0a00a8c0@Venus> <20110907085128.GA19144@1wt.eu> <CAH9hSJYXZ285L_+eJh6VUVCAg4D+u=vQbcjVOA4RMsJSbcHqiw@mail.gmail.com> <CABLsOLBKgnTFga821t2AZ1dXobTsfMb5v8CTJhm_Nr8WMkonaA@mail.gmail.com>
To: John Tamplin <jat@google.com>
X-Mailer: Apple Mail (2.1084)
Cc: hybi@ietf.org
Subject: Re: [hybi] I-D Action: draft-ietf-hybi-thewebsocketprotocol-13.txt
X-BeenThere: hybi@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Server-Initiated HTTP <hybi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hybi>, <mailto:hybi-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hybi>
List-Post: <mailto:hybi@ietf.org>
List-Help: <mailto:hybi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Sep 2011 15:04:30 -0000

[trimmed for brevity]

On Sep 7, 2011, at 10:17 AM, John Tamplin wrote:

> On Wed, Sep 7, 2011 at 8:32 AM, Takeshi Yoshino <tyoshino@google.com> wrote:
> Yes. That's unexpected side-effect of addition of MASK bit. Without the flag, there was no information in a frame if it's masked or not so client just had to follow what the spec says. So, client never encountered such situation.

It should also be noted that if the MASK bit is eliminated, then the recipient of a frame can't even parse it in the current format, since it doesn't know whether the first four octets are a masking key or not.


> I expect it will get used as a WS-variant when dealing with non-browser clients -- ie, between a frontend which handles masking/aggregation/deaggregation/SSL and the ultimate backend, I would not be surprised if there were unmasked client->server frames.  As long as all the browser clients all enforce masking on their connections, the problem masking was added for is averted.

This seems to argue against Gabriel's proposed "c2s MUST / s2c MUST NOT".  Proposed alternative:

OLD: "All frames sent from the server to the client are not masked."
NEW: "Frames sent from the server to the client MAY be masked."

OLD: "All frames sent from the client to the server are masked to avoid ..."
NEW: "Frames sent from the client to the server SHOULD be to avoid ..."

NEW: "Servers MUST NOT reject un-masked frames, unless masking is required by local policy."

--Richard

v2.23.0 | Report a Bug | By Email