cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: Verification of Content-Length

From: Tim Bannister <isoma_at_jellybaby.net>
Date: Tue, 30 Apr 2013 09:40:51 +0100

On 30 Apr 2013, at 04:19, David Strauss <david_at_davidstrauss.net> wrote:

> We're trying to implement this for our own server/client communication and our communication with S3, so the set of implementations needing to interoperate is pretty limited. The goal is to checksum, not to avoid attacks. MD5 is quite adequate for that. I would like to use a standard rather than rolling our own method, though.

TCP already has checksums� would those be enough?

Content-MD5: will help to detect data corruption that has got past TCP's error correction mechanisms. However, I would keep this separate from libcurl because very few people would need or use it.

Depending on your application, you might like to look into support for HTTP trailers. Putting Content-MD5: into a trailer could avoid the need to buffer the whole response.

-- 
Tim Bannister � isoma_at_jellybaby.net
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette:  http://curl.haxx.se/mail/etiquette.html

Received on 2013-04-30

This message: [ Message body ]
Next message: Dan Fandrich: "Re: libcurl Reporting Different Version Between Commands"
Previous message: Ben Thomas: "Re: libcurl Reporting Different Version Between Commands"
In reply to: David Strauss: "Re: Verification of Content-Length"
Next in thread: Daniel Stenberg: "Re: Verification of Content-Length"
Reply: Daniel Stenberg: "Re: Verification of Content-Length"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]