Re: Interest in a UDP equivalent to the CONNECT method
Martin Thomson <martin.thomson@gmail.com> Sun, 04 February 2018 23:54 UTC
Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7F09A1243F6 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Sun, 4 Feb 2018 15:54:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.01
X-Spam-Level:
X-Spam-Status: No, score=-7.01 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id azUmQZPloQyF for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Sun, 4 Feb 2018 15:54:14 -0800 (PST)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 450A2120725 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Sun, 4 Feb 2018 15:54:13 -0800 (PST)
Received: from lists by frink.w3.org with local (Exim 4.89) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1eiU4A-0006ew-Mc for ietf-http-wg-dist@listhub.w3.org; Sun, 04 Feb 2018 23:51:22 +0000
Resent-Date: Sun, 04 Feb 2018 23:51:22 +0000
Resent-Message-Id: <E1eiU4A-0006ew-Mc@frink.w3.org>
Received: from titan.w3.org ([128.30.52.76]) by frink.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <martin.thomson@gmail.com>) id 1eiU43-0006eA-K4 for ietf-http-wg@listhub.w3.org; Sun, 04 Feb 2018 23:51:15 +0000
Received: from mail-ot0-f173.google.com ([74.125.82.173]) by titan.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.89) (envelope-from <martin.thomson@gmail.com>) id 1eiU41-0005kB-Nv for ietf-http-wg@w3.org; Sun, 04 Feb 2018 23:51:15 +0000
Received: by mail-ot0-f173.google.com with SMTP id l5so19262339otj.11 for <ietf-http-wg@w3.org>; Sun, 04 Feb 2018 15:50:53 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=xKGvjXfP09tuQUtnHSxoj6yGB6ljKZqK4Nn9CCEYdxA=; b=jPA0a0KBas0FomUFsnKA26eSXQdPfv7wx4NRRpWTjSV8rg0TSxsB/TyVlsUpWGjYvA I0sJm0Zx51YNA6PbterqyUlVnyelZzEFYrkj6tp5CBom3mTV6Fy9Q8QqQkCEFW8UyvBs ZZNvAIMG8KoUZLon+83uub/R1TsasEqxRTVTJhi9dvF0PiC9SNm/tuNwemLDRUVVPrC7 w4+mOBUVSuIQz8I39qY6xwxbrRPkccpVu6qSySQJoueeepvfNaarLXHPTBdMOWO0wsc7 s/DhzWSS6tdEn/ds9blutK7/y6RV7JxvUsz7q1hrSgTcRi0RKSPvWGHcCnDs0QVAEYkS /7Aw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=xKGvjXfP09tuQUtnHSxoj6yGB6ljKZqK4Nn9CCEYdxA=; b=ISdoqMc+olhWiokaEHKFKrQwXW8USJKv6fMcFnrBtqAblQV6UwEw/3Y/6ihKZvoFB4 1uoLDzsQ2G0HHp4JD8sW7nodeg4Ec++/EHR0SFSXrDwHwSKzN8PDgUwjreAFcyovXwWr L3iSsTphKYcJu0eeI9TotGM700E2y6sU0oELk/kyu+6keBblZD5eX4FDZaEtM6pNhjAH YJT+T5/Ry+znVOyTuKZcb748wL3RLeoufqZifT610wnq7GrxBhi6olDGv2FEorpWrRBH nM54I7kK4my23qCgDjrM94tk0uCTQ21qN9pv/jdI1nZuDve8vmc9+ECg1R3XquyGo5wl EDOA==
X-Gm-Message-State: AKwxytciQAb06iCC15l+G7x8WZE1o64dfzuMl9nVWm8DG21Fx+BhRVE8 d4jtXDJ0spYjr6TFNToici+VLu6Bbzq63uzkgTbdrg==
X-Google-Smtp-Source: AH8x2269s+7BisbKo6K8vg3Vj6WHTvW+HfP7QqLCgBXlWZL091f3wU+CchWKa2LmnOugR7Acvp32AHcIFOL6Yx0Zw70=
X-Received: by 10.157.36.137 with SMTP id z9mr13298866ota.175.1517788248183; Sun, 04 Feb 2018 15:50:48 -0800 (PST)
MIME-Version: 1.0
Received: by 10.157.52.196 with HTTP; Sun, 4 Feb 2018 15:50:47 -0800 (PST)
In-Reply-To: <7CF7F94CB496BF4FAB1676F375F9666A3BACADD6@bgb01xud1012>
References: <7CF7F94CB496BF4FAB1676F375F9666A3BACADD6@bgb01xud1012>
From: Martin Thomson <martin.thomson@gmail.com>
Date: Mon, 05 Feb 2018 10:50:47 +1100
Message-ID: <CABkgnnULrBdrS3_Fh5CzAPqpUKTHZzJr50VKB3MK0tx2HAfPjw@mail.gmail.com>
To: Lucas Pardue <Lucas.Pardue@bbc.co.uk>
Cc: HTTP Working Group <ietf-http-wg@w3.org>, "bemasc@google.com" <bemasc@google.com>
Content-Type: text/plain; charset="UTF-8"
X-W3C-Hub-Spam-Status: No, score=-7.6
X-W3C-Hub-Spam-Report: AWL=1.375, BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, W3C_AA=-1, W3C_DB=-1, W3C_IRA=-1, W3C_IRR=-3, W3C_WL=-1
X-W3C-Scan-Sig: titan.w3.org 1eiU41-0005kB-Nv 081c2800c375a3f8ecba4bc61c34d3ce
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Interest in a UDP equivalent to the CONNECT method
Archived-At: <https://www.w3.org/mid/CABkgnnULrBdrS3_Fh5CzAPqpUKTHZzJr50VKB3MK0tx2HAfPjw@mail.gmail.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/35089
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
I'm surprised that no one has mentioned TURN yet. So let me be the first. On Sun, Feb 4, 2018 at 1:27 AM, Lucas Pardue <Lucas.Pardue@bbc.co.uk> wrote: > Hi, > > I'm wondering if there is interest from the WG in the following space before > investing any more technical effort. > > It recently struck me that there might be a use in iterating upon the > CONNECT method, in order to support a world of UDP servers that support > HTTP/QUIC. That spec neatly summarises the current state of play: > > In HTTP/1.x, CONNECT is used to convert an entire HTTP connection into a > tunnel to a remote host. In HTTP/2, the CONNECT method is used to > establish a tunnel over a single HTTP/2 stream to a remote host for > similar purposes. > > A CONNECT request in HTTP/QUIC functions in the same manner as in > HTTP/2. The request MUST be formatted as described in [RFC7540], > Section 8.3. A CONNECT request that does not conform to these > restrictions is malformed. The request stream MUST NOT be half- > closed at the end of the request. > > A proxy that supports CONNECT establishes a TCP connection > ([RFC0793]) to the server identified in the ":authority" pseudo- > header field. Once this connection is successfully established, the > proxy sends a HEADERS frame containing a 2xx series status code to > the client, as defined in [RFC7231], Section 4.3.6. > > > The sad part here is that an HTTP/QUIC client that uses an HTTP/QUIC proxy > in this mode needs to support TCP for secure connection to the remote host. > This presents some resistance to moving away from TCP in the future. > > I wondered if something better could exist, and Ben Schwartz and I batted > some ideas around. The strongest one was the idea of a new method (e.g. > UDPBIND) that would allow a client to indicate to the proxy that it wished > to communicate with the remote host using UDP. Depending on the protocol > being used for client-to-proxy communication some options present themselves > (NB: the data exchanged is the serialization of TLS handshake and protected > packet format): > > HTTP/QUIC > > DATA frames sent by client (UDP) are transmitted by the proxy to the remote > host UDP port (UDP). > data received by the proxy (UDP) is packaged into DATA frames, which are > then transmitted to the client (UDP). > > HTTP/2 > > DATA frames sent by client (TCP) are transmitted by the proxy to the remote > host UDP port (UDP). > data received by the proxy (UDP) is packaged into DATA frames, which are > then transmitted to the client (TCP). > > HTTP/1.1 ? > > data sent by the client (TCP) is transmitted by the proxy to the remote host > UDP port (UDP). > data received by the proxy (UDP) is transmitted to the client (TCP). > > > The conversion between TCP and UDP should be treated carefully, payloads may > be segmented unexpectedly. > > The handling of UDP "closure" is a problem area that needs more thought. > > Kind regards > Lucas > >
- Interest in a UDP equivalent to the CONNECT method Lucas Pardue
- Re: Interest in a UDP equivalent to the CONNECT m… Ilari Liusvaara
- Re: Interest in a UDP equivalent to the CONNECT m… Göran Eriksson AP
- RE: Interest in a UDP equivalent to the CONNECT m… Lucas Pardue
- RE: Interest in a UDP equivalent to the CONNECT m… Lucas Pardue
- Re: Interest in a UDP equivalent to the CONNECT m… Ben Schwartz
- Re: Interest in a UDP equivalent to the CONNECT m… Ian Swett
- Re: Interest in a UDP equivalent to the CONNECT m… Ben Schwartz
- Re: Interest in a UDP equivalent to the CONNECT m… Albert Lunde
- Re: Interest in a UDP equivalent to the CONNECT m… Fossati, Thomas (Nokia - GB/Cambridge)
- RE: Interest in a UDP equivalent to the CONNECT m… Lucas Pardue
- Re: Interest in a UDP equivalent to the CONNECT m… Göran Eriksson AP
- RE: Interest in a UDP equivalent to the CONNECT m… Mike Bishop
- Re: Interest in a UDP equivalent to the CONNECT m… Martin Thomson
- RE: Interest in a UDP equivalent to the CONNECT m… Lucas Pardue
- Re: Interest in a UDP equivalent to the CONNECT m… Martin Thomson
- Re: Interest in a UDP equivalent to the CONNECT m… Göran Eriksson AP
- Re: Interest in a UDP equivalent to the CONNECT m… Ben Schwartz
- RE: Interest in a UDP equivalent to the CONNECT m… Lucas Pardue
- Re: Interest in a UDP equivalent to the CONNECT m… Göran Eriksson AP
- Re: Interest in a UDP equivalent to the CONNECT m… Göran Eriksson AP
- Re: Interest in a UDP equivalent to the CONNECT m… Amos Jeffries
- Re: Interest in a UDP equivalent to the CONNECT m… Göran Eriksson AP