IETF Logo Mail Archive

Re: [hybi] workability (or otherwise) of HTTP upgrade

John Tamplin <jat@google.com> Fri, 26 November 2010 19:29 UTC

Return-Path: <jat@google.com>
X-Original-To: hybi@core3.amsl.com
Delivered-To: hybi@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 2685E28C104 for <hybi@core3.amsl.com>; Fri, 26 Nov 2010 11:29:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -109.871
X-Spam-Level:
X-Spam-Status: No, score=-109.871 tagged_above=-999 required=5 tests=[AWL=0.106, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_HI=-8, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id v4G6KDNsvvId for <hybi@core3.amsl.com>; Fri, 26 Nov 2010 11:29:42 -0800 (PST)
Received: from smtp-out.google.com (smtp-out.google.com [74.125.121.35]) by core3.amsl.com (Postfix) with ESMTP id C9D8428C102 for <hybi@ietf.org>; Fri, 26 Nov 2010 11:29:41 -0800 (PST)
Received: from wpaz24.hot.corp.google.com (wpaz24.hot.corp.google.com [172.24.198.88]) by smtp-out.google.com with ESMTP id oAQJUi49013153 for <hybi@ietf.org>; Fri, 26 Nov 2010 11:30:44 -0800
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=google.com; s=beta; t=1290799844; bh=ukgLlfXWWgtay8bpFj4KoH9aQuQ=; h=MIME-Version:In-Reply-To:References:From:Date:Message-ID:Subject: To:Cc:Content-Type:Content-Transfer-Encoding; b=DnsBlv2b/pFziAq3ibX8ETwoBqKrtD74/EyMoxzk3QM8npJBTbqWYxPKxhLmLVLgO PRx9c61HZYAwQNvAsDTXg==
Received: from gyg8 (gyg8.prod.google.com [10.243.50.136]) by wpaz24.hot.corp.google.com with ESMTP id oAQJUGWG008300 for <hybi@ietf.org>; Fri, 26 Nov 2010 11:30:43 -0800
Received: by gyg8 with SMTP id 8so1244450gyg.38 for <hybi@ietf.org>; Fri, 26 Nov 2010 11:30:42 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=beta; h=domainkey-signature:received:mime-version:received:in-reply-to :references:from:date:message-id:subject:to:cc:content-type :content-transfer-encoding; bh=rFyi589IfP3YkHzryjODzomHlg/qG1aS/xSMHo0othc=; b=H1+0v4ZyBpS9MQ+T+UxyhS4PiGRh1cVqMhC6t5S7UHmH3yvqtB/fpP3MhR0AZ+OPJe HN13sfN/+ZY7+AQFpUSw==
DomainKey-Signature: a=rsa-sha1; c=nofws; d=google.com; s=beta; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type:content-transfer-encoding; b=F/Le6vy60lGggqgpuQD95DbYhagrGJjfoe9bM6EhgDDTTpRYfN/Wjllid2b2n1YzDW Nnse6nOf3ad1GTd3e/xA==
Received: by 10.150.91.18 with SMTP id o18mr5829083ybb.92.1290799842528; Fri, 26 Nov 2010 11:30:42 -0800 (PST)
MIME-Version: 1.0
Received: by 10.150.54.13 with HTTP; Fri, 26 Nov 2010 11:30:22 -0800 (PST)
In-Reply-To: <AANLkTimzQyG4hugOvHqoNrBrZFA4fGbGXQ7MZ2i+68dO@mail.gmail.com>
References: <AANLkTin6=8_Bhn2YseoSHGh1OSkQzsYrTW=fMiPvYps1@mail.gmail.com> <20101126000352.ad396b9a.eric@bisonsystems.net> <AANLkTimzQyG4hugOvHqoNrBrZFA4fGbGXQ7MZ2i+68dO@mail.gmail.com>
From: John Tamplin <jat@google.com>
Date: Fri, 26 Nov 2010 14:30:22 -0500
Message-ID: <AANLkTik9=iKq_2S2Zs=+GXk++6v+AvK6BuJDDpzOV2g4@mail.gmail.com>
To: Greg Wilkins <gregw@webtide.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-System-Of-Record: true
Cc: "Eric J. Bowman" <eric@bisonsystems.net>, hybi <hybi@ietf.org>, HTTP Working Group <ietf-http-wg@w3.org>
Subject: Re: [hybi] workability (or otherwise) of HTTP upgrade
X-BeenThere: hybi@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Server-Initiated HTTP <hybi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hybi>
List-Post: <mailto:hybi@ietf.org>
List-Help: <mailto:hybi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 26 Nov 2010 19:29:43 -0000

On Fri, Nov 26, 2010 at 7:55 AM, Greg Wilkins <gregw@webtide.com> wrote:
>
> On 26 November 2010 18:03, Eric J. Bowman <eric@bisonsystems.net> wrote:
> > What about:  3) Use another port?  I've seen that opinion voiced, so I
> > haven't signed up to the hybi list to voice it myself.  No criticism of
> > Web Sockets is intended or implied here, it's just a concrete example of
> > something which increasingly concerns me regarding Upgrade.
>
> The problem with another port, is that the success rate of  opening an
> arbitrary port through firewalls is not that high.     Thus if
> websocket was allocated it's own sockets, then there would still be
> need for a websocket over 80 protocol (eg like there is BOSH for
> XMPP).

In practice, those with firewalls aren't going to transport WebSocket
work anyway.  Maybe firewall configurations will be updated, but all
the ones I tested on the proposed method of connecting to the proxy
and issuing a CONNECT to the ultimate server fails on anything except
port 443.  So, WebSocket servers on port 80 being accessed from behind
non-transparent proxies (which cover the majority of corporate
environments) isn't going to work anyway.  I think someone deploying a
WebSocket server they expect to be accessible from behind those
proxies will have to run it on port 443.

Aside from running on port 443 (which has its own benefits, as you
could argue at this point we shouldn't be sending user data in the
clear ever), the only way I see getting through those proxies is using
POST with chunked encoding in both directions to send individual
frames but that is likely to run into its own problems and would
likely complicate server implementaitons.  Alternatively, hope that
WebSockets content becomes popular enough to force those environments
to be updated to allow it.

--
John A. Tamplin
Software Engineer (GWT), Google

v2.23.0 | Report a Bug | By Email