Robert Wilton's No Objection on draft-ietf-quic-http-33: (with COMMENT)
Robert Wilton via Datatracker <noreply@ietf.org> Thu, 21 January 2021 13:24 UTC
Return-Path: <noreply@ietf.org>
X-Original-To: quic@ietf.org
Delivered-To: quic@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 8071B3A0B37; Thu, 21 Jan 2021 05:24:28 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Robert Wilton via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-quic-http@ietf.org, quic-chairs@ietf.org, quic@ietf.org, quic-chairs@ietf.org, lucaspardue.24.7@gmail.com
Subject: Robert Wilton's No Objection on draft-ietf-quic-http-33: (with COMMENT)
X-Test-IDTracker: no
X-IETF-IDTracker: 7.24.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: Robert Wilton <rwilton@cisco.com>
Message-ID: <161123546850.13086.3884485729203292951@ietfa.amsl.com>
Date: Thu, 21 Jan 2021 05:24:28 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/ybV3rQBkYNLew1sBnp192h5-j90>
X-BeenThere: quic@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Main mailing list of the IETF QUIC working group <quic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic>, <mailto:quic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic/>
List-Post: <mailto:quic@ietf.org>
List-Help: <mailto:quic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic>, <mailto:quic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Jan 2021 13:24:29 -0000
Robert Wilton has entered the following ballot position for draft-ietf-quic-http-33: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html for more information about IESG DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-quic-http/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- Another well written document coming out of the QUIC WG, thank you for that. Some minor comments: 4.1.1. Field Formatting and Compression As in previous versions of HTTP, field names are strings containing a subset of ASCII characters that are compared in a case-insensitive fashion. Properties of HTTP field names and values are discussed in more detail in Section 5.1 of [SEMANTICS]. As in HTTP/2, characters in field names MUST be converted to lowercase prior to their encoding. A request or response containing uppercase characters in field names MUST be treated as malformed (Section 4.1.3). Why make the comparison case-insensitive given that the request MUST only use lowercase characters? Presumably implementations will just do a regular case sensitive comparison? 4.1.1.2. Field Compression Given that section 4.1.1.1. states that "Pseudo-header fields are not HTTP fields.", it might be helpful to be explicit that pseudo-header fields are also compressed using QPACK. 6.1. Bidirectional Streams So as to not unnecessarily limit parallelism, at least 100 requests SHOULD be permitted at a time. Given that this section is about streams, perhaps better if the limit is stated in terms of streams, e.g., perhaps change "requests" to "request streams". 10.6. Use of Compression Implementations communicating on a secure channel MUST NOT compress content that includes both confidential and attacker-controlled data unless separate compression contexts are used for each source of data. Compression MUST NOT be used if the source of data cannot be reliably determined. This wasn't entirely clear to me. I presume (perhaps wrongly) that the issue is about the use of compression before the confidential data has been encrypted. I.e., I would presume that compressing a stream of data that includes both encrypted and non encrypted data is okay? Perhaps this could be clarified. Thanks, Rob
- Robert Wilton's No Objection on draft-ietf-quic-h… Robert Wilton via Datatracker
- Re: Robert Wilton's No Objection on draft-ietf-qu… Lucas Pardue