IETF Logo Mail Archive

Re: [hybi] Frame size

Ian Hickson <ian@hixie.ch> Mon, 19 April 2010 00:14 UTC

Return-Path: <ian@hixie.ch>
X-Original-To: hybi@core3.amsl.com
Delivered-To: hybi@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id E4EE03A6A24 for <hybi@core3.amsl.com>; Sun, 18 Apr 2010 17:14:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.84
X-Spam-Level:
X-Spam-Status: No, score=-1.84 tagged_above=-999 required=5 tests=[AWL=0.759, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TxgGTDWiJUxR for <hybi@core3.amsl.com>; Sun, 18 Apr 2010 17:14:23 -0700 (PDT)
Received: from looneymail-a1.g.dreamhost.com (caibbdcaaaaf.dreamhost.com [208.113.200.5]) by core3.amsl.com (Postfix) with ESMTP id 287F03A6964 for <hybi@ietf.org>; Sun, 18 Apr 2010 17:14:23 -0700 (PDT)
Received: from ps20323.dreamhostps.com (ps20323.dreamhost.com [69.163.222.251]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by looneymail-a1.g.dreamhost.com (Postfix) with ESMTP id 34F5315D798; Sun, 18 Apr 2010 17:14:15 -0700 (PDT)
Date: Mon, 19 Apr 2010 00:14:14 +0000
From: Ian Hickson <ian@hixie.ch>
To: "Thomson, Martin" <Martin.Thomson@andrew.com>
In-Reply-To: <8B0A9FCBB9832F43971E38010638454F03E7D0678C@SISPE7MB1.commscope.com>
Message-ID: <Pine.LNX.4.64.1004190009190.751@ps20323.dreamhostps.com>
References: <8B0A9FCBB9832F43971E38010638454F03E3F313ED@SISPE7MB1.commscope.com> <Pine.LNX.4.64.1004161940180.751@ps20323.dreamhostps.com> <8B0A9FCBB9832F43971E38010638454F03E7D0678C@SISPE7MB1.commscope.com>
Content-Language: en-GB-hixie
Content-Style-Type: text/css
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"
Cc: Hybi <hybi@ietf.org>
Subject: Re: [hybi] Frame size
X-BeenThere: hybi@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Server-Initiated HTTP <hybi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hybi>
List-Post: <mailto:hybi@ietf.org>
List-Help: <mailto:hybi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Apr 2010 00:14:25 -0000

On Mon, 19 Apr 2010, Thomson, Martin wrote:
> > >
> > > IF used for UTF-8 AND implementer counts characters instead of 
> > > octets THEN framing doesn't work. [...] One solution to this problem 
> > > is to start a frame with a known sequence of octets, so that this 
> > > can be detected.
> > 
> > That's an interesting approach, but I worry that anything hardcoded 
> > like this would be handled in ways that defeat the purpose.
> 
> You could complicate this if you like.  Perhaps each "fixed" sequence is 
> based on the output of a pseudorandom sequence, the seed to which is 
> assigned in the handshake.

Do you have any concrete suggestions for how we could do this? I'm not 
sure I follow.


> > This is why, for instance, the proposed handshake uses unpredictable 
> > keys to force the server to prove it read the handshake -- otherwise, 
> > servers written by amateurs might not actually read the handshake but 
> > just send back the right response, simply assuming the handshake came 
> > from a Web Socket server.
>
> [...] I'd like to better understand what this is buying though.*
> * ...just as I would like to understand the same for the handshake.

Assuming you are asking for a longer rationale for the current handshake, 
please search for "the rationale" in this message for an explanation:

   http://www.ietf.org/mail-archive/web/hybi/current/msg01607.html

-- 
Ian Hickson               U+1047E                )\._.,--....,'``.    fL
http://ln.hixie.ch/       U+263A                /,   _.. \   _\  ;`._ ,.
Things that are impossible just take longer.   `._.-(,_..'--(,_..'`-.;.'

v2.23.0 | Report a Bug | By Email