Re: Gen-ART last call review of draft-ietf-hybi-thewebsocketprotocol-10
Greg Wilkins <gregw@intalio.com> Mon, 25 July 2011 00:40 UTC
Return-Path: <gregw@intalio.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ADE7A21F86FF; Sun, 24 Jul 2011 17:40:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.859
X-Spam-Level:
X-Spam-Status: No, score=-2.859 tagged_above=-999 required=5 tests=[AWL=0.118, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6qNM1UP7GiOe; Sun, 24 Jul 2011 17:40:53 -0700 (PDT)
Received: from mail-vw0-f44.google.com (mail-vw0-f44.google.com [209.85.212.44]) by ietfa.amsl.com (Postfix) with ESMTP id 0BF8C21F86A4; Sun, 24 Jul 2011 17:40:52 -0700 (PDT)
Received: by vws12 with SMTP id 12so3330420vws.31 for <multiple recipients>; Sun, 24 Jul 2011 17:40:52 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.52.174.113 with SMTP id br17mr3781317vdc.107.1311554451856; Sun, 24 Jul 2011 17:40:51 -0700 (PDT)
Received: by 10.52.115.103 with HTTP; Sun, 24 Jul 2011 17:40:51 -0700 (PDT)
In-Reply-To: <96456EE7-0BE3-444C-BA16-178FE1DF99F8@bbn.com>
References: <B9DDE41C-1451-4C97-ACA4-0E4E26B75A07@bbn.com> <4E26FC3F.1030300@isode.com> <96456EE7-0BE3-444C-BA16-178FE1DF99F8@bbn.com>
Date: Mon, 25 Jul 2011 10:40:51 +1000
Message-ID: <CAH_y2NGOsnz9rFtJbAtW0TJK0NiO50UaAY1rRJjA+pZLLmtPSw@mail.gmail.com>
Subject: Re: Gen-ART last call review of draft-ietf-hybi-thewebsocketprotocol-10
From: Greg Wilkins <gregw@intalio.com>
To: draft-ietf-websec-thewebsocketprotocol@tools.ietf.org, IETF Discussion <ietf@ietf.org>, General Area Review Team <gen-art@ietf.org>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
X-Mailman-Approved-At: Mon, 25 Jul 2011 08:04:51 -0700
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Jul 2011 00:40:54 -0000
On 25 July 2011 05:11, Richard L. Barnes <rbarnes@bbn.com> wrote: > It seems like this gets you around the threat that masking is supposed to address -- the proxy won't see anything mid-stream that looks like HTTP, since it's just acting as a tunnel at that point. It's a little weird to use CONNECT end-to-end, but that doesn't seem bad enough to be a blocking issue. One concern expressed was that existing infrastructure may have special handling that triggers on the CONNECT method. Eg. code that will look at only the first HTTP request on a connection before becoming a bit pipe. Such proxies will work with websockets when GET is used, but will fail with CONNECT because it will trigger special handling to look for the destination server, which will not be present in the handshake. If the concern with using GET is that we are changing established semantics, then surely that concern must also apply to changing the semantics of CONNECT. If changed semantics is the concern, then using an entirely new method would be applicable. However, my reading of the discussion resulting to Roy's objection to the use of GET, is that he was mostly concerned that the 101 response not be consider the final response to the GET, and that semantically there is still a request to be responded to that is related to the specific URL passed in the GET. If semantically the WS stream is considered the response to the GET for the URI, then I think's Roy's issues are resolved. (NB. I've misread Roy's concerns a few times... so confirmation that I've got it right this time would be good). cheers
- Gen-ART last call review of draft-ietf-hybi-thewe… Richard L. Barnes
- Re: Gen-ART last call review of draft-ietf-hybi-t… Alexey Melnikov
- Re: Gen-ART last call review of draft-ietf-hybi-t… Richard L. Barnes
- Re: Gen-ART last call review of draft-ietf-hybi-t… Greg Wilkins