/irc-logs / freenode / #whatwg / 2008-11-26 / end

Options:

# Session Start: Wed Nov 26 00:00:00 2008
# Session Ident: #whatwg
# [00:01] <Hixie> also a "preview" button, and buttons that do server-side filling of fields without submitting the whole thing
# [00:01] <Hixie> i guess i'll add novalidate
# [00:01] <Hixie> you have about an hour to come up with a better name than "novalidate". :-)
# [00:01] <Hixie> bbl
# [00:15] * Joins: nessy (n=nessy@124-168-156-5.dyn.iinet.net.au)
# [00:16] * Quits: erlehmann (n=erlehman@dslb-088-075-197-149.pools.arcor-ip.net) ("Ex-Chat")
# [00:18] * Joins: arve__ (n=virtuelv@163.80-202-65.nextgentel.com)
# [00:24] * Quits: roc (n=roc@202.0.36.64)
# [00:30] * Quits: smerp (n=smerp@66.192.95.199) (Read error: 110 (Connection timed out))
# [00:34] * Quits: aaronlev (n=chatzill@f051078123.adsl.alicedsl.de) (Read error: 110 (Connection timed out))
# [00:35] * Quits: virtuelv_ (n=virtuelv@163.80-202-65.nextgentel.com) (Read error: 110 (Connection timed out))
# [00:36] * Joins: MikeSmith (n=MikeSmit@EM114-48-12-131.pool.e-mobile.ne.jp)
# [00:40] * Quits: dglazkov (n=dglazkov@72.14.224.1)
# [00:44] * Quits: MikeSmith (n=MikeSmit@EM114-48-12-131.pool.e-mobile.ne.jp) ("sex break")
# [00:46] * Quits: arve__ (n=virtuelv@163.80-202-65.nextgentel.com) ("Leaving")
# [00:53] * Quits: weinig (n=weinig@cpe-66-65-132-93.nyc.res.rr.com)
# [00:56] * Quits: aroben (n=adamrobe@unaffiliated/aroben)
# [00:58] <BenMillard> Hixie, calling it skipvalidity (which could be authored as skipValidity in the document) seems more consistent with the use of "validity" and "fooValidity()" and "ValidityFoo" for things in The Constraint Validation API: http://www.whatwg.org/specs/web-apps/current-work/multipage/forms.html#the-constraint-validation-api
# [01:01] <BenMillard> ignorevalidity (ignoreValidity) fits the above and fits the naming of "ignoreCase" and the convention for saying "UAs must ignore foo"
# [01:03] * Quits: tndH (n=Rob@james-baillie-pc083-058.student-halls.leeds.ac.uk) ("ChatZilla 0.9.84-rdmsoft [XULRunner 1.9.0.1/2008072406]")
# [01:05] * Joins: tantek (n=tantek@75.144.18.134)
# [01:11] * Quits: Hish (n=chatzill@mail2.n-e-s.de) (Read error: 104 (Connection reset by peer))
# [01:11] * Joins: Hish__ (n=chatzill@mail2.n-e-s.de)
# [01:11] * Hish__ is now known as Hish
# [01:11] * Joins: MikeSmith (n=MikeSmit@EM114-48-37-67.pool.e-mobile.ne.jp)
# [01:12] * Quits: tantek (n=tantek@75.144.18.134)
# [01:12] * Joins: Hish__ (n=chatzill@p5B382A65.dip0.t-ipconnect.de)
# [01:15] * Joins: tantek (n=tantek@75.144.18.134)
# [01:18] <Hixie> i think i prefer novalidate, for consistency with nohref, noresize, noshade, and nowrap (though the irony that all four of those are obsolete in html5 is not lost on me)
# [01:23] <BenMillard> so many conventions to choose from :P
# [01:23] <BenMillard> I'm unlikely to use the feature so I don't mind what you call it
# [01:28] * Joins: Hish___ (n=chatzill@mail2.n-e-s.de)
# [01:29] * Quits: Hish (n=chatzill@mail2.n-e-s.de) (Read error: 110 (Connection timed out))
# [01:29] * Hish___ is now known as Hish
# [01:32] * Joins: weinig (n=weinig@cpe-66-65-132-93.nyc.res.rr.com)
# [01:32] <Hixie> BenMillard: :-)
# [01:35] * Quits: Hish__ (n=chatzill@p5B382A65.dip0.t-ipconnect.de) (Read error: 60 (Operation timed out))
# [01:41] * Parts: ojan (n=ojan@nat/google/x-c6af13b38918cc27) ("Leaving")
# [01:54] * Joins: Hish___ (n=chatzill@p5B382A65.dip0.t-ipconnect.de)
# [01:58] * Quits: Hish (n=chatzill@mail2.n-e-s.de) (Read error: 60 (Operation timed out))
# [01:58] * Hish___ is now known as Hish
# [02:02] * Quits: svl (n=me@ip565744a7.direct-adsl.nl) ("And back he spurred like a madman, shrieking a curse to the sky.")
# [02:02] * Joins: Hish___ (n=chatzill@mail2.n-e-s.de)
# [02:08] * weinig is now known as weinig|HOUSE
# [02:11] * Quits: KevinMarks (n=KevinMar@nat/google/x-9c47188beed8039c)
# [02:22] * Quits: Hish (n=chatzill@p5B382A65.dip0.t-ipconnect.de) (Read error: 110 (Connection timed out))
# [02:26] * Joins: KevinMarks (n=KevinMar@216.239.45.19)
# [02:43] <Hixie> ew
# [02:43] <Hixie> MouseEvent makes a mess of the init* methods
# [02:44] * Joins: dglazkov (n=dglazkov@c-24-130-144-56.hsd1.ca.comcast.net)
# [02:52] * Joins: smerp (n=smerp@cpe-066-057-061-202.nc.res.rr.com)
# [02:53] * Joins: smerp_ (n=smerp@66.192.95.199)
# [03:01] * Quits: smerp (n=smerp@cpe-066-057-061-202.nc.res.rr.com) (Read error: 145 (Connection timed out))
# [03:03] * Quits: tantek (n=tantek@75.144.18.134)
# [03:04] * Joins: tantek (n=tantek@75.144.18.134)
# [03:06] <Hixie> hmm
# [03:06] <Hixie> so <input type=color>
# [03:06] <Hixie> should it be possible for the user to set it to no color?
# [03:06] * Quits: tantek (n=tantek@75.144.18.134) (Client Quit)
# [03:09] <BenMillard> transparent?
# [03:18] <Hixie> no, nothing at all
# [03:19] <Hixie> like, type=number allows any number, as well as ""
# [03:19] <Dashiva> Can it have no color as initial value?
# [03:19] <Hixie> but type=range doesn't allow ""
# [03:19] <Hixie> Dashiva: that's another way of phrasing the same question, effectively
# [03:20] <Lachy> what are the use cases for colour selection that we're trying to address and which ones are we not?
# [03:21] <Hixie> in: selecting the colour of a label in gmail, selecting a color in a paint program
# [03:21] <Hixie> can't think of any that are "out" offhand, but i'm sure there are many
# [03:22] <Hixie> http://images.google.com/images?client=safari&rls=en-us&q=color%20pickers&ie=UTF-8&oe=UTF-8&um=1&sa=N&tab=wi suggests that color pickers don't have a "no color" mode
# [03:22] <Lachy> ok, so this is basically a simple RGB colour palette
# [03:23] <Dashiva> Hixie: But many of them have a cancel button
# [03:24] <Hixie> Dashiva: yeah but that doesn't unset the previously selected color
# [03:24] <Lachy> I'd assume things like paint colour selectors on interior decoration sites wouldn't be adequately covered by this, so that'd be out
# [03:25] <Hixie> right
# [03:26] <Hixie> out: pantone color selector
# [03:27] <Dashiva> I suppose we aren't addressing "How do you ensure the user selects a color and doesn't just go ahead with the default without considering it" either
# [03:29] * Quits: rillian (n=giles@66.183.19.247) (Read error: 54 (Connection reset by peer))
# [03:30] <Hixie> not really
# [03:36] * Joins: billyjackass (n=MikeSmit@dhcp-246-124.mag.keio.ac.jp)
# [03:37] <Lachy> yes, I think no colour should be possible, because if someone wants to make a paint application, that's one way of letting the user select transparent
# [03:40] <BenMillard> Hixie, I think Word has a no colour mode.
# [03:41] * Quits: BenMillard (i=cerbera@cpc1-flee1-0-0-cust285.glfd.cable.ntl.com)
# [03:41] <Hixie> Lachy: opacity should be separate from this anyway
# [03:45] * Quits: KevinMarks (n=KevinMar@216.239.45.19) ("The computer fell asleep")
# [03:46] * Joins: KevinMarks (n=KevinMar@216.239.45.19)
# [03:49] <Lachy> Hixie, the colour palettes in apps like Adobe Fireworks allow the user to select a no-colour option. it's useful when, e.g., you want to set the border colour of a shape to one colour and leave the fill colour transparent
# [03:49] * Quits: Amorphous (i=jan@unaffiliated/amorphous) (Read error: 113 (No route to host))
# [03:52] * Quits: MikeSmith (n=MikeSmit@EM114-48-37-67.pool.e-mobile.ne.jp) (Read error: 110 (Connection timed out))
# [03:52] * Joins: Amorphous (i=jan@unaffiliated/amorphous)
# [03:55] <Hixie> Lachy: makes sense
# [03:56] * Joins: dglazkov_ (n=dglazkov@72.14.224.1)
# [03:59] <Hixie> hmm
# [03:59] <Hixie> should we make the form <input type=color> parse colors in a simple way, or using the wacky <font color> algorithm?
# [04:00] <Hixie> or using the css algorithm...
# [04:00] <Hixie> so many options...
# [04:00] <Hixie> can't use css, as it might return an alpha!=1.0 color
# [04:02] * Quits: KevinMarks (n=KevinMar@216.239.45.19) (Connection timed out)
# [04:04] * Quits: dimich (n=dimich@72.14.227.1) (Read error: 110 (Connection timed out))
# [04:06] <Lachy> could you use a subset of the CSS colour, including #FFF, #FFFFFF, rgb(...) and hsl(...), but excluding rgba() and hsla()?
# [04:06] * billyjackass is now known as MikeSmith
# [04:06] <Lachy> also, the colour keywords
# [04:09] <Hixie> that seems unnecessarily complex given that we'd still want to serialise everything to #rrggbb for submission
# [04:09] * Quits: dave_levin (n=dave_lev@72.14.227.1) (Read error: 110 (Connection timed out))
# [04:10] <heycam> that's pretty much the same as strokeStyle/fillStyle on the canvas context object though
# [04:10] <Lachy> specifically, what conditions are you trying to address? Is this for when the user types in a colour manually or when the value is set by a script?
# [04:11] <Hixie> strokeStyle and fillStyle are full CSS colors
# [04:11] <Hixie> Lachy: value of the value="" attribute
# [04:11] <Hixie> (and form submission)
# [04:12] <Lachy> oh, ok.
# [04:17] * Joins: dave_levin (n=dave_lev@c-98-203-247-78.hsd1.wa.comcast.net)
# [04:18] * Quits: dglazkov (n=dglazkov@c-24-130-144-56.hsd1.ca.comcast.net) (Read error: 110 (Connection timed out))
# [04:18] * Joins: dave_levin_ (n=dave_lev@72.14.224.1)
# [04:19] * dglazkov_ is now known as dglazkov
# [04:22] * weinig|HOUSE is now known as weinig
# [04:22] <Lachy> with other input types, I don't think there is any precedent for the value of the value attribute being automatically normalised prior to submission, and so it would probably be best to require the format #rrggbb
# [04:23] <Lachy> plus, if we allowed other types, then that would seem to create complications when the input.value property is set by scripts
# [04:24] <Lachy> s/other types/other formats/
# [04:25] <Hixie> i'm still normalising it before submission btw (from uppercase to lowercase)
# [04:25] <Lachy> ok
# [04:34] * Quits: dave_levin (n=dave_lev@c-98-203-247-78.hsd1.wa.comcast.net) (Read error: 110 (Connection timed out))
# [04:42] * Joins: famicom (i=famicom@5ED2FF2D.cable.ziggo.nl)
# [04:59] * Quits: dolske (n=dolske@firefox/developer/dolske) ("Leaving...")
# [05:00] * Joins: dolske (n=dolske@firefox/developer/dolske)
# [05:09] <Lachy> Hixie, is the order of the input types in the table in any particular order? It seems rather random. Could you put them into alphabetical order?
# [05:10] <Lachy> well, I guess there sort of grouped by category
# [05:15] <Hixie> the order is the order used so that there are the fewest differences from type to type in terms of what cells say "yes"
# [05:15] <Hixie> except that password isn't before text
# [05:15] <Lachy> Hixie, a valid simple colour should be A to F, not A to Z
# [05:16] <Hixie> oops
# [05:16] * Quits: dolske (n=dolske@firefox/developer/dolske) (Connection timed out)
# [05:18] <Hixie> ok fixed
# [05:21] * Joins: dolske (n=dolske@firefox/developer/dolske)
# [05:22] * Quits: dbaron (n=dbaron@corp-241.mountainview.mozilla.com) ("8403864 bytes have been tenured, next gc will be global.")
# [05:34] * Quits: doublec (n=chris@202.0.36.64) ("Leaving")
# [05:39] * Quits: xcombelle (n=chatzill@AToulouse-158-1-151-166.w90-60.abo.wanadoo.fr) (Remote closed the connection)
# [05:40] * weinig is now known as weinig|away
# [05:40] * Joins: dbaron (n=dbaron@c-71-204-144-136.hsd1.ca.comcast.net)
# [05:53] * Quits: smerp_ (n=smerp@66.192.95.199)
# [06:03] * Joins: doublec (n=Chris_Do@118-92-214-173.dsl.dyn.ihug.co.nz)
# [06:11] * Quits: heycam (n=cam@clm-laptop.infotech.monash.edu.au) ("bye")
# [06:13] * Joins: dimich (n=dimich@c-98-203-230-54.hsd1.wa.comcast.net)
# [06:15] * Quits: dglazkov (n=dglazkov@72.14.224.1)
# [06:21] * Quits: dimich (n=dimich@c-98-203-230-54.hsd1.wa.comcast.net)
# [06:39] * Quits: famicom (i=famicom@5ED2FF2D.cable.ziggo.nl) ("Leaving")
# [06:42] * Joins: harig (n=harig_in@122.160.12.230)
# [06:49] * Joins: sayrer (n=chatzill@user-160va8b.cable.mindspring.com)
# [06:50] <sayrer> Hixie, so, I thought there was a feature freeze? but now we have this new 401 form...
# [06:57] * Joins: tantek (n=tantek@c-67-180-199-228.hsd1.ca.comcast.net)
# [06:59] <Hixie> sayrer: i said i wasn't adding anything new that hadn't already been requested as of the feature freeze (last december)
# [06:59] <Hixie> the recent additions are from requests from 2006/2007
# [07:00] <sayrer> that doesn't seem like a useful freeze to me
# [07:00] <sayrer> thanks
# [07:00] <Hixie> (or, in the case of workers, from requests from browser vendors who said that without a spec they'd just make up stuff)
# [07:00] <Hixie> well the freeze is only intended to land us on schedule
# [07:00] <sayrer> well, you are a browser vendor just making stuff up :)
# [07:00] <Hixie> i mean implementors
# [07:01] * sayrer shrugs
# [07:05] * Quits: dave_levin_ (n=dave_lev@72.14.224.1)
# [07:06] * Joins: dave_levin (n=dave_lev@72.14.224.1)
# [07:19] * Quits: tantek (n=tantek@c-67-180-199-228.hsd1.ca.comcast.net) (Read error: 110 (Connection timed out))
# [07:27] * Joins: tantek (n=tantek@adsl-63-195-114-133.dsl.snfc21.pacbell.net)
# [07:34] * Quits: sayrer (n=chatzill@user-160va8b.cable.mindspring.com) (Read error: 110 (Connection timed out))
# [07:42] * Joins: heycam (n=cam@203-217-88-133.dyn.iinet.net.au)
# [07:49] * Joins: maikmerten (n=merten@ls5dhcp195.cs.uni-dortmund.de)
# [07:52] <hsivonen> Hixie: seems more like a suggestion freeze than a feature freeze :-)
# [07:56] <Hixie> yeah, that'd be a better term
# [07:56] <Hixie> i don't recall exactly how i phrased it
# [08:04] <hsivonen> http://intertwingly.net/blog/2008/11/20/Half-Full#c1227667144
# [08:05] <hsivonen> Is there a definition for hixie:LC, hixie:CR, w3c:LC and w3c:CR?
# [08:06] <hsivonen> (and are there URIs to bind hixie and w3c to?)
# [08:18] * Joins: KevinMarks (n=KevinMar@c-98-207-134-151.hsd1.ca.comcast.net)
# [08:22] <hsivonen> Hixie: btw, what happened to the OpenID integration idea that sicking mentioned at TPAC?
# [08:24] <Hixie> i wonder how hixie:LC, hixie:CR, w3c:LC and w3c:CR differ
# [08:24] <Hixie> hsivonen: no idea
# [08:25] <Hixie> what's zcorpan's e-mail address?
# [08:25] <Hixie> specifically, his webkit bugzilla account address
# [08:26] <hsivonen> I'd try searching webkit bugzilla for zcorpan and simonp
# [08:27] <Hixie> tried that
# [08:28] * Joins: BenMillard (i=cerbera@cpc1-flee1-0-0-cust285.glfd.cable.ntl.com)
# [08:31] * Joins: aaronlev (n=chatzill@f051078123.adsl.alicedsl.de)
# [08:32] * Quits: dbaron (n=dbaron@c-71-204-144-136.hsd1.ca.comcast.net) ("8403864 bytes have been tenured, next gc will be global.")
# [08:41] * Quits: theanxy (n=wzajac@student.agh.edu.pl) (zelazny.freenode.net irc.freenode.net)
# [08:42] * Joins: theanxy (n=wzajac@student.agh.edu.pl)
# [08:45] * Joins: tndH (n=Rob@james-baillie-pc083-058.student-halls.leeds.ac.uk)
# [08:47] * Joins: erlehmann (n=erlehman@dslb-088-075-220-157.pools.arcor-ip.net)
# [08:50] * Parts: BenMillard (i=cerbera@cpc1-flee1-0-0-cust285.glfd.cable.ntl.com)
# [08:51] * Joins: Maurice (n=ano@a80-101-46-164.adsl.xs4all.nl)
# [08:51] <hsivonen> Hixie: was "no idea" to the OpenID idea? that is, did you examine the feasibility of moving bits of the OpenID experience to browser chrome in a backwards-compatible way?
# [09:02] <hsivonen> http://lists.w3.org/Archives/Public/www-validator/2008Nov/0044.html
# [09:03] <Hixie> no idea was to openid. not really sure what to do about it.
# [09:05] * Joins: pesla (n=retep@procurios.xs4all.nl)
# [09:13] * Quits: hdh (n=hdh@58.187.62.119) (Read error: 110 (Connection timed out))
# [09:13] * Joins: ap (n=ap@195.239.126.10)
# [09:24] * Quits: MikeSmith (n=MikeSmit@dhcp-246-124.mag.keio.ac.jp) ("sex break")
# [09:33] <Hixie> when you substitute a for b in c, which one is left in c? a, or b?
# [09:34] <takkaria> a?
# [09:43] * Joins: virtuelv (n=virtuelv@pat-tdc.opera.com)
# [09:44] * Joins: Hish____ (n=chatzill@p3EE221D1.dip0.t-ipconnect.de)
# [09:44] * Hish____ is now known as Hish
# [09:47] * Quits: weinig|away (n=weinig@cpe-66-65-132-93.nyc.res.rr.com)
# [09:47] * Quits: Hish___ (n=chatzill@mail2.n-e-s.de) (Read error: 60 (Operation timed out))
# [09:49] * Joins: famicom (i=famicom@5ED2FF2D.cable.ziggo.nl)
# [09:50] * Joins: tthorsen (n=tommy@home.kvaleberg.no)
# [09:53] <gavin> a
# [09:53] <gavin> a is a substitue for b
# [09:58] * Quits: tndH (n=Rob@james-baillie-pc083-058.student-halls.leeds.ac.uk) (Read error: 110 (Connection timed out))
# [10:04] * Joins: Hish____ (n=chatzill@mail2.n-e-s.de)
# [10:04] * Quits: harig (n=harig_in@122.160.12.230) (Read error: 110 (Connection timed out))
# [10:07] <Hixie> wikitionary agrees
# [10:09] * Quits: Hish (n=chatzill@p3EE221D1.dip0.t-ipconnect.de) (Read error: 60 (Operation timed out))
# [10:09] * Hish____ is now known as Hish
# [10:11] * Joins: doublec_ (n=Chris_Do@118-92-214-173.dsl.dyn.ihug.co.nz)
# [10:11] * Quits: doublec (n=Chris_Do@118-92-214-173.dsl.dyn.ihug.co.nz) (Read error: 113 (No route to host))
# [10:11] * doublec_ is now known as doublec
# [10:12] <hsivonen> why are SVG and Canvas "extensions"? http://www.extremetech.com/article2/0,2845,2335251,00.asp
# [10:16] <mookid> Why am I reading a thread about 'the login/logout problem' ?
# [10:17] <mookid> there isn't a problem.. it works fine
# [10:17] <virtuelv> hsivonen: that article is, in general, rather uninformed
# [10:19] <Hixie> ie8 is adding svg and canvas?
# [10:19] <Hixie> that's news to me
# [10:21] * Quits: tthorsen (n=tommy@home.kvaleberg.no) ("Leaving")
# [10:24] * Joins: mpt (n=mpt@canonical/launchpad/mpt)
# [10:25] <Hixie> wtf, screen sharing just doesn't work anymore to this computer
# [10:25] <Hixie> i don't get it
# [10:26] <Hixie> no error message, nothing
# [10:26] <Hixie> afp, too
# [10:26] <Hixie> just doesn't connect
# [10:34] * Quits: jruderman (n=jruderma@corp-241.mountainview.mozilla.com)
# [10:37] <Lachy> have you tried restarting the machine?
# [10:37] <Lachy> I mean the one you're trying to connect to
# [10:38] <Hixie> yes
# [10:38] * Quits: doublec (n=Chris_Do@118-92-214-173.dsl.dyn.ihug.co.nz) (Read error: 104 (Connection reset by peer))
# [10:38] * Joins: doublec_ (n=Chris_Do@118-92-214-173.dsl.dyn.ihug.co.nz)
# [10:38] * Quits: doublec_ (n=Chris_Do@118-92-214-173.dsl.dyn.ihug.co.nz) (Remote closed the connection)
# [10:41] <virtuelv> hsivonen: the telltale sign in that article would be
# [10:41] <virtuelv> «What's notable here is the margin. Chrome's winning margin is huge, even though Firefox 3.04, Opera and Safari have incorporated V8»
# [10:41] <Hixie> o_O
# [10:42] <hsivonen> virtuelv: whoa
# [10:42] * hsivonen didn't actually read the whole article
# [10:43] * Quits: Lachy (n=Lachlan@85.196.122.246) ("This computer has gone to sleep")
# [10:43] <virtuelv> «We tested the version of Firefox (called Minefield) that does include the V8 code and listed those results below our "official" findings.»
# [10:46] <Hixie> if I add remainingSpacePercentage, should I add it to sessionStorage, localStorage, and Database, or should I add it to Navigator and assume shared storage?
# [10:47] <virtuelv> Hixie: is the percentage really relevant?
# [10:48] <Hixie> microsoft want a feature to say how much space is remaining, and bytes don't work
# [10:48] <Philip`> Does it make sense on sessionStorage? I'd assume that'd be stored in RAM, and browsers don't have fixed limits on how much RAM a page can use
# [10:48] <virtuelv> a percentage is equally useless
# [10:49] <virtuelv> if I'm trying to store a DOMString of length 1231, a percentage isn't going to help me
# [10:49] <Philip`> virtuelv: Bytes wouldn't help you either, since you don't know how many bytes it'll take to store that string
# [10:49] <Hixie> the only thing that it would allow is showing a UI saying how close you are to running out
# [10:49] <Hixie> but i guess the UA could do that better anyway
# [10:50] <Philip`> virtuelv: so you should just try to store it, and watch for exceptions
# [10:51] * Quits: aaronlev (n=chatzill@f051078123.adsl.alicedsl.de) ("ChatZilla 0.9.83-rdmsoft [XULRunner 1.9.0.1/2008072406]")
# [10:51] * Joins: aaronlev (n=chatzill@f051078123.adsl.alicedsl.de)
# [10:52] * Joins: yecril71 (n=giecrilj@piekna-gts.2a.pl)
# [10:52] * Joins: ROBOd (n=robod@89.122.216.38)
# [10:53] * Joins: Hish____ (n=chatzill@p3EE221D1.dip0.t-ipconnect.de)
# [10:57] * Joins: Hish_____ (n=chatzill@mail2.n-e-s.de)
# [10:58] * Quits: Hish (n=chatzill@mail2.n-e-s.de) (Read error: 104 (Connection reset by peer))
# [10:58] * Hish_____ is now known as Hish
# [11:01] <yecril71> Allowing to execute hidden commands from the keyboard does not seem to be a good idea at all.
# [11:01] * Joins: Lachy (n=Lachlan@pat-tdc.opera.com)
# [11:01] <yecril71> Although it would make implementing Vi in HTML pretty hard,
# [11:01] <yecril71> I do not think HTML should explicitly provide for that.
# [11:02] * Joins: jruderman (n=jruderma@c-67-180-39-55.hsd1.ca.comcast.net)
# [11:02] <Hixie> zcorpan needs to be online more. someone hook him up with screen(1) and irssi(1), please. :-P
# [11:03] <hsivonen> the HTML article in wikipedia gets vandalized all the time and isn't protected. the XHTML article is semi-protected, though.
# [11:04] <yecril71> Should I bring up the issue with fieldsets and HTMLControlsCollection to the list?
# [11:09] <Hixie> what's the issue?
# [11:15] * Quits: Hish____ (n=chatzill@p3EE221D1.dip0.t-ipconnect.de) (Read error: 110 (Connection timed out))
# [11:16] * Quits: aaronlev (n=chatzill@f051078123.adsl.alicedsl.de) ("ChatZilla 0.9.83-rdmsoft [XULRunner 1.9.0.1/2008072406]")
# [11:16] * Joins: aaronlev (n=chatzill@f051078123.adsl.alicedsl.de)
# [11:19] <yecril71> The issue is a fieldset is not a control.
# [11:19] <yecril71> And it does not belong to form.elements, as of HTML4.
# [11:20] <yecril71> So there is a major incompatibility and a semantical flaw.
# [11:20] <Hixie> browsers put fieldsets in form.elements, so there's not much we can do about that
# [11:20] <Hixie> html5 defines it in a way that solves the "semantical flaw"
# [11:20] <Hixie> i.e. it doesn't have a contradiction as best i can tell
# [11:20] <yecril71> According to MSDN, a fieldset does not have a name.
# [11:20] <Hixie> msdn is rarely accurate
# [11:21] <Hixie> i wouldn't pay much attention to it
# [11:22] <yecril71> Thanks, I shall evaluate it and leave a note there if it works anyway.
# [11:22] <mookid> Hixie: what is all this stuff abuot forms?
# [11:22] <Hixie> mookid: ?
# [11:22] <Hixie> which stuff?
# [11:23] <yecril71> Now that OBJECT is submittable, the note about legacy reasons should go.
# [11:23] <yecril71> Because it is a full member of the FORM.
# [11:24] <Hixie> could you provide more context? i'm not psychic, i've no idea what note you are talking about
# [11:24] <yecril71> "OBJECT belongs to FORM.elements for legacy reasons".
# [11:25] <yecril71> (quoting from memory)
# [11:25] <Hixie> could you quote from the spec?
# [11:25] <Hixie> i can't find that string anywhere
# [11:25] <yecril71> Have to find it again first.
# [11:26] * Joins: hdh (n=hdh@118.71.125.105)
# [11:27] <yecril71> For historical reasons, the object element, which is not otherwise considered to be related to forms, is also a form-associated element.
# [11:27] <yecril71> That is the text.
# [11:28] <yecril71> I would also note that IE7 gets awfully slow when displaying the specification,
# [11:28] <yecril71> event the multipage version.
# [11:28] <yecril71> And the section headers are not visible at all.
# [11:28] <yecril71> They are hidden under the green background.
# [11:29] <yecril71> That makes it somehow hard to know what you are reading about.
# [11:29] <Hixie> yeah, IE has all kinds of bugs
# [11:29] <Hixie> i recommend using another browser
# [11:29] * Hixie fixes the line in question
# [11:30] <yecril71> Thats all right, except that the cost of maintenance doubles.
# [11:31] <yecril71> And you cannot get rid of IE7 in Windows.
# [11:31] <yecril71> Of course, you can get rid of Windows, but that is quite an operation.
# [11:32] <yecril71> I think it would be best for everybody to take that into account.
# [11:32] <hsivonen> cost of maintenance doubles? Firefox, Chrome and Safari autoupdate themselves on Windows
# [11:33] <yecril71> Only if run with administrative privileges, something I shall never do.
# [11:33] <Hixie> ok, fixed the object/form line
# [11:35] <yecril71> I think it would not be so much harm to get rid of the negative top margin for now.
# [11:36] <yecril71> A browser window is not short of sheet space, and PDF can be used for printing.
# [11:38] <yecril71> Borrowing the header backround from the following element seems like a dirty hack.
# [11:38] <Hixie> it's pretty. and standards compliant. If IE can't handle it, that's not my problem or the spec's problem.
# [11:39] <yecril71> You can make the PDF as pretty as you wish.
# [11:39] <Hixie> i don't read the pdf
# [11:39] <yecril71> This is not a beauty contest.
# [11:40] <hsivonen> I think that Ubuntu is a better solution against Windows malware than running a personal Windows box without admin privileges
# [11:40] <yecril71> It is better to be ugly than to be unreadable.
# [11:40] <Hixie> so don't use IE
# [11:41] <Hixie> making it slightly more readable isn't going to make the spec work in IE anyway
# [11:41] <Hixie> IE doesn't handle the size of the page
# [11:41] <Hixie> not much we can do about that
# [11:41] <yecril71> It can read the multipage version.
# [11:41] <yecril71> I do.
# [11:42] <Hixie> Basically, the problem is with IE, not the spec. The solution is to have IE be fixed, not have the spec work around bugs in IE.
# [11:42] <yecril71> I cannot have the IE fixed.
# [11:42] <hsivonen> yecril71: doesn't IE8 work, either?
# [11:42] <yecril71> You have to ask Philip`.
# [11:42] <Hixie> you can't have the spec fixed either. :-)
# [11:43] <yecril71> And borrowing the backround for the next element is far from being good markup.
# [11:43] <Hixie> it's quite acceptable css
# [11:43] <hsivonen> http://www.w3.org/TR/mobile-bp/#d0e704
# [11:44] <yecril71> If you want the backround to be green, you have to choices:
# [11:44] <yecril71> 2 choices:
# [11:44] <yecril71> wrap in a common ancestor, which does not apply here,
# [11:44] <Hixie> hsivonen: as someone who has worked on browser vendors, i hate it when sites work around bugs in browsers
# [11:44] <yecril71> or use the same class.
# [11:44] <Hixie> or use a negative margin :-)
# [11:44] <Hixie> which is fine :-)
# [11:45] <hsivonen> Hixie: well, the mobile-bp doc doesn't acknowledge people from the companies you've worked for...
# [11:46] <hsivonen> I think it's quite telling that Opera and Apple aren't acked in the Mobile BP stuff
# [11:47] <Hixie> chaals wrote part of it
# [11:47] <Hixie> iirc
# [11:47] <yecril71> The only workaround for Internet Explorer is to disable CSS.
# [11:48] <yecril71> That makes the page readable and the performance is much better.
# [11:48] <hsivonen> Hixie: whoa. indeed. I was looking at the acks and thought the editor was from vodafone
# [11:48] * Quits: erlehmann (n=erlehman@dslb-088-075-220-157.pools.arcor-ip.net) ("Ex-Chat")
# [11:48] <hsivonen> I must have mixed up the editorships of different docs
# [11:49] <Hixie> actually i thought a googler worked on that doc too, but i don't see that in the acks anywhere
# [11:49] <Hixie> might be another one
# [11:49] <Hixie> there are so many
# [11:49] <yecril71> However, even if I add whatwg.org to restricted sites, that will not disable CSS by default.
# [11:50] <yecril71> And I am sorry to see Hixie behave so arrogantly.
# [11:51] <Hixie> if there was a bug in the spec's style sheet, would you ask the browsers to work around it?
# [11:51] <Hixie> simple software engineering. you fix the bug, you don't work around the bug.
# [11:52] <yecril71> Not a single browser is fully CSS-compliant.
# [11:53] <yecril71> Your attitude is unrealistic, however you may not like it.
# [11:53] <yecril71> The publisher should aim at the intersection of what is supported.
# [11:53] <hsivonen> It's still baffling that a W3C REC doesn't include PNG support as part of the assumed image format support
# [11:54] <hsivonen> how did *that* get past *principles*?
# [11:54] <hsivonen> but then the markup language support is specced as XHTML Basic 1.1 [XHTML-Basic] delivered with content type application/xhtml+xml.
# [11:56] <yecril71> And I cannot fix the bug in IE, as I already said.
# [11:56] <Hixie> you also cannot fix the spec, so i don't see how that is different or relevant
# [11:57] <yecril71> Well, but you can.
# [11:57] <yecril71> With a very tiny amount of work.
# [11:57] <Hixie> if you insist on using IE, then i recommend using http://dev.w3.org/html5/spec/Overview.html instead.
# [11:59] <yecril71> That document does not have a multipage version.
# [12:00] <Hixie> ah well, i tried
# [12:01] <gsnedders> Hixie: Then why have work-arounds for IE at all?
# [12:01] <gsnedders> like the /* that last decl is for IE6. Try removing it, it's hilarious! */ one
# [12:02] <Hixie> i thought i'd gotten rid of that one
# [12:02] <yecril71> Hixie�s theory about fieldset.name does not hold.
# [12:02] <yecril71> The MSDN is correct here.
# [12:02] <gsnedders> I don't see it in <http://www.whatwg.org/specs/web-apps/current-work/header-whatwg>, but I see it in <http://www.whatwg.org/specs/web-apps/current-work/>
# [12:03] * ap is now known as ap|away
# [12:03] <Hixie> gsnedders: fixed
# [12:03] <yecril71> So it is not really "already implemented", and it is different from HTML4.
# [12:03] * gsnedders heads off
# [12:05] <Hixie> yecril71: do you have a testcase demonstrating the error in the spec?
# [12:05] <Hixie> i'm pretty sure i tested this
# [12:05] <Hixie> but i could be wrong!
# [12:05] <yecril71> Just a minute.
# [12:06] <yecril71> (That is, I have it, but I have to publish it.)
# [12:08] <hsivonen> I think a lot of this mobile "best" practice stuff could go away if Opera Mini had serious competition
# [12:08] <hsivonen> so that vendors of devices that can't host a self-contained browser didn't feel they have to commit to a single vendor if they want a decent browser
# [12:09] <Lachy> unfortunately, working around browser bugs is an essential job that web developers must do for commercial sites. But for web standards, where people reading the spec are expected to use modern browsers, fixing such bugs is an unnecessary hassle
# [12:09] <Hixie> I would say that I think a lot of this mobile "best" practice stuff could go away if Mobile Safari had serious competition. :-)
# [12:09] <Lachy> yecril71, I have to agree with Hixie. I have no sympathy for IE users
# [12:09] <Hixie> not just IE users
# [12:10] <Hixie> users of any browser with pretty fundamental bugs
# [12:10] <Lachy> yeah, all browsers have bugs. But IE is the worst.
# [12:10] <Lachy> it's entirely possible to build a professional website for Firefox, Opera and Safari without using any hacks. But only the most basic sites work in IE without hacks
# [12:11] <hsivonen> which reminds me that Validator.nu has a script error in IE (including 8)
# [12:18] <hsivonen> hmm. the login thing may be a deep rathole
# [12:22] <yecril71> http://www.2a.pl/~ne01026/test.htm
# [12:22] <hsivonen> Hixie: regarding your email "Database section feedback": didn't Nikunj already volunteer? your email makes it look as though you are ignoring that he volunteered. (unless he volunteered only on the condition that he edits *all* the pieces he volunteered for)
# [12:23] <Hixie> i have seen no evidence that he has volunteered other than him actually saying that he has volunteered
# [12:23] <yecril71> (Note that the document is deliberately invalid now)
# [12:23] <hsivonen> Hixie: I think I see what you mean.
# [12:23] <yecril71> (It is supposed to be valid HTML5)
# [12:24] <Hixie> could you rewrite that in JS so i can test it in other browsers?
# [12:25] <yecril71> What for? I do not contend it does not work in other browsers.
# [12:25] * Hixie doesn't understand what you are trying to show with that test
# [12:25] <yecril71> That a fieldset is not a form control.
# [12:25] <Hixie> (what's important is compatibility with all browsers, not just IE)
# [12:26] <Hixie> fieldset is not a form control, correct
# [12:26] <yecril71> All browsers, including IE.
# [12:26] <yecril71> But HTML5 says it belongs to form.elements.
# [12:26] <Hixie> the spec doesn't have a concept of "form control", though, so that seems academic
# [12:26] <yecril71> The collection is named HTMLFormControlsCollection.
# [12:26] <yecril71> Or something like that.
# [12:27] <yecril71> That means it bears the concept of a form control.
# [12:27] * Joins: erlehmann (n=erlehman@dslb-088-075-220-157.pools.arcor-ip.net)
# [12:27] <yecril71> You have said you had to add this because that is what all browsers do.
# [12:27] <yecril71> I have demonstrated it is not the case.
# [12:28] <Hixie> the collection name is a historical artefact of little importance
# [12:28] <yecril71> With that attitude, HTML5 is likely to become a historical artefact of little importance.
# [12:28] <Hixie> it may be that it is not all browsers but just some browsers, then
# [12:29] <Hixie> i expect one day it will be, yes
# [12:29] <yecril71> I do not think that "some browsers" is a good argument to break logic and backward compatibility.
# [12:30] <Hixie> according to http://software.hixie.ch/utilities/js/live-dom-viewer/?%3C!DOCTYPE%20html%3E...%3Cform%3E%3Cfieldset%3E%3C%2Ffieldset%3E%3C%2Fform%3E%0A%3Cscript%3Ew%28document.forms[0].elements.length%29%3C%2Fscript%3E
# [12:30] <Hixie> IE, Firefox, and Opera all put <fieldset> in form.elements
# [12:30] <yecril71> I would rather ask those browsers to fix their implementations, because it is a bug.
# [12:30] <hsivonen> Hixie: do I read correctly that the new http auth stuff doesn't ask browsers to change anything in their behavior?
# [12:31] <Hixie> correct
# [12:31] <hsivonen> ok.
# [12:31] * Quits: drry (n=drry@it17.opt2.point.ne.jp) (zelazny.freenode.net irc.freenode.net)
# [12:32] * Joins: drry (n=drry@it17.opt2.point.ne.jp)
# [12:39] * Joins: zcorpan (n=zcorpan@pat.se.opera.com)
# [12:39] <Hixie> zcorpan!
# [12:39] <zcorpan> hey Hixie
# [12:40] <Hixie> now i wish i had said on irc what i wanted to tell you, for i have forgotten it
# [12:40] <zcorpan> :(
# [12:40] <Hixie> oh one was that i invented QUOTA_EXCEEDED_ERR with code 22, and wanted to ask you if you could add it along with codes 1-21 to web dom core
# [12:41] <zcorpan> ok, will do
# [12:41] <yecril71> All right, I give up.
# [12:41] <yecril71> <http://msdn.microsoft.com/en-us/library/ms537449(VS.85).aspx#ctl00_rs1_WikiContent_2_Container>
# [12:43] <Lachy> I still can't figure out why Pentasis is having such a difficult time comprehending the purpose of the time element, nor why he's suggesting such ridiculous changes.
# [12:43] <Lachy> I guess he's just interested in some kind of theoretical purity, rather than trying to address any serious practical issues
# [12:43] <Hixie> theoretical purity isn't a bad thing in and of itself
# [12:44] <Hixie> if the people who extended html over the years had slightly more concern over theoretical purity, we'd be in a much better state
# [12:44] <zcorpan> Hixie: added
# [12:44] <Hixie> wow that was quick
# [12:44] <Hixie> i need to ask you to do web dom core changes more often
# [12:44] <Hixie> :-D
# [12:44] <zcorpan> :)
# [12:45] <Hixie> did i ask you what the eta was on a fpwd yet?
# [12:45] <zcorpan> not sure but there's no eta yet
# [12:45] <Hixie> k
# [12:45] <zcorpan> i'm trying to get the spec moved to a w3c wg
# [12:46] <Hixie> won't webapps take it?
# [12:46] <zcorpan> haven't approached them yet
# [12:46] <Hixie> oh one of the other things was a webkit bug i came across that was about weird (but compat-required) getElementById() behavior, iirc
# [12:47] <Hixie> i tried cc'ing you but you didn't seem to have an account
# [12:47] <Hixie> i forget which bug now
# [12:47] <zcorpan> i think i'm still using the @hotmail account on b.w.o :S
# [12:47] <Lachy> Hixie, true. But when your theory is suggesting that an element for marking up dates using ISO-8601 isn't adequate because it still can't accurately represent historical dates from centuries ago, rather than just worrying about the use cases it was designed for, then it's being taken too far
# [12:47] <zcorpan> i guess i should change that
# [12:48] <hsivonen> I think we should define input type=date to apply to booking of hotels & transport
# [12:48] <Hixie> Lachy: i think he ended up actually saying the opposite -- that we should limit it further (e.g. not allow 2AD) because that was too historical and wasn't accurate either
# [12:48] <hsivonen> and we should define <time> as a piece for microformats meant for scheduling secular civilian meetings
# [12:48] <zcorpan> is there a use case for <input type=url multiple>?
# [12:49] <Lachy> I've generally found the things he's said to be confusing
# [12:49] <zcorpan> i think validator.nu has such a field doesn't it?
# [12:49] <Hixie> zcorpan: i'm sure one could be invented
# [12:49] <Hixie> whether it's a common enough case to worry about is another question
# [12:49] <Hixie> nobody has asked for it yet
# [12:49] <Hixie> afaik
# [12:50] <hsivonen> for the v.nu use case, <input type=url multiple> would be backwards-incompatible with Opera
# [12:50] <hsivonen> I guess <input type=email multiple> isn't nice for Opera, either
# [12:50] <zcorpan> right
# [12:51] <yecril71> Why are SCRIPT elements not allowed inside TABLE elements?
# [12:51] <hsivonen> yecril71: legacy
# [12:51] <Hixie> and keeping things simple
# [12:52] <Lachy> sure, we could limit it more, but picking cut-off point at the unix epoch 1970-01-01 wouldn't given enough range for people to mark up, e.g. birthdates, and anywhere else would be just arbitrary
# [12:52] <yecril71> Simple for whom?
# [12:52] <Hixie> me
# [12:52] <Hixie> and authors in general
# [12:52] <yecril71> It is not simple that, once I need to produce a part of a table with a script,
# [12:52] <hsivonen> Lachy: I think anything but 1970-01-01 and 0001-01-01 would be arbitrary
# [12:52] <Hixie> Lachy: yeah
# [12:52] <yecril71> I have to produce the whole table.
# [12:52] <zcorpan> hsivonen: but <script>s aren't foster parented, right?
# [12:53] <hsivonen> zcorpan: oh? I don't remember.
# [12:53] <Hixie> yecril71: just use DOM manipulation
# [12:54] <yecril71> (IE7 handles this use case cleanly)
# [12:54] <zcorpan> hsivonen: yep. "A start tag whose tag name is one of: "style", "script""
# [12:55] <hsivonen> ok
# [12:55] <Hixie> <input type=hidden> is magical too
# [12:55] <Hixie> and <script> needs to be made magical in <select>, which is going to be a pain
# [12:56] <yecril71> That means it should be supported but the document is still nonconforming?
# [12:56] <hsivonen> yecril71: I withdraw what I said about legacy
# [12:57] <yecril71> Why? TABLE elements cannot contain SCRIPT elements directly in HTML4 either.
# [12:57] <Hixie> the restriction is one we inherited from html4 and one we will keep because allowing script in the middle of the table model encourages bad authoring practices (such as using document.write())
# [12:58] <hsivonen> yecril71: I thought there was a parser legacy issue there. I wasn't referring to validation legacy.
# [13:00] <yecril71> Correct me if I am wrong, but there is no way to ask the document to add more rows to the preceding table, unless that table has an ID.
# [13:01] <yecril71> While it is possible inside.
# [13:01] * Quits: nessy (n=nessy@124-168-156-5.dyn.iinet.net.au) ("This computer has gone to sleep")
# [13:01] <yecril71> (supposing I place the SCRIPT right after the TABLE, that is.)
# [13:02] <Hixie> just grab the last table from document.getElementsByTagName('table')
# [13:02] <yecril71> Thanks.
# [13:05] * Joins: sverrej (n=sverrej@pat-tdc.opera.com)
# [13:09] <zcorpan> Hixie: is it https://bugs.webkit.org/show_bug.cgi?id=6006 ?
# [13:09] <Hixie> yes
# [13:09] <Hixie> wow
# [13:09] <Hixie> good call
# [13:10] <zcorpan> first on a search for getelementbyid :)
# [13:12] * Quits: virtuelv (n=virtuelv@pat-tdc.opera.com) ("Leaving")
# [13:12] <Hixie> :-)
# [13:12] * Quits: erlehmann (n=erlehman@dslb-088-075-220-157.pools.arcor-ip.net) ("Ex-Chat")
# [13:14] <zcorpan> it seems we have lots of bugs saying that getElementById works with name=''
# [13:14] <zcorpan> which we dropped in 9.5
# [13:15] <zcorpan> and no bugs on it not working with name='', afaict
# [13:15] <zcorpan> also, i think ie8 doesn't look at name='' (in ie8 mode)
# [13:17] <Hixie> i'll trust you to spec something that matches the web and that browsers are willing to converge on
# [13:17] <yecril71> I think if a statement needs an in-transaction callback and an after-transaction callback, that amounts to two callbacks.
# [13:17] <Hixie> i'm just glad it's not my problem for once :-)
# [13:17] * Joins: tthorsen (n=tommy@home.kvaleberg.no)
# [13:17] <yecril71> So the most straightforward thing to do would be to allow two as required.
# [13:18] <yecril71> You could also provide for a callback to figure out whether the transaction has finished
# [13:18] <yecril71> and report that it needs to be called afterwards if not.
# [13:19] * Hixie looks at feedback from anne about %-encoding in name="" attributes and #fragids, and decides to call it a night
# [13:47] * Joins: tndH (n=Rob@129.11.62.255)
# [13:53] * Joins: smerp (n=smerp@cpe-066-057-061-202.nc.res.rr.com)
# [13:58] * Joins: smerp_ (n=smerp@66.192.95.199)
# [14:04] * Quits: smerp (n=smerp@cpe-066-057-061-202.nc.res.rr.com) (Read error: 60 (Operation timed out))
# [14:10] * ap|away is now known as ap
# [14:12] * Quits: smerp_ (n=smerp@66.192.95.199)
# [14:18] * Quits: maikmerten (n=merten@ls5dhcp195.cs.uni-dortmund.de) (Client Quit)
# [14:22] * Joins: mpt_ (n=mpt@canonical/launchpad/mpt)
# [14:24] * Quits: mpt_ (n=mpt@canonical/launchpad/mpt) (Remote closed the connection)
# [14:25] * Quits: tndH (n=Rob@129.11.62.255) ("ChatZilla 0.9.84-rdmsoft [XULRunner 1.9.0.1/2008072406]")
# [14:51] * Joins: weinig (n=weinig@cpe-66-65-132-93.nyc.res.rr.com)
# [14:55] * Joins: smerp (n=smerp@cpe-066-057-061-202.nc.res.rr.com)
# [14:56] * Joins: svl (n=me@ip565744a7.direct-adsl.nl)
# [14:58] * Quits: smerp (n=smerp@cpe-066-057-061-202.nc.res.rr.com) (Client Quit)
# [15:17] * Quits: tthorsen (n=tommy@home.kvaleberg.no) ("Leaving")
# [15:17] * Joins: sayrer (n=chatzill@user-0cev96p.cable.mindspring.com)
# [15:31] * Quits: hdh (n=hdh@118.71.125.105) ("Leaving.")
# [15:47] * Joins: tndH (n=Rob@james-baillie-pc083-058.student-halls.leeds.ac.uk)
# [15:49] * Quits: sverrej (n=sverrej@pat-tdc.opera.com) (Read error: 110 (Connection timed out))
# [15:52] * Joins: myakura (n=myakura@p4200-ipbf2306marunouchi.tokyo.ocn.ne.jp)
# [15:54] <hsivonen> hmm. interesting. Gecko and HTML5 deal with noframes and noembed in very different ways
# [15:54] <hsivonen> in terms of implementation
# [15:54] <hsivonen> not necessarily from the POV of pages
# [15:57] <zcorpan> hsivonen: how are they different?
# [15:57] <hsivonen> Gecko keeps track of a nesting depth in noXXX elements and turns off <base> and form control handling when depth > 0
# [15:58] <hsivonen> HTML5 treats noXXX as CDATA elements
# [15:59] <zcorpan> hmm, my copy of firefox seems to insert a single text node in <noembed> -- not elements
# [16:00] <hsivonen> zcorpan: it's possible that the tokenizer has changed and the depth tracking is now dead code
# [16:00] <hsivonen> I was looking at the tree builder code
# [16:00] <zcorpan> hsivonen: yeah, i remember dbaron saying there was similar dead code for <iframe> a while back
# [16:01] <zcorpan> that disabled scripts or something
# [16:01] <hsivonen> I should have that the tree builder code looks like that--not that Firefox does it :-)
# [16:01] <hsivonen> can't really trust the looks of the Gecko parser code
# [16:02] <zcorpan> is that code used for xhtml?
# [16:02] <hsivonen> no
# [16:06] * Quits: myakura (n=myakura@p4200-ipbf2306marunouchi.tokyo.ocn.ne.jp) ("Leaving...")
# [16:08] <Lachy> if it's dead code, whats the point of keeping it around? Is it just that no-one has thought to remove it yet, and verify that it really is dead?
# [16:13] <hsivonen> Lachy: most likely it's dead and forgotten and now no one wants to touch the parser more than absolutely necessary
# [16:17] <Lachy> ok. I suppose it won't matter too much since I assume they'll be replacing the parser entirely with a new HTML5 parser soon enough
# [16:17] <hsivonen> hopefully :-)
# [16:22] * Joins: billmason (n=bmason@ip49.unival.com)
# [16:27] * Joins: jmb^ (n=jmb@login.ecs.soton.ac.uk)
# [16:27] * Quits: jmb (n=jmb@login.ecs.soton.ac.uk) (Read error: 131 (Connection reset by peer))
# [16:27] * Joins: dglazkov (n=dglazkov@c-24-130-144-56.hsd1.ca.comcast.net)
# [16:28] * Quits: dglazkov (n=dglazkov@c-24-130-144-56.hsd1.ca.comcast.net) (Client Quit)
# [16:36] * Joins: aaronlev_ (n=chatzill@e180228045.adsl.alicedsl.de)
# [16:49] * Joins: mstange (n=markus@aixd3.rhrk.uni-kl.de)
# [16:49] <zcorpan> hey punctation is allowed in encoding declarations
# [16:49] <zcorpan> you can make smileys out of encoding names
# [16:50] <zcorpan> ~u_^t^_f8
# [16:52] * Quits: jmb^ (n=jmb@login.ecs.soton.ac.uk) (Remote closed the connection)
# [16:52] * Joins: jmb (n=jmb@login.ecs.soton.ac.uk)
# [16:53] <Lachy> zcorpan, I can't see how that example you gave can be seen as a smiley?
# [16:54] * Quits: Hish (n=chatzill@mail2.n-e-s.de) (Read error: 104 (Connection reset by peer))
# [16:56] <zcorpan> Lachy: dunno, come up with something better :)
# [16:56] * Quits: aaronlev (n=chatzill@f051078123.adsl.alicedsl.de) (Read error: 110 (Connection timed out))
# [16:56] * Joins: sverrej (n=sverrej@cm-84.208.153.202.getinternet.no)
# [17:00] <zcorpan> hey you could even have multiline ascii art
# [17:01] * hsivonen can't wait to debug input with multiline ascii art charsets
# [17:02] <hsivonen> w00t. the C++ version of the HTML5 parser *finally* links all the way
# [17:02] <Dashiva> Is newline allowed, though?
# [17:02] <hsivonen> any language that doesn't have C++-style linkage must give a huge productivity boost compared to C++
# [17:03] <Lachy> zcorpan, where in the spec does it say punctation is allowed?
# [17:03] <Lachy> is it that they're ignored for the parsing requirements, or that they're considered conforming too?
# [17:04] <zcorpan> "The value must be a valid character encoding name, and must be the preferred name for that encoding."
# [17:05] <zcorpan> hsivonen: validator.nu doesn't complain about punctation
# [17:05] * Quits: jmb (n=jmb@login.ecs.soton.ac.uk) (Remote closed the connection)
# [17:05] * Joins: jmb (n=jmb@login.ecs.soton.ac.uk)
# [17:06] <Lachy> zcorpan, how do you interpret that as allowing punctuation?
# [17:06] <hsivonen> zcorpan: thanks. I filed http://bugzilla.validator.nu/show_bug.cgi?id=337
# [17:06] <zcorpan> Lachy: i don't :)
# [17:06] <Lachy> wtf? You said "punctation is allowed in encoding declarations"
# [17:06] <zcorpan> yeah, i was mistaken
# [17:06] <zcorpan> i was just playing around in v.nu
# [17:06] <Lachy> oh
# [17:07] <Philip`> yecril71: The thread around http://lists.whatwg.org/pipermail/whatwg-whatwg.org/2008-June/014984.html discusses the IE heading CSS bug, and that post suggests a simple workaround, but I guess Hixie cares more about the theoretical purity of the spec's markup than about its impact on users :-)
# [17:08] * Quits: Maurice (n=ano@a80-101-46-164.adsl.xs4all.nl) ("Disconnected...")
# [17:10] * Quits: Lachy (n=Lachlan@pat-tdc.opera.com) ("This computer has gone to sleep")
# [17:11] * Quits: yecril71 (n=giecrilj@piekna-gts.2a.pl) (Read error: 110 (Connection timed out))
# [17:16] * Joins: jmb^ (n=jmb@login.ecs.soton.ac.uk)
# [17:16] * Quits: jmb (n=jmb@login.ecs.soton.ac.uk) (Read error: 104 (Connection reset by peer))
# [17:19] * Joins: aroben (n=adamrobe@c-69-142-103-232.hsd1.pa.comcast.net)
# [17:25] * Quits: aaronlev_ (n=chatzill@e180228045.adsl.alicedsl.de) ("ChatZilla 0.9.83-rdmsoft [XULRunner 1.9.0.1/2008072406]")
# [17:27] * Joins: Lachy (n=Lachlan@85.196.122.246)
# [17:38] * Quits: pesla (n=retep@procurios.xs4all.nl) ("( www.nnscript.com :: NoNameScript 4.21 :: www.esnation.com )")
# [17:44] * Joins: smedero (n=smedero@mdp-nat251.mdp.com)
# [17:51] * Joins: sbublava (n=stephan@77.117.1.209.wireless.dyn.drei.com)
# [17:53] * Joins: dglazkov (n=dglazkov@nat/google/x-6eb211a951f14c72)
# [17:58] * Quits: zcorpan (n=zcorpan@pat.se.opera.com)
# [18:03] * Joins: Maurice (i=copyman@5ED548D4.cable.ziggo.nl)
# [18:13] * jmb^ is now known as jmb
# [18:37] * Joins: BenMillard (n=cerbera@cpc1-flee1-0-0-cust285.glfd.cable.ntl.com)
# [18:49] <BenMillard> Lachy, I sometimes manage to make graphical websites which support Fx2, Fx3, O9, most recent Safari, IE6 and IE7 without hacks (re: http://krijnhoetmer.nl/irc-logs/whatwg/20081126#l-395)
# [18:49] <BenMillard> usually, the show-stoppers aren't really CSS problems, it's fundamental breakage in the rendering engine :)
# [18:49] * Quits: sbublava (n=stephan@77.117.1.209.wireless.dyn.drei.com)
# [18:50] * Philip` can't even make non-graphical sites without finding browser bugs :-(
# [18:50] <BenMillard> usually there are multiple ways of getting the same visual effect, like yecril71 points out
# [18:51] <BenMillard> and when the job has a requirement that it *must* look correct in that set of browsers before your client pays you, well, you learn to compromise :)
# [18:51] * Joins: maikmerten (n=maikmert@L8127.l.pppool.de)
# [18:54] <BenMillard> yecril71, in applications on Windows, the equivalent of <fieldset> is called Frame (at least in VB6) and you add it to a form (aka window) as a control (aka a form control)
# [18:54] <BenMillard> more specifically, it's a "container control" along with PictureBox, TabStrip and suchlike
# [18:55] * Quits: dave_levin (n=dave_lev@72.14.224.1)
# [18:57] <BenMillard> krijnh, linkification stopped short by [ character: http://krijnhoetmer.nl/irc-logs/whatwg/20081126#l-424
# [18:58] * Quits: aroben (n=adamrobe@unaffiliated/aroben)
# [19:04] * Joins: erlehmann (n=erlehman@dslb-088-072-029-214.pools.arcor-ip.net)
# [19:04] * Joins: aroben (i=aroben@unaffiliated/aroben)
# [19:05] <BenMillard> Philip`, using position:relative on elements with negative margins is how I thought it was supposed to work, because I'm so used to doing that for IE :P
# [19:06] <BenMillard> sometimes I use a negative top or left value instead of negative margin, due to margin bugs
# [19:14] * Quits: mstange (n=markus@aixd3.rhrk.uni-kl.de) ("ChatZilla 0.9.84 [Firefox 3.1b2pre/20081124033940]")
# [19:17] * Joins: dave_levin (n=dave_lev@72.14.227.1)
# [19:17] * Quits: ap (n=ap@195.239.126.10)
# [19:19] * Philip` gets down to 3.6MB for an animated visualisation of the internal links in every 5th revision of the HTML 5 spec since its history began, which doesn't seem too bad
# [19:19] * aroben is now known as aroben|lunch
# [19:19] <Philip`> BenMillard: Why does position:relative help in those cases?
# [19:22] * Quits: weinig (n=weinig@cpe-66-65-132-93.nyc.res.rr.com)
# [19:23] * gsnedders wonders if that is danbri in one of his TPAC photos
# [19:24] <gsnedders> No, it isn't.
# [19:30] <BenMillard> Philip`, various strange things start working properly with position:relative in IE...often inexplicably :)
# [19:30] <BenMillard> (like graphical bullets on list items in semi-arbitrary conditions)
# [19:32] * Joins: virtuelv (n=virtuelv@163.80-202-65.nextgentel.com)
# [19:39] * Quits: mpt (n=mpt@canonical/launchpad/mpt) ("Leaving")
# [19:44] * Joins: kangax (n=kangax@74.201.136.194)
# [19:54] * Joins: dbaron (n=dbaron@corp-241.mountainview.mozilla.com)
# [19:54] <hsivonen> do I read the html5lib correctly when I think it sanizes by discarding tokens before the tree builder?
# [19:54] <hsivonen> s/html5lib/html5lib source/
# [19:55] * Quits: KevinMarks (n=KevinMar@c-98-207-134-151.hsd1.ca.comcast.net) ("The computer fell asleep")
# [19:55] * Joins: KevinMarks (n=KevinMar@c-98-207-134-151.hsd1.ca.comcast.net)
# [19:58] <jgraham> hsivonen: Yes
# [19:59] <hsivonen> jgraham: does it discard script content?
# [19:59] <jgraham> hsivonen: I believe so
# [20:00] <jgraham> (but I guess there may be bugs)
# [20:03] <hsivonen> It seems that the dominant design of HTML sanitizers is to throw stuff away between the tokenizer and the tree builder
# [20:04] <hsivonen> Hixie: looks like different rules are called for here compared to the infoset coercion stuff
# [20:04] <hsivonen> (not to suggest that HTML5 should prescribe the rules, but anyway)
# [20:05] <sayrer> hsivonen, have you tested the new IE8 method?
# [20:06] <hsivonen> sayrer: nope. What's the new IE8 method?
# [20:06] <sayrer> hsivonen, toSafeHTML or some such
# [20:06] <sayrer> hsivonen, yeah, that's it
# [20:08] <hsivonen> "Update 11/20/08: changed reference to toSafeHTML to toStaticHTML" says IE blog
# [20:09] <hsivonen> hmm. string to string method
# [20:10] <hsivonen> sayrer: this is mail&news stuff, isn't it: http://mxr.mozilla.org/mozilla-central/source/content/base/src/mozSanitizingSerializer.cpp
# [20:10] <sayrer> hsivonen, yeah. I decided I couldn't use that, way back when. Don't remember why.
# [20:10] <hsivonen> sayrer: ok
# [20:11] <hsivonen> I should test toStaticHTML to see what it actually does
# [20:11] <hsivonen> thanks
# [20:12] * Quits: KevinMarks (n=KevinMar@c-98-207-134-151.hsd1.ca.comcast.net) (Read error: 110 (Connection timed out))
# [20:13] * Joins: dimich (n=dimich@72.14.227.1)
# [20:17] <gsnedders> http://www.flickr.com/photos/gsnedders/3061950334/
# [20:17] <gsnedders> http://www.flickr.com/photos/gsnedders/3061106047/
# [20:17] <gsnedders> who are those someones?
# [20:17] <hsivonen> gsnedders: in 3061950334 Felix Sasaki
# [20:17] <hsivonen> gsnedders: in 3061106047 Steve Zilles
# [20:25] <sayrer> hsivonen, I may have run screaming from http://mxr.mozilla.org/mozilla-central/source/content/base/src/mozSanitizingSerializer.cpp#474
# [20:26] <sayrer> and also the pref parsing
# [20:27] <hsivonen> sayrer: seems to be the wrong way round...
# [20:34] * Joins: KevinMarks (n=KevinMar@216.239.45.19)
# [20:40] <gsnedders> hsivonen: ah, thx
# [20:56] * Quits: Lachy (n=Lachlan@85.196.122.246) ("This computer has gone to sleep")
# [20:58] * Quits: kangax (n=kangax@74.201.136.194)
# [21:17] * aroben|lunch is now known as aroben
# [21:19] <hsivonen> http://groups.google.com/group/mozilla.dev.planning/msg/f2dd45413cc68413
# [21:20] * Quits: BenMillard (n=cerbera@cpc1-flee1-0-0-cust285.glfd.cable.ntl.com)
# [21:24] <hsivonen> Hixie: am reading the spec correctly that it's OK to have an event loop spin between document.close() and the tokenizer emitting the EOF?
# [21:25] * Quits: aroben (i=aroben@unaffiliated/aroben) (Read error: 104 (Connection reset by peer))
# [21:25] * gsnedders wonders if he gets a VPS how quickly he'll screw it up
# [21:25] * Joins: weinig (n=weinig@pool-71-167-7-222.nycmny.fios.verizon.net)
# [21:26] <gsnedders> hsivonen: that is lovely.
# [21:29] * weinig is now known as weinig|away
# [21:36] * Joins: KrocCamen (n=kroc@80-194-189-199.cable.ubr03.craw.blueyonder.co.uk)
# [21:49] * Joins: shepazu (n=schepers@c-98-230-27-112.hsd1.fl.comcast.net)
# [21:49] * Joins: mpt (n=mpt@canonical/launchpad/mpt)
# [21:51] <Philip`> gsnedders: You can always just reinstall it once you break everything
# [21:51] <gsnedders> Philip`: :P
# [21:52] * Philip` discovered Ubuntu has "ufw", which makes firewall configuration actually sane - you say stuff like "ufw allow 80/tcp" and it does what you want, and you don't have to even know what iptables are
# [21:56] * Joins: Lachy (n=Lachlan@85.196.122.246)
# [21:57] <gsnedders> wow
# [22:00] * Joins: nessy (n=nessy@124-168-156-5.dyn.iinet.net.au)
# [22:02] * Quits: maikmerten (n=maikmert@L8127.l.pppool.de) (Client Quit)
# [22:02] * Quits: virtuelv (n=virtuelv@163.80-202-65.nextgentel.com) (Read error: 110 (Connection timed out))
# [22:06] * Joins: epeus (n=KevinMar@nat/google/x-c7df243871ef63f8)
# [22:13] * Quits: ROBOd (n=robod@89.122.216.38) ("http://www.robodesign.ro")
# [22:13] * Quits: KevinMarks (n=KevinMar@216.239.45.19) (Connection timed out)
# [22:29] * Quits: shepazu (n=schepers@c-98-230-27-112.hsd1.fl.comcast.net)
# [22:30] <Hixie> hsivonen: not only is it ok, it is required, because the tokeniser only emits stuff as part of the event loop
# [22:34] <hsivonen> Hixie: doesn't the tokenizer emit non-EOF tokens immediately on first-level document.write()?
# [22:34] <Hixie> yeah but that is still originally part of an event loop step
# [22:34] <hsivonen> Hixie: but it's good that a spin is OK with document.close()
# [22:35] <hsivonen> ok
# [22:36] * Quits: dolske (n=dolske@firefox/developer/dolske) ("Leaving...")
# [22:55] * Quits: nessy (n=nessy@124-168-156-5.dyn.iinet.net.au) ("This computer has gone to sleep")
# [23:05] <krijnh> BenMillard: fixed, thanks
# [23:07] <Dashiva> That was a short-lived feature (@html-auth)
# [23:12] * Philip` apologises for helping kill it
# [23:12] * Quits: smedero (n=smedero@mdp-nat251.mdp.com)
# [23:15] <Philip`> (Actually I'm blame Julian, for originally suggesting that there could be a security issue)
# [23:16] <Dashiva> Jonas would've picked up the slack anyhow, it seems :)
# [23:16] <sicking> off with its head!
# [23:19] <Dashiva> sicking: Do you have a secret new proposal that will rock our socks?
# [23:19] * Quits: Maurice (i=copyman@5ED548D4.cable.ziggo.nl) ("Disconnected...")
# [23:19] <sicking> nothing secret
# [23:19] <sicking> i've argued for something like OpenID for a while, just not very heavily
# [23:20] <sicking> OpenID, the way it looks like now, with all its redirects and stuff, is no good though
# [23:20] <sicking> but there a lot that can be done if we build it into the browser
# [23:20] <sicking> basically we need something like microsofts CardSpace, but as a more open platform
# [23:22] * Joins: hdh (n=hdh@118.71.125.105)
# [23:22] <Dashiva> Does cardspace avoid the "phishing enabling" of current openid?
# [23:23] * Joins: doublec (n=chris@202.0.36.64)
# [23:24] <sicking> that is my understanding
# [23:24] * Joins: nessy (n=nessy@115.128.8.58)
# [23:24] <sayrer> sicking, how so?
# [23:24] <sicking> however, i have not heard what all the complaints about neither cardspace nor openid are, so it's entirely possible that neither of them are very close to what we need
# [23:25] <sicking> sayrer, you don't type a password, you just click on an image to choose which identity to use
# [23:25] <sayrer> that is good
# [23:25] <sayrer> fwiw, I did like the idea of using the 401 body for this
# [23:25] <hsivonen> sicking: I think it would need to degrade gracefully into the current OpenID experience in browsers that don't implement the future thing
# [23:25] <Lachy> Philip`, I find it difficult to believe that anyone would be stupid enough to introduce a XSS bug into a 401 page, especially because it's effectivly saying you need to log in before you can do anything
# [23:25] <sayrer> only Safari is broken w.r.t. that extension point
# [23:26] <sicking> hsivonen, it needs to degrade into something for sure
# [23:26] <hsivonen> sicking: so in that sense, seeking to put the hook into the OpenID ID provider code might work
# [23:26] <Lachy> and the XSS attack you outlined would need so many different bugs to occur in just the right way, it seems highly unlikely
# [23:26] <hsivonen> but that would mean users would have to enter a URI into a field still
# [23:26] <hsivonen> unless the field can be reliably autocompleted by the browser, too
# [23:26] <sayrer> I had the idea that the 401 body should be the non-existant notion of svg static
# [23:27] <sayrer> so browsers can create a difficult to simulte UI
# [23:27] <sayrer> and show a little bit of branding next to it
# [23:27] * weinig|away is now known as weinig
# [23:27] <hsivonen> what's svg static?
# [23:28] <sayrer> svg with scripting, animation, fonts, etc
# [23:28] <sayrer> er
# [23:28] <sayrer> witout
# [23:28] <sayrer> without
# [23:28] <hsivonen> ah
# [23:28] <sayrer> there is no subset that matches that
# [23:28] <sayrer> but I'm thinking full-screen shadowed / UI box
# [23:28] <sayrer> I guess flash or quicktime might be coerced
# [23:28] <sayrer> to do that
# [23:28] <sayrer> but it would be much harder
# [23:29] <Lachy> although I'm still glad the www-authenticate feature was removed, since it seemed quite useless in practice for all but a very niche market
# [23:30] <Philip`> Lachy: It doesn't seem implausible that someone would have e.g. login.php?return=... which gives you the login form with a <a href="$return">Go back</a> and returns 401 and WWW-Authenticate HTML because they want to tell bots to log in that way, and introduce the XSS hole that way
# [23:30] <Philip`> Lachy: and I don't see what bugs the attack needs, other than the XSS one
# [23:30] * Quits: heycam (n=cam@203-217-88-133.dyn.iinet.net.au) ("bye")
# [23:31] <Philip`> Lachy: Also, you shouldn't underestimate people's stupidity :-p
# [23:33] <Lachy> it requires the bot to access the page via a URL which exploits the XSS attacks
# [23:34] <Philip`> Bots follow links, and it's trivial to put a link onto most people's sites
# [23:34] <Lachy> that may depend on the purpose of the bot, and where it was following links from
# [23:34] <Philip`> (via blog comments, or referrer logs, or whatever)
# [23:34] <Philip`> The purpose of the bot is to follow all the links it can find on the site :-)
# [23:35] <sayrer> could just turn of scripts on 401 pages
# [23:35] <Philip`> sayrer: There aren't any scripts involved here
# [23:35] <sayrer> oh I see
# [23:36] <Lachy> I suppose a such a link could occur on the site itself if it allowed user generated content of some kind
# [23:36] <Lachy> and only used the 401 to prevent access to member areas
# [23:38] <Lachy> it may not be a new problem though. If there are bots that perform this kind of log in already, by being manually configured with the form name, they would be vulnerable to the same attack
# [23:38] <Lachy> although without the www-authenticate header advertising that, it's less likely
# [23:39] <Lachy> but the same attack could be used against users by getting them to follow the link
# [23:40] * Quits: erlehmann (n=erlehman@dslb-088-072-029-214.pools.arcor-ip.net) ("Ex-Chat")
# [23:41] <Philip`> It's not a problem unique to WWW-Authenticate, but WWW-Authenticate was designed in a way that encourages behaviour that would encounter that problem
# [23:46] * fakeolliej is now known as olliej
# [23:54] * Joins: ginger (n=nessy@115.129.8.203)
# [23:54] * Joins: heycam (n=cam@clm-laptop.infotech.monash.edu.au)
# [23:55] * Quits: mpt (n=mpt@canonical/launchpad/mpt) ("Leaving")
# [23:59] <Hixie> i hven't removed it yet btw
# Session Close: Thu Nov 27 00:00:00 2008

The end :)