Changeset 2342

Timestamp:

04/08/13 01:45:41 (9 years ago)

Author:

fielding@…

Message:

Many changes to properly target MUST requirements by role; addresses #478

Location:

draft-ietf-httpbis/latest

Files:

• p2-semantics.html (modified) (17 diffs)
• p2-semantics.xml (modified) (14 diffs)

draft-ietf-httpbis/latest/p2-semantics.html

@@ -449 +449 @@
   }
   @bottom-center {
-       content: "Expires February 2, 2014";
+       content: "Expires February 4, 2014";
   }
   @bottom-right {
@@ -494 +494 @@
       <meta name="dct.creator" content="Reschke, J. F.">
       <meta name="dct.identifier" content="urn:ietf:id:draft-ietf-httpbis-p2-semantics-latest">
-      <meta name="dct.issued" scheme="ISO8601" content="2013-08-01">
+      <meta name="dct.issued" scheme="ISO8601" content="2013-08-03">
       <meta name="dct.replaces" content="urn:ietf:rfc:2616">
       <meta name="dct.abstract" content="The Hypertext Transfer Protocol (HTTP) is an application-level protocol for distributed, collaborative, hypertext information systems. This document defines the semantics of HTTP/1.1 messages, as expressed by request methods, request header fields, response status codes, and response header fields, along with the payload of messages (metadata and body content) and mechanisms for content negotiation.">
@@ -522 +522 @@
             <tr>
                <td class="left">Intended status: Standards Track</td>
-               <td class="right">August 1, 2013</td>
+               <td class="right">August 3, 2013</td>
             </tr>
             <tr>
-               <td class="left">Expires: February 2, 2014</td>
+               <td class="left">Expires: February 4, 2014</td>
                <td class="right"></td>
             </tr>
@@ -553 +553 @@
          in progress”.
       </p>
-      <p>This Internet-Draft will expire on February 2, 2014.</p>
+      <p>This Internet-Draft will expire on February 4, 2014.</p>
       <h1><a id="rfc.copyrightnotice" href="#rfc.copyrightnotice">Copyright Notice</a></h1>
       <p>Copyright © 2013 IETF Trust and the persons identified as the document authors. All rights reserved.</p>
@@ -1008 +1008 @@
 </pre><p id="rfc.section.3.1.2.2.p.3">An example of its use is</p>
       <div id="rfc.figure.u.9"></div><pre class="text">  Content-Encoding: gzip
-</pre><p id="rfc.section.3.1.2.2.p.5">If multiple encodings have been applied to a representation, the content codings <em class="bcp14">MUST</em> be listed in the order in which they were applied. Additional information about the encoding parameters <em class="bcp14">MAY</em> be provided by other header fields not defined by this specification.
+</pre><p id="rfc.section.3.1.2.2.p.5">If one or more encodings have been applied to a representation, the sender that applied the encodings <em class="bcp14">MUST</em> generate a Content-Encoding header field that lists the content codings in the order in which they were applied. Additional
+         information about the encoding parameters <em class="bcp14">MAY</em> be provided by other header fields not defined by this specification.
       </p>
       <p id="rfc.section.3.1.2.2.p.6">Unlike Transfer-Encoding (<a href="p1-messaging.html#header.transfer-encoding" title="Transfer-Encoding">Section 3.3.1</a> of <a href="#Part1" id="rfc.xref.Part1.10"><cite title="Hypertext Transfer Protocol (HTTP/1.1): Message Syntax and Routing">[Part1]</cite></a>), the codings listed in Content-Encoding are a characteristic of the representation; the representation is defined in terms
@@ -1362 +1363 @@
          it is the resource owner's responsibility to ensure that the action is consistent with the request method semantics. For example,
          it is common for Web-based content editing software to use actions within query parameters, such as "page?do=delete". If the
-         purpose of such a resource is to perform an unsafe action, then the resource <em class="bcp14">MUST</em> disable or disallow that action when it is accessed using a safe request method. Failure to do so will result in unfortunate
+         purpose of such a resource is to perform an unsafe action, then the resource owner <em class="bcp14">MUST</em> disable or disallow that action when it is accessed using a safe request method. Failure to do so will result in unfortunate
          side-effects when automated processes perform a GET on every URI reference for the sake of link maintenance, pre-fetching,
          building a search index, etc.
@@ -1544 +1545 @@
       <h3 id="rfc.section.4.3.6"><a href="#rfc.section.4.3.6">4.3.6</a>&nbsp;<a id="CONNECT" href="#CONNECT">CONNECT</a></h3>
       <p id="rfc.section.4.3.6.p.1">The CONNECT method requests that the recipient establish a tunnel to the destination origin server identified by the request-target
-         and, if successful, thereafter restrict its behavior to blind forwarding of packets, in both directions, until the connection
+         and, if successful, thereafter restrict its behavior to blind forwarding of packets, in both directions, until the tunnel
          is closed.
       </p>
@@ -1561 +1562 @@
          connection remains governed by HTTP.
       </p>
-      <p id="rfc.section.4.3.6.p.6">A server <em class="bcp14">SHOULD NOT</em> send any <a href="p1-messaging.html#header.transfer-encoding" class="smpl">Transfer-Encoding</a> or <a href="p1-messaging.html#header.content-length" class="smpl">Content-Length</a> header fields in a successful response. A client <em class="bcp14">MUST</em> ignore any Content-Length or Transfer-Encoding header fields received in a successful response.
-      </p>
-      <p id="rfc.section.4.3.6.p.7">There are significant risks in establishing a tunnel to arbitrary servers, particularly when the destination is a well-known
+      <p id="rfc.section.4.3.6.p.6">A tunnel is closed when a tunnel intermediary detects that either side has closed its connection: the intermediary <em class="bcp14">MUST</em> attempt to send any outstanding data that came from the closed side to the other side, close both connections, and then discard
+         any remaining data left undelivered.
+      </p>
+      <p id="rfc.section.4.3.6.p.7">Proxy authentication might be used to establish the authority to create a tunnel. For example,</p>
+      <div id="rfc.figure.u.19"></div><pre class="text2">CONNECT server.example.com:80 HTTP/1.1
+Host: server.example.com:80
+Proxy-Authorization: basic aGVsbG86d29ybGQ=
+
+</pre><p id="rfc.section.4.3.6.p.9">There are significant risks in establishing a tunnel to arbitrary servers, particularly when the destination is a well-known
          or reserved TCP port that is not intended for Web traffic. For example, a CONNECT to a request-target of "example.com:25"
          would suggest that the proxy connect to the reserved port for SMTP traffic; if allowed, that could trick the proxy into relaying
          spam email. Proxies that support CONNECT <em class="bcp14">SHOULD</em> restrict its use to a limited set of known ports or a configurable whitelist of safe request targets.
       </p>
-      <p id="rfc.section.4.3.6.p.8">Proxy authentication might be used to establish the authority to create a tunnel. For example,</p>
-      <div id="rfc.figure.u.19"></div><pre class="text2">CONNECT server.example.com:80 HTTP/1.1
-Host: server.example.com:80
-Proxy-Authorization: basic aGVsbG86d29ybGQ=
-
-</pre><p id="rfc.section.4.3.6.p.10">When a tunnel intermediary detects that either side has closed its connection, any outstanding data that came from that side
-         will first be sent to the other side and then the intermediary will close both connections. If there is outstanding data left
-         undelivered, that data will be discarded.
+      <p id="rfc.section.4.3.6.p.10">A server <em class="bcp14">SHOULD NOT</em> send any <a href="p1-messaging.html#header.transfer-encoding" class="smpl">Transfer-Encoding</a> or <a href="p1-messaging.html#header.content-length" class="smpl">Content-Length</a> header fields in a successful response to CONNECT. A client <em class="bcp14">MUST</em> ignore any Content-Length or Transfer-Encoding header fields received in a successful response to CONNECT.
       </p>
       <p id="rfc.section.4.3.6.p.11">A payload within a CONNECT request message has no defined semantics; sending a payload body on a CONNECT request might cause
@@ -1610 +1610 @@
       <p id="rfc.section.4.3.8.p.1">The TRACE method requests a remote, application-level loop-back of the request message. The final recipient of the request <em class="bcp14">SHOULD</em> reflect the message received, excluding some fields described below, back to the client as the message body of a <a href="#status.200" class="smpl">200 (OK)</a> response with a <a href="#header.content-type" class="smpl">Content-Type</a> of "message/http" (<a href="p1-messaging.html#internet.media.type.message.http" title="Internet Media Type message/http">Section 7.3.1</a> of <a href="#Part1" id="rfc.xref.Part1.17"><cite title="Hypertext Transfer Protocol (HTTP/1.1): Message Syntax and Routing">[Part1]</cite></a>). The final recipient is either the origin server or the first server to receive a <a href="#header.max-forwards" class="smpl">Max-Forwards</a> value of zero (0) in the request (<a href="#header.max-forwards" id="rfc.xref.header.max-forwards.2" title="Max-Forwards">Section&nbsp;5.1.2</a>).
       </p>
-      <p id="rfc.section.4.3.8.p.2">A client <em class="bcp14">MUST NOT</em> send header fields in a TRACE request containing sensitive data that might be disclosed by the response. For example, it would
-         be foolish for a user agent to send stored user credentials <a href="#Part7" id="rfc.xref.Part7.1"><cite title="Hypertext Transfer Protocol (HTTP/1.1): Authentication">[Part7]</cite></a> or cookies <a href="#RFC6265" id="rfc.xref.RFC6265.1"><cite title="HTTP State Management Mechanism">[RFC6265]</cite></a> in a TRACE request. The final recipient of the request <em class="bcp14">SHOULD</em> exclude any request header fields that are likely to contain sensitive data when that recipient generates the response body.
+      <p id="rfc.section.4.3.8.p.2">A client <em class="bcp14">MUST NOT</em> generate header fields in a TRACE request containing sensitive data that might be disclosed by the response. For example,
+         it would be foolish for a user agent to send stored user credentials <a href="#Part7" id="rfc.xref.Part7.1"><cite title="Hypertext Transfer Protocol (HTTP/1.1): Authentication">[Part7]</cite></a> or cookies <a href="#RFC6265" id="rfc.xref.RFC6265.1"><cite title="HTTP State Management Mechanism">[RFC6265]</cite></a> in a TRACE request. The final recipient of the request <em class="bcp14">SHOULD</em> exclude any request header fields that are likely to contain sensitive data when that recipient generates the response body.
       </p>
       <p id="rfc.section.4.3.8.p.3">TRACE allows the client to see what is being received at the other end of the request chain and use that data for testing
@@ -1683 +1683 @@
       </p>
       <p id="rfc.section.5.1.1.p.4">Comparison is case-insensitive for names (expect-name), and case-sensitive for values (expect-value).</p>
-      <p id="rfc.section.5.1.1.p.5">The Expect header field <em class="bcp14">MUST</em> be forwarded if the request is forwarded.
+      <p id="rfc.section.5.1.1.p.5">An intermediary <em class="bcp14">MUST</em> forward a received Expect header field if the request is forwarded.
       </p>
       <p id="rfc.section.5.1.1.p.6">Many older HTTP/1.0 and HTTP/1.1 servers do not understand the Expect header field.</p>
@@ -1702 +1702 @@
          looking at the body.
       </p>
-      <p id="rfc.section.5.1.1.1.p.4">Requirements for HTTP/1.1 clients: </p>
+      <p id="rfc.section.5.1.1.1.p.4">Requirements for clients: </p>
       <ul>
          <li>If a client will wait for a <a href="#status.100" class="smpl">100 (Continue)</a> response before sending the payload body, it <em class="bcp14">MUST</em> send an <a href="#header.expect" class="smpl">Expect</a> header field with the "100-continue" expectation.
@@ -1708 +1708 @@
          <li>A client <em class="bcp14">MUST NOT</em> send an <a href="#header.expect" class="smpl">Expect</a> header field with the "100-continue" expectation if it does not intend to send a payload body.
          </li>
+         <li>Because of the presence of older implementations, the protocol allows ambiguous situations in which a client might send "Expect:
+            100-continue" without receiving either a <a href="#status.417" class="smpl">417 (Expectation Failed)</a> or a <a href="#status.100" class="smpl">100 (Continue)</a> status code. Therefore, when a client sends this header field to an origin server (possibly via a proxy) from which it has
+            never seen a <a href="#status.100" class="smpl">100 (Continue)</a> status code, the client <em class="bcp14">SHOULD NOT</em> wait for an indefinite period before sending the payload body.
+         </li>
       </ul>
-      <p id="rfc.section.5.1.1.1.p.5">Because of the presence of older implementations, the protocol allows ambiguous situations in which a client might send "Expect:
-         100-continue" without receiving either a <a href="#status.417" class="smpl">417 (Expectation Failed)</a> or a <a href="#status.100" class="smpl">100 (Continue)</a> status code. Therefore, when a client sends this header field to an origin server (possibly via a proxy) from which it has
-         never seen a <a href="#status.100" class="smpl">100 (Continue)</a> status code, the client <em class="bcp14">SHOULD NOT</em> wait for an indefinite period before sending the payload body.
-      </p>
-      <p id="rfc.section.5.1.1.1.p.6">Requirements for HTTP/1.1 origin servers: </p>
+      <p id="rfc.section.5.1.1.1.p.5">Requirements for origin servers: </p>
       <ul>
          <li>Upon receiving a request that includes an <a href="#header.expect" class="smpl">Expect</a> header field with the "100-continue" expectation, an origin server <em class="bcp14">MUST</em> either respond with <a href="#status.100" class="smpl">100 (Continue)</a> status code and continue to read from the input stream, or respond with a final status code. The origin server <em class="bcp14">MUST NOT</em> wait for the payload body before sending the <a href="#status.100" class="smpl">100 (Continue)</a> response. If the origin server responds with a final status code, it <em class="bcp14">MUST NOT</em> have performed the request method and <em class="bcp14">MAY</em> either close the connection or continue to read and discard the rest of the request.
@@ -1733 +1733 @@
          </li>
       </ul>
-      <p id="rfc.section.5.1.1.1.p.7">Requirements for HTTP/1.1 proxies: </p>
+      <p id="rfc.section.5.1.1.1.p.6">Requirements for proxies: </p>
       <ul>
          <li>If a proxy receives a request that includes an <a href="#header.expect" class="smpl">Expect</a> header field with the "100-continue" expectation, and the proxy either knows that the next-hop server complies with HTTP/1.1
@@ -1752 +1752 @@
       <div id="rfc.figure.u.21"></div><pre class="inline"><span id="rfc.iref.g.22"></span>  <a href="#header.max-forwards" class="smpl">Max-Forwards</a> = 1*<a href="#imported.abnf" class="smpl">DIGIT</a>
 </pre><p id="rfc.section.5.1.2.p.3">The Max-Forwards value is a decimal integer indicating the remaining number of times this request message can be forwarded.</p>
-      <p id="rfc.section.5.1.2.p.4">Each recipient of a TRACE or OPTIONS request containing a Max-Forwards header field <em class="bcp14">MUST</em> check and update its value prior to forwarding the request. If the received value is zero (0), the recipient <em class="bcp14">MUST NOT</em> forward the request; instead, it <em class="bcp14">MUST</em> respond as the final recipient. If the received Max-Forwards value is greater than zero, then the forwarded message <em class="bcp14">MUST</em> contain an updated Max-Forwards field with a value decremented by one (1).
-      </p>
-      <p id="rfc.section.5.1.2.p.5">The Max-Forwards header field <em class="bcp14">MAY</em> be ignored for all other request methods.
+      <p id="rfc.section.5.1.2.p.4">Each intermediary that receives a TRACE or OPTIONS request containing a Max-Forwards header field <em class="bcp14">MUST</em> check and update its value prior to forwarding the request. If the received value is zero (0), the intermediary <em class="bcp14">MUST NOT</em> forward the request; instead, the intermediary <em class="bcp14">MUST</em> respond as the final recipient. If the received Max-Forwards value is greater than zero, the intermediary <em class="bcp14">MUST</em> generate an updated Max-Forwards field in the forwarded message with a field-value that is the lesser of: a) the received
+         value decremented by one (1), or b) the recipient's maximum supported value for Max-Forwards.
+      </p>
+      <p id="rfc.section.5.1.2.p.5">A recipient <em class="bcp14">MAY</em> ignore a Max-Forwards header field received with any other request methods.
       </p>
       <div id="rfc.iref.c.10"></div>
@@ -2169 +2170 @@
       <p id="rfc.section.6.p.2">HTTP status codes are extensible. HTTP clients are not required to understand the meaning of all registered status codes,
          though such understanding is obviously desirable. However, clients <em class="bcp14">MUST</em> understand the class of any status code, as indicated by the first digit, and treat an unrecognized status code as being equivalent
-         to the x00 status code of that class, with the exception that a response with an unrecognized status code <em class="bcp14">MUST NOT</em> be cached.
+         to the x00 status code of that class, with the exception that a recipient <em class="bcp14">MUST NOT</em> cache a response with an unrecognized status code.
       </p>
       <p id="rfc.section.6.p.3">For example, if an unrecognized status code of 471 is received by a client, the client can assume that there was something
@@ -2429 +2430 @@
          A user agent <em class="bcp14">MAY</em> ignore unexpected 1xx status responses.
       </p>
-      <p id="rfc.section.6.2.p.3">Proxies <em class="bcp14">MUST</em> forward 1xx responses, unless the connection between the proxy and its client has been closed, or unless the proxy itself
-         requested the generation of the 1xx response. For example, if a proxy adds an "Expect: 100-continue" field when it forwards
-         a request, then it need not forward the corresponding <a href="#status.100" class="smpl">100 (Continue)</a> response(s).
+      <p id="rfc.section.6.2.p.3">A proxy <em class="bcp14">MUST</em> forward 1xx responses unless the proxy itself requested the generation of the 1xx response. For example, if a proxy adds an
+         "Expect: 100-continue" field when it forwards a request, then it need not forward the corresponding <a href="#status.100" class="smpl">100 (Continue)</a> response(s).
       </p>
       <div id="rfc.iref.73"></div>
@@ -2899 +2899 @@
       <p>Examples of the two obsolete formats are</p><pre class="text">Sunday, 06-Nov-94 08:49:37 GMT   ; obsolete RFC 850 format
 Sun Nov  6 08:49:37 1994         ; ANSI C's asctime() format
-</pre><p id="rfc.section.7.1.1.1.p.5">A recipient that parses a timestamp value in an HTTP header field <em class="bcp14">MUST</em> accept all three formats. A sender <em class="bcp14">MUST</em> generate the IMF-fixdate format when sending an HTTP-date value in a header field.
+</pre><p id="rfc.section.7.1.1.1.p.5">A recipient that parses a timestamp value in an HTTP header field <em class="bcp14">MUST</em> accept all three HTTP-date formats. When a sender generates a header field that contains one or more timestamps defined as
+         HTTP-date, the sender <em class="bcp14">MUST</em> generate those timestamps in the IMF-fixdate format.
       </p>
       <p id="rfc.section.7.1.1.1.p.6">An HTTP-date value represents time as an instance of Coordinated Universal Time (UTC). The first two formats indicate UTC

draft-ietf-httpbis/latest/p2-semantics.xml

@@ -587 +587 @@
 </artwork></figure>
 <t>
-   If multiple encodings have been applied to a representation, the content
-   codings &MUST; be listed in the order in which they were applied.
+   If one or more encodings have been applied to a representation, the sender
+   that applied the encodings &MUST; generate a Content-Encoding header field
+   that lists the content codings in the order in which they were applied.
    Additional information about the encoding parameters &MAY; be provided
    by other header fields not defined by this specification.
@@ -1211 +1212 @@
    to use actions within query parameters, such as "page?do=delete".
    If the purpose of such a resource is to perform an unsafe action, then
-   the resource &MUST; disable or disallow that action when it is accessed
-   using a safe request method.  Failure to do so will result in
+   the resource owner &MUST; disable or disallow that action when it is
+   accessed using a safe request method. Failure to do so will result in
    unfortunate side-effects when automated processes perform a GET on
    every URI reference for the sake of link maintenance, pre-fetching,
@@ -1594 +1595 @@
    destination origin server identified by the request-target and, if
    successful, thereafter restrict its behavior to blind forwarding of
-   packets, in both directions, until the connection is closed.
+   packets, in both directions, until the tunnel is closed.
 </t>
 <t>
@@ -1626 +1627 @@
 </t>
 <t>
-   A server &SHOULD-NOT; send any <x:ref>Transfer-Encoding</x:ref> or
-   <x:ref>Content-Length</x:ref> header fields in a successful response.
-   A client &MUST; ignore any Content-Length or Transfer-Encoding header
-   fields received in a successful response.
-</t>
+   A tunnel is closed when a tunnel intermediary detects that either side
+   has closed its connection: the intermediary &MUST; attempt to send any
+   outstanding data that came from the closed side to the other side, close
+   both connections, and then discard any remaining data left undelivered.
+</t>
+<t>
+   Proxy authentication might be used to establish the
+   authority to create a tunnel.  For example,
+</t>
+<figure><artwork type="message/http; msgtype=&#34;request&#34;" x:indent-with="  ">
+CONNECT server.example.com:80 HTTP/1.1
+Host: server.example.com:80
+Proxy-Authorization: basic aGVsbG86d29ybGQ=
+
+</artwork></figure>
 <t>
    There are significant risks in establishing a tunnel to arbitrary servers,
@@ -1642 +1653 @@
 </t>
 <t>
-   Proxy authentication might be used to establish the
-   authority to create a tunnel.  For example,
-</t>
-<figure><artwork type="message/http; msgtype=&#34;request&#34;" x:indent-with="  ">
-CONNECT server.example.com:80 HTTP/1.1
-Host: server.example.com:80
-Proxy-Authorization: basic aGVsbG86d29ybGQ=
-
-</artwork></figure>
-<t>
-   When a tunnel intermediary detects that either side has closed its
-   connection, any outstanding data that came from that side will first be
-   sent to the other side and then the intermediary will close both
-   connections. If there is outstanding data left undelivered,
-   that data will be discarded.
+   A server &SHOULD-NOT; send any <x:ref>Transfer-Encoding</x:ref> or
+   <x:ref>Content-Length</x:ref> header fields in a successful response
+   to CONNECT.
+   A client &MUST; ignore any Content-Length or Transfer-Encoding header
+   fields received in a successful response to CONNECT.
 </t>
 <t>
@@ -1743 +1744 @@
 </t>
 <t>
-   A client &MUST-NOT; send header fields in a TRACE request containing
+   A client &MUST-NOT; generate header fields in a TRACE request containing
    sensitive data that might be disclosed by the response. For example, it
    would be foolish for a user agent to send stored user credentials
@@ -1831 +1832 @@
 </t>
 <t>
-   The Expect header field &MUST; be forwarded if the request is forwarded.
+   An intermediary &MUST; forward a received Expect header field if the
+   request is forwarded.
 </t>
 <t>
@@ -1867 +1869 @@
 </t>
 <t>
-   Requirements for HTTP/1.1 clients:
+   Requirements for clients:
   <list style="symbols">
     <t>
-        If a client will wait for a <x:ref>100 (Continue)</x:ref> response before
-        sending the payload body, it &MUST; send an <x:ref>Expect</x:ref> header
-        field with the "100-continue" expectation.
+     If a client will wait for a <x:ref>100 (Continue)</x:ref> response before
+     sending the payload body, it &MUST; send an <x:ref>Expect</x:ref> header
+     field with the "100-continue" expectation.
     </t>
     <t>
-        A client &MUST-NOT; send an <x:ref>Expect</x:ref> header field with
-        the "100-continue" expectation if it does not intend to send a payload
-        body.
+     A client &MUST-NOT; send an <x:ref>Expect</x:ref> header field with
+     the "100-continue" expectation if it does not intend to send a payload
+     body.
+    </t>
+    <t>
+     Because of the presence of older implementations, the protocol allows
+     ambiguous situations in which a client might send "Expect: 100-continue"
+     without receiving either a <x:ref>417 (Expectation Failed)</x:ref> or a
+     <x:ref>100 (Continue)</x:ref> status code. Therefore, when a client sends
+     this header field to an origin server (possibly via a proxy) from which
+     it has never seen a <x:ref>100 (Continue)</x:ref> status code, the
+     client &SHOULD-NOT; wait for an indefinite period before sending the
+     payload body.
     </t>
   </list>
 </t>
 <t>
-   Because of the presence of older implementations, the protocol allows
-   ambiguous situations in which a client might send "Expect: 100-continue"
-   without receiving either a <x:ref>417 (Expectation Failed)</x:ref> 
-   or a <x:ref>100 (Continue)</x:ref> status code. Therefore, when a client sends this
-   header field to an origin server (possibly via a proxy) from which it
-   has never seen a <x:ref>100 (Continue)</x:ref> status code, the client &SHOULD-NOT;  
-   wait for an indefinite period before sending the payload body.
-</t>
-<t>
-   Requirements for HTTP/1.1 origin servers:
+   Requirements for origin servers:
   <list style="symbols">
     <t> Upon receiving a request that includes an <x:ref>Expect</x:ref> header
@@ -1942 +1945 @@
 </t>
 <t>
-   Requirements for HTTP/1.1 proxies:
+   Requirements for proxies:
   <list style="symbols">
     <t> If a proxy receives a request that includes an <x:ref>Expect</x:ref>
@@ -1958 +1961 @@
         numbers received from recently-referenced next-hop servers.
     </t>
-    <t> A proxy &MUST-NOT; forward a <x:ref>100 (Continue)</x:ref> response if the
-        request message was received from an HTTP/1.0 (or earlier)
+    <t> A proxy &MUST-NOT; forward a <x:ref>100 (Continue)</x:ref> response if
+        the request message was received from an HTTP/1.0 (or earlier)
         client and did not include an <x:ref>Expect</x:ref> header field with
         the "100-continue" expectation. This requirement overrides the
@@ -1988 +1991 @@
 </t>
 <t>
-   Each recipient of a TRACE or OPTIONS request
-   containing a Max-Forwards header field &MUST; check and update its
-   value prior to forwarding the request. If the received value is zero
-   (0), the recipient &MUST-NOT; forward the request; instead, it &MUST;
-   respond as the final recipient. If the received Max-Forwards value is
-   greater than zero, then the forwarded message &MUST; contain an updated
-   Max-Forwards field with a value decremented by one (1).
-</t>
-<t>
-   The Max-Forwards header field &MAY; be ignored for all other request
-   methods.
+   Each intermediary that receives a TRACE or OPTIONS request containing a
+   Max-Forwards header field &MUST; check and update its value prior to
+   forwarding the request. If the received value is zero (0), the intermediary
+   &MUST-NOT; forward the request; instead, the intermediary &MUST; respond as
+   the final recipient. If the received Max-Forwards value is greater than
+   zero, the intermediary &MUST; generate an updated Max-Forwards field in the
+   forwarded message with a field-value that is the lesser of: a) the received
+   value decremented by one (1), or b) the recipient's maximum supported value
+   for Max-Forwards.
+</t>
+<t>
+   A recipient &MAY; ignore a Max-Forwards header field received with any
+   other request methods.
 </t>
 </section>
@@ -2609 +2614 @@
    understand the class of any status code, as indicated by the first
    digit, and treat an unrecognized status code as being equivalent to the
-   x00 status code of that class, with the exception that a response with an
-   unrecognized status code &MUST-NOT; be cached.
+   x00 status code of that class, with the exception that
+   a recipient &MUST-NOT; cache a response with an unrecognized status code.
 </t>
 <t>
@@ -2740 +2745 @@
 </t>
 <t>
-   Proxies &MUST; forward 1xx responses, unless the connection between the
-   proxy and its client has been closed, or unless the proxy itself
+   A proxy &MUST; forward 1xx responses unless the proxy itself
    requested the generation of the 1xx response. For example, if a
    proxy adds an "Expect: 100-continue" field when it forwards a request,
@@ -3693 +3697 @@
 <t>
    A recipient that parses a timestamp value in an HTTP header field &MUST;
-   accept all three formats. A sender &MUST; generate the IMF-fixdate
-   format when sending an HTTP-date value in a header field.
+   accept all three HTTP-date formats. When a sender generates a header field
+   that contains one or more timestamps defined as HTTP-date,
+   the sender &MUST; generate those timestamps in the IMF-fixdate format.
 </t>
 <t>