Re: [whatwg/fetch] Allow connection reuse for request without credentials when TLS client auth is not in use (#341) from achristensen07 on 2017-05-23 (public-webapps-github@w3.org from May 2017)

From: achristensen07 <notifications@github.com>
Date: Tue, 23 May 2017 01:18:30 -0700
To: whatwg/fetch <fetch@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <whatwg/fetch/issues/341/303325613@github.com>

We reuse connections basically whenever we consider it advantageous to do so.  If someone were to observe our networking stack, they might conclude that connections are dropped seemingly randomly.  In reality, complicated heuristics are used to determine when to keep a connection open based on how long it's been unused, how many of various resources we have left, etc.  It is unfortunate that this leaks some information across domains.  Work is also currently being done to leak less such information.  We should work towards a better solution in the long term, but it will be especially hard without compromising performance too much.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/whatwg/fetch/issues/341#issuecomment-303325613

Received on Tuesday, 23 May 2017 08:19:11 UTC