/ Zlib compression)
> https://bugzilla.mozilla.org/show_bug.cgi?id=1885138
> https://bugzilla.mozilla.org/show_bug.cgi?id=1881027
>
> пятница, 6 июля 2018 г. в 22:33:47 UTC+3, David Benjamin:
>
>> As additional motivation, this is part of the path towards QUIC
>> standardiz
Keep in mind also that cross-origin and same-origin requests generally
behave very differently on the web, not just in this specific way. So if
you're redirecting a portion of your origin in your dev environment, other
things will also behave differently. I recognize that's not how your
current dev
> I'm guessing we're talking about MITM middleboxes, is that correct?
> What's our plan to mitigate that risk? Slow rollout? Enterprise policy?
Both? Something else entirely?
Whether the middlebox MITMs the TLS connection is not terribly important.
As long as they attempt to parse the ClientHello,
Contact emailsdavid...@chromium.org, asymmet...@chromium.org,
b...@chromium.org, dadr...@google.com
Explainer
https://github.com/davidben/tls-trust-expressions/blob/main/explainer.md
Specification
https://davidben.github.io/tls-trust-expressions/draft-davidben-tls-trust-expr.html
Summary
TLS tr
On Wed, Feb 14, 2024 at 9:20 AM Yoav Weiss (@Shopify) <
yoavwe...@chromium.org> wrote:
> LGTM1
>
> On Wednesday, February 14, 2024 at 2:36:10 AM UTC+1 Nidhi Jaju wrote:
>
> On Wed, Feb 14, 2024 at 2:48 AM James Hartig wrote:
>
> My employer ran into the window size during our pre-production valid
Additionally, even if Chromium currently only uses it for prefetch logic,
the semantics seem to be about general HTTP caching. There's tons of
interest and expertise in httpbis around caching and how to optimize it, so
it's definitely the right venue for this work. I expect you'll find many
people
To clarify, rejecting the header *is* interpreting it properly. It's not
that duplicates aren't allowed, it's that there is no such thing as a
duplicate header in HTTP. Specifying two headers with the same name is *not* a
no-op. Rather, sending two headers with the same name is simply another
synta
me reports can be found here as well:
>
>
> https://bugs.chromium.org/p/chromium/issues/list?q=ERR_SSL_PROTOCOL_ERROR&can=2
>
> On Wednesday, September 27, 2023 at 6:04:54 PM UTC+1 David Benjamin wrote:
>
>> Yup, it's finch-gated. (Finch feature name in the orig
correct, since it is so hard to measure with a
> high accuracy.
>
> /Daniel
> On 2023-09-26 18:33, David Benjamin wrote:
>
> To clarify, I meant that we should apply this to WebRTC *in a
> separate launch*. This one will just be HTTPS. We don't have numbers or a
> fl
To clarify, I meant that we should apply this to WebRTC *in a
separate launch*. This one will just be HTTPS. We don't have numbers or a
flag for WebRTC right now, and we usually end up doing WebRTC separately
anyway, for better or worse. :-)
On Tue, Sep 26, 2023 at 12:31 PM David Benjamin
me, I'm
>>> not sure how many page loads happen across it. Probably a lot, but it's
>>> still dominated by subresources.
>>>
>>> In practice, the 0.02% bound appears to have shaken out to sub 0.01%
>>> (0.009%), determined by looking at d
> /Daniel
> On 2023-09-19 01:04, 'David Adrian' via blink-dev wrote:
>
> > Could we please request a signal?
>
> Done (and positive!). I had forgotten to add it to Chrome Status.
> https://github.com/WebKit/standards-positions/issues/46
>
> As for the explain
On Tue, Sep 19, 2023 at 1:50 AM Yoav Weiss wrote:
> On Tue, Sep 19, 2023 at 7:45 AM Yoav Weiss wrote:
>
>> On Tue, Sep 19, 2023 at 1:35 AM 'Jeffrey Yasskin' via blink-dev <
>> blink-dev@chromium.org> wrote:
>>
>>> On Mon, Sep 18, 2023 at 4:11 PM David Adrian wrote:
>>>
> This should probab
On Mon, Sep 18, 2023 at 10:06 AM Yoav Weiss wrote:
>
>
> On Sat, Sep 16, 2023 at 5:35 PM David Benjamin
> wrote:
>
>> On Sat, Sep 16, 2023 at 1:12 AM Yoav Weiss
>> wrote:
>>
>>>
>>>
>>> On Fri, Sep 15, 2023 at 10:05 PM Mike Taylor
On Sat, Sep 16, 2023 at 1:12 AM Yoav Weiss wrote:
>
>
> On Fri, Sep 15, 2023 at 10:05 PM Mike Taylor
> wrote:
>
>> On 9/11/23 6:34 PM, 'David Adrian' via blink-dev wrote:
>>
>> Contact emails david...@chromium.org, dadr...@google.com
>>
>> Explainer None
>>
>> I think a short explainer that outl
On Fri, Sep 8, 2023 at 4:16 PM 'David Adrian' via blink-dev <
blink-dev@chromium.org> wrote:
> > LGTM to experiment from M117 - M118 inclusive. I think that's what
> you're asking for - please let me know if I'm reading this incorrectly.
> Good luck!
>
> Thank you!
>
> > Any pointers to learn more
it worth
flag-protecting.)
On Mon, Jun 26, 2023 at 10:46 AM Rick Byers wrote:
> Hi Deomid,
> Thanks for the contribution! Do you know if chromium has any metrics on
> how common digest auth is? I took a quick look and didn't find one myself.
> +David
> Benjamin also. Technica
On Thu, Jun 8, 2023 at 1:18 AM Yoav Weiss wrote:
>
>
> On Wed, Jun 7, 2023 at 7:15 PM 'David Adrian' via blink-dev <
> blink-dev@chromium.org> wrote:
>
>> Contact emailsdadr...@google.com
>>
>> ExplainerNone
>>
>> Specificationhttps://www.rfc-editor.org/rfc/rfc9155.html
>>
>> Summary
>>
>> Chrome
(Sorry for the late reply. Was out sick for a bit.)
On Thu, Aug 11, 2022 at 4:06 PM Mike West wrote:
> I'm excited to see this! One question inline about timelines:
>
> On Thursday, August 11, 2022 at 9:55:48 PM UTC+2 David Benjamin wrote:
>
>> Contact emailsda
Contact emailsdavid...@chromium.org, dadr...@google.com
ExplainerNone
Specificationhttps://datatracker.ietf.org/doc/html/draft-ietf-tls-esni
Summary
The TLS Encrypted ClientHello (ECH) extension enables clients to encrypt
ClientHello messages, which are normally sent in cleartext, under a
serve
> On Thu, Jan 20, 2022 at 12:22 AM Mike Taylor
> wrote:
>
>> LGTM1, thanks for improving interop here.
>>
>> On 1/19/22 3:22 PM, David Benjamin wrote:
>>
>> Contact emails david...@chromium.org
>>
>> Specification https://datatracker.ietf.org/doc/htm
Contact emailsdavid...@chromium.org
Specificationhttps://datatracker.ietf.org/doc/html/rfc7301
Summary
This is a PSA about a small tweak to an existing feature. The change is to
include the TLS ALPN extension when initiating a new connection for
wss-schemed WebSockets, offering just the default
specifically, though I've seen it happen on
> Windows too.
>
> Claire - what version of your operating system are you running?
>
> Cheers,
> -slade
>
>
> On Wed, Oct 27, 2021 at 10:50 AM David Benjamin
> wrote:
>
>> Google servers have lon
y, October 17, 2018 at 5:15:10 AM UTC+8 David Benjamin wrote:
>
>> (This was announced as a blog post
>> <https://security.googleblog.com/2018/10/modernizing-transport-security.html>
>> yesterday.)
>>
>> Primary eng (and PM) emails
>>
>> davi...@chrom
24 matches
Mail list logo