- From: Adrien de Croy <adrien@qbik.com>
- Date: Mon, 18 May 2009 13:09:08 +1200
- To: Daniel Stenberg <daniel@haxx.se>
- CC: HTTP Working Group <ietf-http-wg@w3.org>
Did we get anywhere with this issue? I just made some mods to the proxy to ignore any entity body on CONNECT (e.g. not forward it to the server). This then leads to issues around understanding when the request message is complete. Fundamentally, if a message may have an entity, then the message is no longer delineated by the empty line that terminates the headers. If no Content-Length field is present, and no Transfer-Encoding specified, then presumably for any request there will be no entity, since the client would need to disconnect to signal the end of the entity body. Is this a fair assumption to make? Adrien Daniel Stenberg wrote: > On Wed, 6 May 2009, Adrien de Croy wrote: > >> I think some of the wording of RFC2817 was contemplating HTTP being >> used over the connection, which would explain some of the comments. >> However I don't know of any cases of this (raw HTTP over CONNECT, >> rather than over TLS over CONNECT), and it's pretty much pointless >> since the normal proxy semantics would achieve the same thing. You >> therefore use CONNECT when you want to use some protocol other than >> HTTP (e.g. SSL/TLS) over the connection. > > Pointless if the behavior is identical to everyone, yes. > > I can think of many situations where you'd either just (A) CONNECT and > send plain HTTP GET through, or the more complicated setup: (B) > CONNECT, tunnel ssh over to a remote proxy, and then send HTTP GET > over that tunnel, to avoid local proxy > enforcements/filters/logs/prying eyes. > > Of course I'm just blindly guessing here that proxies will treat the > case (A) differently than a normal GET in such aspects. I know case > (B) is widely used though. > -- Adrien de Croy - WinGate Proxy Server - http://www.wingate.com
Received on Monday, 18 May 2009 01:07:22 UTC