RE: Set-Cookie vs list header parsing (i129)

William A. Rowe, Jr. wrote:
> You understand that both representations MUST cause a 400 
> reply, of course?
> The folding is irrelevant to the underlying flaw/contradiction.

That isn't what the spec says, AFAICT. Surely the proxy or the server MAY
report an error but they are not required to. More generally, there is
currently no requirement for the server to report syntax errors that do not
affect its processing of the message. For example, if the request included a
malformed Content-Location header, then the server wouldn't have to report
an error if it ignores Content-Location. Content-Length is a special case
because of its wide-ranging effects on parsing, but even for it there isn't
any such requirement. See issue 95 [1] and issue 93 [2].


- Brian

Received on Thursday, 28 August 2008 19:05:29 UTC