Specify behavior on incomplete requests

[MikeBishop]

Fixes #1596 (and an oversight I caught in passing) by specifying server behavior if it reaches the end of readable data on a stream and hasn't parsed a full HTTP request yet. There are a couple cases here, and I think this generically covers all the interesting ones.

• Client sends FIN early. Server sees truncated request, but non-error end of stream.
• Client sends RST_STREAM part-way through request. Server sees truncated request with read error.
• Client sends a RST_STREAM (but not a STOP_SENDING) after sending a fully-formed request.
  • ...and packet loss occurred. No retransmissions, so same as sending it part-way through request.
  • ...after the server has read the request and generated / begun generating a response. The server probably never realizes and responds merrily. If you didn't want it, you should have sent a STOP_SENDING.
  • ...but before the server has read all the data out of the buffer. Depends on implementation; transport might discard unread data or deliver all the data anyway. Either way, this is identical to one of the two previous cases.

We already discuss cancelling requests, so I added a suggestion that clients go ahead and include a STOP_SENDING if they reset their request stream.

[martinthomson]

Something about the special rules here seems just wrong. I have an alternative approach for this that I think is neater.

[martinthomson]

missing comma after "i.e."

[martinthomson]

Perhaps the way to do this is to say:

Cancellation of a request stream does not prevent a server from sending a response. A client that does not want a response SHOULD send a STOP_SENDING frame. A server does not need to take receipt of a RST_STREAM as a signal that it cannot provide a response, though it might be unable to do so. If a stream is reset by the client and the server is unable to respond as a result, it can treat that as a stream error of type HTTP_INCOMPLETE_REQUEST.

This is a different structure - it says that any STOP_SENDING and RST_STREAM on the request side of a stream only cancel the request and not the response. But I think that this is neater - it avoids all of the coupling you have going on here.

[MikeBishop]

I think that's basically what I was going for (the error at the server is that it doesn't have a complete request, not that the RST occurred), but that's a clearer way to state it.

[martinthomson]

Yeah, this is good. Mostly just nits. The one of fully-formed might be a deal-breaker if you don't fix it.

[martinthomson]

s/fully-formed/usable/ perhaps.

A server can often produce a response based purely on header fields. That's the case that we specifically want to support with STOP_SENDING (a 404 on a POST). This implies that the message needs to be complete, which isn't necessary.

[martinthomson]

I don't think that this is a normative requirement on reflection. Maybe just "Servers do not abort a response..." or "Servers are not expected to abort a response..."

[martinthomson]

s/(regardless of error code)/with any error code/