IETF Logo Mail Archive

Re: [hybi] [Editorial Errata Reported] RFC6455 (3473)

Takeshi Yoshino <tyoshino@google.com> Mon, 04 February 2013 06:50 UTC

Return-Path: <tyoshino@google.com>
X-Original-To: hybi@ietfa.amsl.com
Delivered-To: hybi@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E72AC21F892B for <hybi@ietfa.amsl.com>; Sun, 3 Feb 2013 22:50:07 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.726
X-Spam-Level:
X-Spam-Status: No, score=-102.726 tagged_above=-999 required=5 tests=[AWL=0.250, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FU8FcuKoYCLp for <hybi@ietfa.amsl.com>; Sun, 3 Feb 2013 22:50:07 -0800 (PST)
Received: from mail-vb0-f49.google.com (mail-vb0-f49.google.com [209.85.212.49]) by ietfa.amsl.com (Postfix) with ESMTP id B90A921F891A for <hybi@ietf.org>; Sun, 3 Feb 2013 22:50:06 -0800 (PST)
Received: by mail-vb0-f49.google.com with SMTP id s24so3648956vbi.22 for <hybi@ietf.org>; Sun, 03 Feb 2013 22:50:06 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=x-received:mime-version:in-reply-to:references:from:date:message-id :subject:to:cc:content-type; bh=ru5t3uMzdebMkCHvBmKKWhC6DkVrin1ZtvbAmfPgjX0=; b=hNvahSjRtxVMLYKgpDrVQG+NiEve+qOxi6T44MPRuAPVkF5cB78CJrT5waBB+wZ0w8 UgehUIDfPokVZ2oKlfP53yU7i0LvgDSP7FM7+vd/Sk8rwIreeFukLEegmRW66JvWuKXM gv7f2p3tkpO4ne1yHOHOHb3jQ8H4MAfGX2letauIrZRXUP44i9iJA6yf6/5lciju11ot 7JlknayQviMf875TwYl4+0lrRvju8MsYsHV8jb3b4ziTnJPcMBEXkHrTr4UAmcQYhb7V CKa62hrfeo59A8SiAueH+y6PRy8I3UNZ6CGxi6joHJhPEcetp/vskgUSWoowhxfiuSuj P1GQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=x-received:mime-version:in-reply-to:references:from:date:message-id :subject:to:cc:content-type:x-gm-message-state; bh=ru5t3uMzdebMkCHvBmKKWhC6DkVrin1ZtvbAmfPgjX0=; b=WQWmWV6+nTXpILVpLElwOmPbemZh6y3cvTcb+pVYW52azbvC+sK/AoYjntPCfdIIJG 5wsYX3VgG6cyQIfNaa4Vo+rVYjlFHbCCS1waQRTO28hRlxHjHEVFgXDlvUden1UGNmIg MrQaO1VbJjWmg0QsVikK545V1ilKX8CCdaAvm9Z6HsvAFhozgh8ZMYa82WZFMAYwyKn8 bY5SbinMsEpfSb3qmAtJKXqH1HdOEDz2EiQSQN0xu+icjx9fC74zfs8QLhWO22bCLUTw Oy6B5lUOAZkuei2xLDpCp9ksUndFX3SBN7vypFf0yCc7X67hCm5OFwJg6dexegveTJr8 747g==
X-Received: by 10.220.149.82 with SMTP id s18mr20940678vcv.14.1359960605917; Sun, 03 Feb 2013 22:50:05 -0800 (PST)
MIME-Version: 1.0
Received: by 10.58.134.34 with HTTP; Sun, 3 Feb 2013 22:49:45 -0800 (PST)
In-Reply-To: <CABkgnnVO_qfFAKY28y_VL5vjXdUYtuAV5vNtFLpAFUk9zPiJkQ@mail.gmail.com>
References: <20130201073846.78956B1E003@rfc-editor.org> <CABkgnnVO_qfFAKY28y_VL5vjXdUYtuAV5vNtFLpAFUk9zPiJkQ@mail.gmail.com>
From: Takeshi Yoshino <tyoshino@google.com>
Date: Mon, 04 Feb 2013 15:49:45 +0900
Message-ID: <CAH9hSJaB4NdPTRXQtyXv5MKs9ZJV60eaBS_5-9s1EHUK2nFZXw@mail.gmail.com>
To: Martin Thomson <martin.thomson@gmail.com>
Content-Type: multipart/alternative; boundary="f46d043d64a3d3030004d4e0800c"
X-Gm-Message-State: ALoCoQmFoA6zBMv2tjaQ5WtaaoFzHiQLRC1HLHiqJzB5UzQq+6hrv1un9hVjrjvS1UptO8gTuBzXnv026USJjO+Gkqj1o9lPwt8A2fagzZ+JqXXEoD0aBb73Qsar2U8voPqYAQYZEvOstnip2XYC7HAqqExlCriyPSK4iCvUjFplOnIGexiACRX7GVSU0ekEgOLtomQwoa9m
Cc: "hybi@ietf.org" <hybi@ietf.org>, presnick@qti.qualcomm.com, "ifette+ietf@google.com" <ifette+ietf@google.com>, Gabriel Montenegro <Gabriel.Montenegro@microsoft.com>, Barry Leiba <barryleiba@computer.org>, RFC Errata System <rfc-editor@rfc-editor.org>
Subject: Re: [hybi] [Editorial Errata Reported] RFC6455 (3473)
X-BeenThere: hybi@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Server-Initiated HTTP <hybi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hybi>, <mailto:hybi-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hybi>
List-Post: <mailto:hybi@ietf.org>
List-Help: <mailto:hybi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 04 Feb 2013 06:50:08 -0000

FYI:

The text (without /port/) was introduced by Ian Hickson on this release
(April 2009).
http://tools.ietf.org/rfcdiff?url2=draft-hixie-thewebsocketprotocol-11.txt
MUST was added to the sentence by bulk addition of MUSTs/SHOULDs on this
release. Even before this was specified as MUST indirectly by the
introduction text for this algorithm.
http://tools.ietf.org/rfcdiff?url2=draft-ietf-hybi-thewebsocketprotocol-04.txt

/port/ was added on this release. I couldn't find discussion led to this
change on the list.
http://tools.ietf.org/rfcdiff?url2=draft-ietf-hybi-thewebsocketprotocol-07.txt


On Fri, Feb 1, 2013 at 11:27 PM, Martin Thomson <martin.thomson@gmail.com>wrote:

> Is this "host and port" or "IP and port" ?  That too is unclear.  If
>

Yes... /host/ in the spec is not always IP address. According to hixie-11,
it was intended to mean IP and he added the text "even if the remote host
is known by another name" (I'm not saying everybody in HyBi later agreed
with the text interpreting it that way).


> I'm sharding a.example.com and b.example.com and they are served on
> the same VIP, is the expectation that wss://a.example.com/ and
> wss://b.example.com/ can't have concurrent connection attempts?


I think we should do so (no concurrent connection to a.example.com and
b.example.com). Throttling based on domain name / port pair might make
sense if a.example.com and b.example.com has different backends as you said
and the LB having the VIP has much more processing power than backends. But
as anybody can have A record pointing to the IP address (x.x.x.x) of
a.example.com, an attacker can prepare a.attacker.com, b.attacker.com, ...
pointing to x.x.x.x and feed a script connecting to ws://a.attacker.com,
... to bypass the throttling (domain name based).

v2.23.0 | Report a Bug | By Email