- From: Louis Ryan <notifications@github.com>
- Date: Tue, 07 Jul 2015 21:30:28 -0700
- To: whatwg/fetch <fetch@noreply.github.com>
Received on Wednesday, 8 July 2015 04:30:57 UTC
Am I right in assuming that the objections are limited to the additional risk interpretation of truncated trailers present beyond the risks already present in truncating HTTP/1.1 chunked transfers / HTTP2 DATA frame sequences? Similarly we're only concerned with exposure/interpretation of these headers in the API distinct from whether receipt of trailers from the wire impacts whether a response is considered valid or not. AFAIK most XHR implementations simply drop received trailers on the floor but do not consider their presence an error at the API level. I don't claim to know the intricate details of how browsers interpret headers and which headers would present a greater risk when truncated after some payload has already been received. You mention 'transformative operations' earlier, could you clarify which headers you consider to present a risk in that class? --- Reply to this email directly or view it on GitHub: https://github.com/whatwg/fetch/issues/34#issuecomment-119426594
Received on Wednesday, 8 July 2015 04:30:57 UTC