RFC 6455 by default? #1679
Comments
Apart from UTF-8 validation (which can be made spec compliant via
|
Follow the specification and close the connection when a non masked frame is received on the server or a masked frame is received on the client. Refs: https://tools.ietf.org/html/rfc6455#section-5.1 Closes #1679
Follow the specification and close the connection when a non masked frame is received on the server or a masked frame is received on the client. Refs: https://tools.ietf.org/html/rfc6455#section-5.1 Closes #1679
Follow the specification and close the connection when a non masked frame is received on the server or a masked frame is received on the client. Refs: https://tools.ietf.org/html/rfc6455#section-5.1 Closes #1679
|
@lpinca Thanks for the answer and fix, cheers! |
|
This was certainly a breaking change. A semver minor increment would have been appreciated here. Also, what about the ability to continue not masking connections when mask is explicitly set to false? |
|
In a certain way, every bug fix is a breaking change.
You can still do that but the receiving end, if spec compliant, will close the connection if the frame needs to be masked. |
|
@lpinca Is there a way to disable the mask check on the client receiving the messages? |
|
@angaaron no. |
Is this module by default RFC 6455 compliant? Or must we do for example the utf-8 and safe buffer checking manually?
I was reading this section: https://github.com/websockets/ws#opt-in-for-performance-and-spec-compliance
So I'm guessing manual checking those two things. But are there any other things in the RFC 6455 yous are aware of that ws doesn't do out-of-the-box (that's if ws isn't RFC 6455 compliant ws out-of-the-box)?
The text was updated successfully, but these errors were encountered: