From nobody Fri Jul 1 15:43:13 2016 Delivered-To: http-issues@ietfa.amsl.com X-Spam-Flag: NO X-Spam-Score: -5.474 X-Spam-Level: X-Spam-Status: No, score=-5.474 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_20=1.546, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com Date: Fri, 01 Jul 2016 15:43:08 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1467412988; bh=rjPTQ5t40q+itrnbwS1m7BU3VKcKtKx+h8YHBw1VAik=; h=From:Reply-To:To:Cc:Subject:List-ID:List-Archive:List-Post: List-Unsubscribe:From; b=X8D8NdSxRTyIWPRaYtzePgCFov2xK92sW9OZYZm2BdcHzGRZzQLQf0FNrakHwTx1P 9uixKCGXyP+w3ND0ZKShm2orbPvRFZF3tRfHEicpPKrXqqKktmXRgnXviGtk2HF7GA 0meqsgh3Dgen7oK9YTza4Ofup9YQPm8Ts7xSUsqM= To: httpwg/http-extensions Subject: [httpwg/http-extensions] Subject-verb agreement (#209) Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_5776f1fc87fe5_672b3fc68f1dd2c0211846"; charset=UTF-8 Content-Transfer-Encoding: 7bit Precedence: list Archived-At: Message-ID: From: HTTP issue updates X-BeenThere: http-issues@ietf.org X-Mailman-Version: 2.1.17 Reply-To: http-issues@ietf.org List-Id: HTTP issue updates List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 01 Jul 2016 22:43:11 -0000 ----==_mimepart_5776f1fc87fe5_672b3fc68f1dd2c0211846 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit The key phrase is "Serving ... requires", not "URIs require". You can view, comment on, or merge this pull request online at: https://github.com/httpwg/http-extensions/pull/209 -- Commit Summary -- * Subject-verb agreement -- File Changes -- M draft-ietf-httpbis-http2-encryption.md (2) -- Patch Links -- https://github.com/httpwg/http-extensions/pull/209.patch https://github.com/httpwg/http-extensions/pull/209.diff --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/httpwg/http-extensions/pull/209 ----==_mimepart_5776f1fc87fe5_672b3fc68f1dd2c0211846 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit

The key phrase is "Serving ... requires", not "URIs require".

You can view, comment on, or merge this pull request online at:

https://github.com/httpwg/http-extensions/pull/209

Commit Summary

Subject-verb agreement

File Changes

M draft-ietf-httpbis-http2-encryption.md (2)

Patch Links:

—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.

----==_mimepart_5776f1fc87fe5_672b3fc68f1dd2c0211846-- From nobody Wed Jul 6 02:40:55 2016 Delivered-To: http-issues@ietfa.amsl.com X-Spam-Flag: NO X-Spam-Score: -5.909 X-Spam-Level: X-Spam-Status: No, score=-5.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_16=1.092, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com Date: Wed, 06 Jul 2016 02:40:50 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1467798050; bh=7zQKOCIhMFmkZ2BugpFsOnBXahVpcuncn5VsHb2FYmY=; h=From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=NblY6rRD08Irh4m3SFt4Ifs8Z+ZmU/pSs9hID3CwmNP7krJOsiRerV/lLPXSPaHiX QKM3Jy2VZOVgfLGKbeApvBZm9L+8TzzKMYc/rV/Gu7QJTAvcMruO3L5qqHcHEedR5E cIOf0K9jprTQnU+zPjbKJ7W0qdmt/9YHwREv2g+c= To: httpwg/http-extensions In-Reply-To: References: Subject: Re: [httpwg/http-extensions] Subject-verb agreement (#209) Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_577cd2229d310_39483f89f39852bc476238"; charset=UTF-8 Content-Transfer-Encoding: 7bit Precedence: list Archived-At: Message-ID: From: HTTP issue updates X-BeenThere: http-issues@ietf.org X-Mailman-Version: 2.1.17 Reply-To: http-issues@ietf.org List-Id: HTTP issue updates List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 06 Jul 2016 09:40:54 -0000 ----==_mimepart_577cd2229d310_39483f89f39852bc476238 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Merged #209. --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/httpwg/http-extensions/pull/209#event-714099956 ----==_mimepart_577cd2229d310_39483f89f39852bc476238 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit

Merged #209.

—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.

----==_mimepart_577cd2229d310_39483f89f39852bc476238-- From nobody Thu Jul 7 18:03:42 2016 Delivered-To: http-issues@ietfa.amsl.com X-Spam-Flag: NO X-Spam-Score: -5.928 X-Spam-Level: X-Spam-Status: No, score=-5.928 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_16=1.092, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com Date: Thu, 07 Jul 2016 18:03:38 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1467939818; bh=ZmEQ6FRURAOPHF2irD4JZGU11ld3+uya4Qm3Uta8qRU=; h=From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=InZ8vYpRJT06TX91uW8X+hMvZH2boBDRxlr+2SNXX1p4pRNwXOjpsxsGHgilbJxGo 2jwoE3r2y1e/wvbw6/jelXJyT0JA4mj1OjA35TZuBOafWLuL2/AIRPdBPVVN1fBXlw viddVO3nWfjBBJ57T3vzVrD/hKpx26tftAAf3oaM= To: httpwg/http-extensions In-Reply-To: References: Subject: Re: [httpwg/http-extensions] Don't mix secure and insecure schemes on a connection (#188) Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_577efbea98c34_40773fc20957f2a039255"; charset=UTF-8 Content-Transfer-Encoding: 7bit Precedence: list Archived-At: Message-ID: From: HTTP issue updates X-BeenThere: http-issues@ietf.org X-Mailman-Version: 2.1.17 Reply-To: http-issues@ietf.org List-Id: HTTP issue updates List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 08 Jul 2016 01:03:41 -0000 ----==_mimepart_577efbea98c34_40773fc20957f2a039255 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Closed #188. --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/httpwg/http-extensions/issues/188#event-716486517 ----==_mimepart_577efbea98c34_40773fc20957f2a039255 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit

Closed #188.

—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.

----==_mimepart_577efbea98c34_40773fc20957f2a039255-- From nobody Sun Jul 10 19:18:49 2016 Delivered-To: http-issues@ietfa.amsl.com X-Spam-Flag: NO X-Spam-Score: -5.455 X-Spam-Level: X-Spam-Status: No, score=-5.455 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_20=1.546, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com Date: Sun, 10 Jul 2016 19:18:44 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1468203524; bh=RqngVWqPBa22NIOw7uVP8gC009RxO253oTv5UPrxjUM=; h=From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=OfVIXTkTHQrHHaWNJdTrcG7Gn6gmJXoh+R7uMztQKZxoJGj7c6GoOjNrQOmJNvken tstvUSZhN74ZZJCFStubuWsH6Rfhfg+qawOc43YdJGegvxHanO0/XplH+7rcCfTI5+ dpnNabptSomyLYQRx0uOsUqzf6dUDf2Eu2xNiRao= To: httpwg/http-extensions In-Reply-To: References: Subject: Re: [httpwg/http-extensions] feat: Add an example of a composite Crypto-Key header (#210) Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_57830204d8a98_327b3fd695ed929c102217"; charset=UTF-8 Content-Transfer-Encoding: 7bit Precedence: list Archived-At: Message-ID: From: HTTP issue updates X-BeenThere: http-issues@ietf.org X-Mailman-Version: 2.1.17 Reply-To: http-issues@ietf.org List-Id: HTTP issue updates List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 11 Jul 2016 02:18:47 -0000 ----==_mimepart_57830204d8a98_327b3fd695ed929c102217 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit > > The Crypto-Key header field uses the extended ABNF syntax defined in Section 1.2 > of [RFC7230] and the `parameter` and `OWS` rules from [RFC7231]. > > ~~~ abnf7230 > - Crypto-Key = #crypto_key_params > + Crypto-Key = crypto_key_params *(COMMA crypto_key_params) This change isn't correct, or even needed. The `#` has the same effect as what you are doing here, but it also allows for whitespace in the usual ways. --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/httpwg/http-extensions/pull/210/files/ba0663263b1e31b91fd5479b0f1d749a099838a6#r70195227 ----==_mimepart_57830204d8a98_327b3fd695ed929c102217 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit

In draft-ietf-httpbis-encryption-encoding.md:

>  
>  The Crypto-Key header field uses the extended ABNF syntax defined in Section 1.2
>  of [RFC7230] and the `parameter` and `OWS` rules from [RFC7231].
>  
>  ~~~ abnf7230
> -  Crypto-Key = #crypto_key_params
> +  Crypto-Key = crypto_key_params *(COMMA crypto_key_params)

This change isn't correct, or even needed. The # has the same effect as what you are doing here, but it also allows for whitespace in the usual ways.

—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.

----==_mimepart_57830204d8a98_327b3fd695ed929c102217-- From nobody Sun Jul 10 19:19:31 2016 Delivered-To: http-issues@ietfa.amsl.com X-Spam-Flag: NO X-Spam-Score: -5.455 X-Spam-Level: X-Spam-Status: No, score=-5.455 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_20=1.546, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com Date: Sun, 10 Jul 2016 19:19:27 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1468203567; bh=7F3HStQXnUAUtpUykn9XX2pA9amRpb2mK9p+hQTd8DE=; h=From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=krA+BPWj5n+rQnKRlxlOM2vx7XxKZd3XSidzODFo7pKNKq8dxyXcw0vqrcfW34lqd SrA0WjpY/a/vrCQaUXQJ5FI3KnFguPRf6v5OXAsr76TQNqBHoc4RoqSWw6k257urU8 YNaOMrcxEGneUwi0DihBqHAsxShiErBL88AKEimM= To: httpwg/http-extensions In-Reply-To: References: Subject: Re: [httpwg/http-extensions] feat: Add an example of a composite Crypto-Key header (#210) Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_5783022f52073_170b3f8fa553329c118917"; charset=UTF-8 Content-Transfer-Encoding: 7bit Precedence: list Archived-At: Message-ID: From: HTTP issue updates X-BeenThere: http-issues@ietf.org X-Mailman-Version: 2.1.17 Reply-To: http-issues@ietf.org List-Id: HTTP issue updates List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 11 Jul 2016 02:19:30 -0000 ----==_mimepart_5783022f52073_170b3f8fa553329c118917 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable > @@ -410,6 +413,18 @@ encryption key is the necessary size. > Alternative methods for determining input keying material MAY be defin= ed by > specifications that use this content-encoding. > = > +An example of a composite Crypto-Key field is > + > +~~~ example > + CryptoKey: keyid=3Dp256dh;dh=3DBN8VZLdyi=E2=80=A6,p256ecdsa=3DBFoWL= F=E2=80=A6 > +~~~ > + > +The proceeding example contained two parameter sets. The first > +contains "keyid" and "dh" used by this protocol (the values have been > +truncated with a "=E2=80=A6" for readablity). The second contains "p25= 6ecdsa" This ellipsis won't render in our wonderful ASCII format. --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/httpwg/http-extensions/pull/210/files/ba0663263b1e31b9= 1fd5479b0f1d749a099838a6#r70195265= ----==_mimepart_5783022f52073_170b3f8fa553329c118917 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable

In draft-ietf-httpbis-encryption-encoding.md:

> @@ -410,6 +413,18 @@ encryption key is the=
 necessary size.
>  Alternative methods for determining input keying material MAY be de=
fined by
>  specifications that use this content-encoding.
>  =

> +An example of a composite Crypto-Key field is
> +
> +~~~ example
> +   CryptoKey: keyid=3Dp256dh;dh=3DBN8VZLdyi=E2=80=A6,p256ecdsa=3DBF=
oWLF=E2=80=A6
> +~~~
> +
> +The proceeding example contained two parameter sets. The first
> +contains "keyid" and "dh" used by this protocol=
 (the values have been
> +truncated with a "=E2=80=A6" for readablity). The second =
contains "p256ecdsa"

This ellipsis won't render in our wonderful ASCII format.

&m= dash;
You are receiving this because you are subscribed to this thre= ad.
Reply to this email directly, view it on GitHub, or mute the thread. 3D""

----==_mimepart_5783022f52073_170b3f8fa553329c118917-- From nobody Mon Jul 18 05:30:49 2016 Delivered-To: http-issues@ietfa.amsl.com X-Spam-Flag: NO X-Spam-Score: -4.942 X-Spam-Level: X-Spam-Status: No, score=-4.942 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_12=2.059, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com Date: Mon, 18 Jul 2016 05:29:23 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1468844963; bh=PovUng0BBq+08NJd3i3wQSvrddVQ7xJXPSDuDWaqqgM=; h=From:Reply-To:To:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=ZFUaljZV0zRhQ1svB2Uu5taFyY4C5jN0ubtuqQ7Yqr+cNpI3OTXatYbyse1m30mQA e2hGw2yhtjSpnZmRtQOdaJXnfG5gnyFB+27ejaXMxOYaCGzr5VREUxq1pRIwjuJOjO TCGNdmyG+F1wNIpvEeJbPTmwYRnZy07G1zxtTIKo= To: httpwg/http-extensions In-Reply-To: References: Subject: Re: [httpwg/http-extensions] Wildcard names (#178) Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_578ccba37de27_68d93fa9d36452a06186c1"; charset=UTF-8 Content-Transfer-Encoding: 7bit Precedence: list Archived-At: Message-ID: From: HTTP issue updates X-BeenThere: http-issues@ietf.org X-Mailman-Version: 2.1.17 Reply-To: http-issues@ietf.org List-Id: HTTP issue updates List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 18 Jul 2016 12:30:48 -0000 ----==_mimepart_578ccba37de27_68d93fa9d36452a06186c1 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit in terms of which spec to reference for wildcard-cert name matching, it ought to be RFC6125. --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/httpwg/http-extensions/issues/178#issuecomment-233314854 ----==_mimepart_578ccba37de27_68d93fa9d36452a06186c1 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit

in terms of which spec to reference for wildcard-cert name matching, it ought to be RFC6125.

—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.

----==_mimepart_578ccba37de27_68d93fa9d36452a06186c1-- From nobody Mon Jul 18 05:31:17 2016 Delivered-To: http-issues@ietfa.amsl.com X-Spam-Flag: NO X-Spam-Score: -4.942 X-Spam-Level: X-Spam-Status: No, score=-4.942 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_12=2.059, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com Date: Mon, 18 Jul 2016 05:30:12 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1468845012; bh=LHvdcvVK8szFN4lcsE+/9ChRyhEThdR5WjO2emndT9I=; h=From:Reply-To:To:Subject:List-ID:List-Archive:List-Post: List-Unsubscribe:From; b=AJzZ7mSgIUm6lnsHTl0cI78/sjChd1BiVJ4HTo8PlK5Zadl00c656ZGMIxXDHTTsh aPt3ZYlU6OHMlX2UBTglY7eeHK1t67Ant2pEGgwtkC+hjvbt/rTxE2MpV8jWSfcU6g mOa019r0CCZ/5iY0qvYUOuGBtQMUW1x6VrX+//IE= To: httpwg/http-extensions Subject: [httpwg/http-extensions] Specify how origin frames interact with Altsvc (#214) Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_578ccbd4976c8_4bd63fe24fe7329c43744e"; charset=UTF-8 Content-Transfer-Encoding: 7bit Precedence: list Archived-At: Message-ID: From: HTTP issue updates X-BeenThere: http-issues@ietf.org X-Mailman-Version: 2.1.17 Reply-To: http-issues@ietf.org List-Id: HTTP issue updates List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 18 Jul 2016 12:31:17 -0000 ----==_mimepart_578ccbd4976c8_4bd63fe24fe7329c43744e Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit It seems like we should filter against the original origin when using alt-svc and we should specify this in the origin frame draft --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/httpwg/http-extensions/issues/214 ----==_mimepart_578ccbd4976c8_4bd63fe24fe7329c43744e Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit

It seems like we should filter against the original origin when using alt-svc and we should specify this in the origin frame draft

—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.

----==_mimepart_578ccbd4976c8_4bd63fe24fe7329c43744e-- From nobody Mon Jul 18 05:43:00 2016 Delivered-To: http-issues@ietfa.amsl.com X-Spam-Flag: NO X-Spam-Score: -5.474 X-Spam-Level: X-Spam-Status: No, score=-5.474 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_20=1.546, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com Date: Mon, 18 Jul 2016 05:42:55 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1468845775; bh=qvsWEvcGnWOySsQhqW3a6X58sj7+P0YMCwlQiqi0VtY=; h=From:Reply-To:To:Subject:List-ID:List-Archive:List-Post: List-Unsubscribe:From; b=qoHJUOMqdwbnZJ54zdBItFMhQDyoZj6o42I0OPhmw8rM/PRyg/XHG3w7dGoQtph34 gi0qEnQoWTsvxHHiw6o3BQ6KJknqSZKinwtfKFmbUni5n3/N+mdPuIebTzxLSpaukg 0V9MD39R9S2VBPdtfbr2nh96AiqW1r+WZxnXzLbs= To: httpwg/http-extensions Subject: [httpwg/http-extensions] security considerations regarding tracking (#215) Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_578ccecf1e0db_77453fb989e092a09066f"; charset=UTF-8 Content-Transfer-Encoding: 7bit Precedence: list Archived-At: Message-ID: From: HTTP issue updates X-BeenThere: http-issues@ietf.org X-Mailman-Version: 2.1.17 Reply-To: http-issues@ietf.org List-Id: HTTP issue updates List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 18 Jul 2016 12:42:59 -0000 ----==_mimepart_578ccecf1e0db_77453fb989e092a09066f Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit I think the security considerations in draft 01 are not adequate. Client hints are presumably sent on all requests, not just within contexts that currently allow execution of javascript via UA or site-specific policies. Hence, a site that does not allow javascript within certain frames (e.g., third party ads) will have no ability to similarly constrain the sending of client hints. In short, the section should seriously discuss the privacy concerns rather than make a rather flippant comparison to existing problems with javascript fingerprinting. Assume, for example, that the user has already configured their browser to prevent fingerprinting via other means and teach what ought to be done for CH to do the same. --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/httpwg/http-extensions/issues/215 ----==_mimepart_578ccecf1e0db_77453fb989e092a09066f Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit

I think the security considerations in draft 01 are not adequate. Client hints are presumably sent on all requests, not just within contexts that currently allow execution of javascript via UA or site-specific policies. Hence, a site that does not allow javascript within certain frames (e.g., third party ads) will have no ability to similarly constrain the sending of client hints.

In short, the section should seriously discuss the privacy concerns rather than make a rather flippant comparison to existing problems with javascript fingerprinting. Assume, for example, that the user has already configured their browser to prevent fingerprinting via other means and teach what ought to be done for CH to do the same.

—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.

----==_mimepart_578ccecf1e0db_77453fb989e092a09066f-- From nobody Fri Jul 22 01:38:57 2016 Delivered-To: http-issues@ietfa.amsl.com X-Spam-Flag: NO X-Spam-Score: -4.942 X-Spam-Level: X-Spam-Status: No, score=-4.942 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_12=2.059, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com Date: Fri, 22 Jul 2016 01:38:51 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1469176731; bh=wlmo6SOCmYnhS811o60FG9nVEKEP1rnVhy4AwX5w0Qs=; h=From:Reply-To:To:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=k+9+D6jnTkOLHHO8IMQ0hCdvSfdQP8KhrXC8gcJzXnquljNqp+7Rlrz6ouFt7p8gO yhGD7AWC3mi3hqsuTJc/kmtWYcU61jzIpO0FinC7b4KdyAstQ/Eq2ngc6uDTe+BhLy ELKsv+nEXADLyFac2xVlanKrXz6rCAhSNKqTOdMg= To: httpwg/http-extensions In-Reply-To: References: Subject: Re: [httpwg/http-extensions] Allow cookies without key or value. (#159) Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_5791db9b4dbcf_3ed3fa8f59472c01600e4"; charset=UTF-8 Content-Transfer-Encoding: 7bit Precedence: list Archived-At: Message-ID: From: HTTP issue updates X-BeenThere: http-issues@ietf.org X-Mailman-Version: 2.1.17 Reply-To: http-issues@ietf.org List-Id: HTTP issue updates List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 22 Jul 2016 08:38:56 -0000 ----==_mimepart_5791db9b4dbcf_3ed3fa8f59472c01600e4 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Discussed at Berlin IETF; Julian points out that we should check previous discussion in cookie WG. Martin points out that we should talk to the implementation that has divergent behaviour. --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/httpwg/http-extensions/issues/159#issuecomment-234487094 ----==_mimepart_5791db9b4dbcf_3ed3fa8f59472c01600e4 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit

Discussed at Berlin IETF; Julian points out that we should check previous discussion in cookie WG.
Martin points out that we should talk to the implementation that has divergent behaviour.

—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.

----==_mimepart_5791db9b4dbcf_3ed3fa8f59472c01600e4-- From nobody Fri Jul 22 01:40:46 2016 Delivered-To: http-issues@ietfa.amsl.com X-Spam-Flag: NO X-Spam-Score: -4.942 X-Spam-Level: X-Spam-Status: No, score=-4.942 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_12=2.059, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com Date: Fri, 22 Jul 2016 01:40:30 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1469176831; bh=7zG6DQrj4tz/bd7YEie809GmSfdA6K/K8GYHGZRIURc=; h=From:Reply-To:To:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=vEIZM/q/YjtbziyqwGVqepvlVlgy7wOvpfBSvaIPzGywMUQwGrN3CaebQyuNF4M8P 1/gTMb3hgj9qb8O99SKDCmXWuyXcjHatgiRBW/eelRTWh9o8Vyz/8hPMEMDC3pI+Mo I0u0kYVbhwOg05CV9NEhGdUNnWHK0/8SLsextPWI= To: httpwg/http-extensions In-Reply-To: References: Subject: Re: [httpwg/http-extensions] Change definition of unique cookie to include host-only-flag to match browser behavior (#199) Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_5791dbfee927e_1ceb3f894f9f52a010048b"; charset=UTF-8 Content-Transfer-Encoding: 7bit Precedence: list Archived-At: Message-ID: From: HTTP issue updates X-BeenThere: http-issues@ietf.org X-Mailman-Version: 2.1.17 Reply-To: http-issues@ietf.org List-Id: HTTP issue updates List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 22 Jul 2016 08:40:44 -0000 ----==_mimepart_5791dbfee927e_1ceb3f894f9f52a010048b Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Discussed in Berlin; seems reasonable. --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/httpwg/http-extensions/issues/199#issuecomment-234487434 ----==_mimepart_5791dbfee927e_1ceb3f894f9f52a010048b Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit

Discussed in Berlin; seems reasonable.

—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.

----==_mimepart_5791dbfee927e_1ceb3f894f9f52a010048b-- From nobody Fri Jul 22 01:43:39 2016 Delivered-To: http-issues@ietfa.amsl.com X-Spam-Flag: NO X-Spam-Score: -4.942 X-Spam-Level: X-Spam-Status: No, score=-4.942 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_12=2.059, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com Date: Fri, 22 Jul 2016 01:43:36 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1469177016; bh=es5TeipN/9QDWdIUfhtU38q8Y0W7msw+ZNPjuvDLx9E=; h=From:Reply-To:To:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=y6eLi+e0YT+Shkm04tHO0IGEa/tzASA8yqYlJjPrMnNemblgQZPRRat9lD1mps8Hf nkeVzmf2gbVVsB7parEcYZtDVFsAWBBD1tq6DgDxFt4KlKu6YkIyJPJ/dr+S2Z50l3 FQpOgNnu85zmLoMIUpmAIZJFqrJEVEva9/GMdhUk= To: httpwg/http-extensions In-Reply-To: References: Subject: Re: [httpwg/http-extensions] enhance title of RFC6265 to include "cookies" term (#204) Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_5791dcb83c509_53f43fde6385b2a020579e"; charset=UTF-8 Content-Transfer-Encoding: 7bit Precedence: list Archived-At: Message-ID: From: HTTP issue updates X-BeenThere: http-issues@ietf.org X-Mailman-Version: 2.1.17 Reply-To: http-issues@ietf.org List-Id: HTTP issue updates List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 22 Jul 2016 08:43:38 -0000 ----==_mimepart_5791dcb83c509_53f43fde6385b2a020579e Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Discussed in berlin: +1 --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/httpwg/http-extensions/issues/204#issuecomment-234488076 ----==_mimepart_5791dcb83c509_53f43fde6385b2a020579e Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit

Discussed in berlin: +1

—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.

----==_mimepart_5791dcb83c509_53f43fde6385b2a020579e-- From nobody Fri Jul 22 01:43:57 2016 Delivered-To: http-issues@ietfa.amsl.com X-Spam-Flag: NO X-Spam-Score: -4.942 X-Spam-Level: X-Spam-Status: No, score=-4.942 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_12=2.059, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com Date: Fri, 22 Jul 2016 01:43:54 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1469177034; bh=Bfylx8cWKTTY+MQarH48KOJYZSecI0dx+1cro7n/1po=; h=From:Reply-To:To:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=m7KyAoPIhQ3Xx4bQpl5dktDboxJ71NJ0BeIR/LuQZu49NpBzEkLfiLaiwdhmTEl5O YagQeb0F59fgVj149atWRi+pUJTAaG6UznpBnLHD5Hw3sAIUwzDTHBLqmU2ljtR39H kp8SdGdccUr9puiyKt4PgtpDrPSeHE6g3JghZIYk= To: httpwg/http-extensions In-Reply-To: References: Subject: Re: [httpwg/http-extensions] enhance title of RFC6265 to include "cookies" term (#204) Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_5791dcca5ca4d_5f753f880ff5b2bc11205f"; charset=UTF-8 Content-Transfer-Encoding: 7bit Precedence: list Archived-At: Message-ID: From: HTTP issue updates X-BeenThere: http-issues@ietf.org X-Mailman-Version: 2.1.17 Reply-To: http-issues@ietf.org List-Id: HTTP issue updates List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 22 Jul 2016 08:43:56 -0000 ----==_mimepart_5791dcca5ca4d_5f753f880ff5b2bc11205f Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit HTTP State Management Mechanism: The Sequel --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/httpwg/http-extensions/issues/204#issuecomment-234488129 ----==_mimepart_5791dcca5ca4d_5f753f880ff5b2bc11205f Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit

HTTP State Management Mechanism: The Sequel

—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.

----==_mimepart_5791dcca5ca4d_5f753f880ff5b2bc11205f-- From nobody Fri Jul 22 01:56:40 2016 Delivered-To: http-issues@ietfa.amsl.com X-Spam-Flag: NO X-Spam-Score: -5.909 X-Spam-Level: X-Spam-Status: No, score=-5.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_16=1.092, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com Date: Fri, 22 Jul 2016 01:56:33 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1469177793; bh=lQ+qkiy/3llLfGMP10SSaPV6rrv9r4VROIutxg/n3/o=; h=From:Reply-To:To:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=uz7Qb6RZI7sCKg0k607YuZ/tnVmDRyNdaZLdUUqTxD6YI07zOAlZT6xzarK+/yglx xajKyUHBeNnfviHKYtQUWye/TESTyPHhAkcF7TM33sBTVYYYl+ADw+WXvVlDW4tP8+ QSff4ZSvoJnAsbSTzpDVBK4jTYhAFIkgOToUJCUE= To: httpwg/http-extensions In-Reply-To: References: Subject: Re: [httpwg/http-extensions] Allow cookies without key or value. (#159) Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_5791dfc1d589f_4793fa8f59472c030847e"; charset=UTF-8 Content-Transfer-Encoding: 7bit Precedence: list Archived-At: Message-ID: From: HTTP issue updates X-BeenThere: http-issues@ietf.org X-Mailman-Version: 2.1.17 Reply-To: http-issues@ietf.org List-Id: HTTP issue updates List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 22 Jul 2016 08:56:38 -0000 ----==_mimepart_5791dfc1d589f_4793fa8f59472c030847e Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Context: around , ticket in --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/httpwg/http-extensions/issues/159#issuecomment-234490855 ----==_mimepart_5791dfc1d589f_4793fa8f59472c030847e Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit

Context: around https://mailarchive.ietf.org/arch/msg/http-state/7UX_L6HCNbMIyuI2Q9LQ3V7wDgk, ticket in https://trac.tools.ietf.org/wg/httpstate/trac/ticket/1

—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.

----==_mimepart_5791dfc1d589f_4793fa8f59472c030847e-- From nobody Tue Jul 26 00:41:40 2016 Delivered-To: http-issues@ietfa.amsl.com X-Spam-Flag: NO X-Spam-Score: -5.382 X-Spam-Level: X-Spam-Status: No, score=-5.382 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_24=1.618, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com Date: Tue, 26 Jul 2016 00:41:33 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1469518893; bh=G/UizIaInCa5JHmuYbe/KYlKD7OqxBLUGlr74Xj4ZVA=; h=From:Reply-To:To:Subject:List-ID:List-Archive:List-Post: List-Unsubscribe:From; b=dxaRxNXvfTfRNkdKw8APtAcuRxySX2SHKjg3ISObpCZZErtyDmsEMSpwI3NrRiZiK XYpABmt38G9tv2kQK7OGmbq/pOOyGbfaFk8VMmrHBh9KC4dB/AGznZ7m4EGmliqhjm jAknoqiZoc1M5RGoDkv2rAPqTEAVWL/vdlB3akRc= To: httpwg/http-extensions Subject: [httpwg/http-extensions] Cache digest and scoping (#216) Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_5797142dbeea3_642c3fed8909129c20213"; charset=UTF-8 Content-Transfer-Encoding: 7bit Precedence: list Archived-At: Message-ID: From: HTTP issue updates X-BeenThere: http-issues@ietf.org X-Mailman-Version: 2.1.17 Reply-To: http-issues@ietf.org List-Id: HTTP issue updates List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 26 Jul 2016 07:41:39 -0000 ----==_mimepart_5797142dbeea3_642c3fed8909129c20213 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit In the draft it is unclear what the scope the digest will cover. Is it scoped to the hostname of the stream (authority header)? Is the scope limited to the resources referenced in the stream and the client would have to keep a data structure around for every page? There are a few cases where I can see issues with scoping on hostnames: 1. If a user goes to www.example.com, you might want to expand the cache digest to all of the resources for example.com. 2. The first point doesn't make sense for a site like Tumblr where there are many blogs for *.tumblr.com and creating a digest might become large. Having a limit on the number of items in the digest and having the most used items in the cache digest might help. 3. There are also issues for sites where there are multiple domain names referenced by the stream and being served by the same connection. This will happen with finance.yahoo.com where it has s.yimg.com resources and they are served by the same server. For reference: "A CACHE_DIGEST frame can be sent from a client to a server on any stream in the "open" state, and conveys a digest of the contents of the client's cache for associated stream." --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/httpwg/http-extensions/issues/216 ----==_mimepart_5797142dbeea3_642c3fed8909129c20213 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit

In the draft it is unclear what the scope the digest will cover. Is it scoped to the hostname of the stream (authority header)? Is the scope limited to the resources referenced in the stream and the client would have to keep a data structure around for every page?

There are a few cases where I can see issues with scoping on hostnames:
1. If a user goes to www.example.com, you might want to expand the cache digest to all of the resources for example.com.
2. The first point doesn't make sense for a site like Tumblr where there are many blogs for *.tumblr.com and creating a digest might become large. Having a limit on the number of items in the digest and having the most used items in the cache digest might help.
3. There are also issues for sites where there are multiple domain names referenced by the stream and being served by the same connection. This will happen with finance.yahoo.com where it has s.yimg.com resources and they are served by the same server.

For reference:
"A CACHE_DIGEST frame can be sent from a client to a server on any stream in the "open" state, and conveys a digest of the contents of the client's cache for associated stream."

—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.

----==_mimepart_5797142dbeea3_642c3fed8909129c20213-- From nobody Wed Jul 27 05:13:17 2016 Delivered-To: http-issues@ietfa.amsl.com X-Spam-Flag: NO X-Spam-Score: -5.909 X-Spam-Level: X-Spam-Status: No, score=-5.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_16=1.092, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com Date: Wed, 27 Jul 2016 05:04:39 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1469621080; bh=ZEc/cw+3jstE2QAWmIEOaaikmE/PAj9bBMcIYYg9E8k=; h=From:Reply-To:To:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=SHU73a6cLlwQ4RPwOhCbXik4c2MlZSlyoGzmxyMoc36KlizAbNa6vTqRoRqEpWbAI PnqAwqqjPTyvdOj69ANtZvku01LxoAb0CcUIho27+rP2uo57fn2jLr6gGwo/4+3bqq KxeAw09nLI3Dk+2Rflp5Nsm5xX4Wkg1hUWZdb3zk= To: httpwg/http-extensions In-Reply-To: References: Subject: Re: [httpwg/http-extensions] Cache digest and scoping (#216) Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_5798a357ebcc6_30f43ff13ea0b29c8079dd"; charset=UTF-8 Content-Transfer-Encoding: 7bit Precedence: list Archived-At: Message-ID: From: HTTP issue updates X-BeenThere: http-issues@ietf.org X-Mailman-Version: 2.1.17 Reply-To: http-issues@ietf.org List-Id: HTTP issue updates List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 27 Jul 2016 12:13:15 -0000 ----==_mimepart_5798a357ebcc6_30f43ff13ea0b29c8079dd Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Just to rephrase to make sure I am understanding this correctly. If a request is make on a stream with the header {{:authority: www.yahoo.com}}, then only the resources in the cache digest would be from the hostname www.yahoo.com. Is this understanding correct? --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/httpwg/http-extensions/issues/216#issuecomment-235565495 ----==_mimepart_5798a357ebcc6_30f43ff13ea0b29c8079dd Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit

Just to rephrase to make sure I am understanding this correctly. If a request is make on a stream with the header {{:authority: www.yahoo.com}}, then only the resources in the cache digest would be from the hostname www.yahoo.com. Is this understanding correct?

—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.

----==_mimepart_5798a357ebcc6_30f43ff13ea0b29c8079dd-- From nobody Wed Jul 27 06:58:07 2016 Delivered-To: http-issues@ietfa.amsl.com X-Spam-Flag: NO X-Spam-Score: -5.909 X-Spam-Level: X-Spam-Status: No, score=-5.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_16=1.092, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com Date: Wed, 27 Jul 2016 06:58:03 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1469627883; bh=vqmhd72EgZEc0mUuKTHq2GD9RjJ8xyf2GAdUEXjH7KM=; h=From:Reply-To:To:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=bpKmqc7Qz18yEWY2DvrMfvs7CNgf6ksPRx71iJXWd2JRIcr9pjTKmwN2dmJFhqcpg ApRRwp7To1h7LPttg3zrraj/Z0p8cUVPPlZJBJ5/hIEDinXFcg9XJxXueRpsFtZCE6 /qbvjXMkgScGT5Ljzw/p4KHsKadUhQ/E71MXMZrA= To: httpwg/http-extensions In-Reply-To: References: Subject: Re: [httpwg/http-extensions] Cache digest and scoping (#216) Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_5798bdeb485df_59923ff3699f92b8144029"; charset=UTF-8 Content-Transfer-Encoding: 7bit Precedence: list Archived-At: Message-ID: From: HTTP issue updates X-BeenThere: http-issues@ietf.org X-Mailman-Version: 2.1.17 Reply-To: http-issues@ietf.org List-Id: HTTP issue updates List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 27 Jul 2016 13:58:06 -0000 ----==_mimepart_5798bdeb485df_59923ff3699f92b8144029 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit @bryancall > If a request is made on a stream with the header `:authority: www.yahoo.com`, then only the resources in the cache digest would be from the hostname www.yahoo.com. Is this understanding correct? Yes. That is what the current draft states (or tries to state). --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/httpwg/http-extensions/issues/216#issuecomment-235593139 ----==_mimepart_5798bdeb485df_59923ff3699f92b8144029 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit

@bryancall

If a request is made on a stream with the header :authority: www.yahoo.com, then only the resources in the cache digest would be from the hostname www.yahoo.com. Is this understanding correct?

Yes. That is what the current draft states (or tries to state).

—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.

----==_mimepart_5798bdeb485df_59923ff3699f92b8144029--