IETF Logo Mail Archive

Re: [Masque] Dropping HTTP/1.x requirement for CONNECT-UDP

Mirja Kuehlewind <mirja.kuehlewind@ericsson.com> Thu, 25 March 2021 13:41 UTC

Return-Path: <mirja.kuehlewind@ericsson.com>
X-Original-To: masque@ietfa.amsl.com
Delivered-To: masque@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 46DF73A237A for <masque@ietfa.amsl.com>; Thu, 25 Mar 2021 06:41:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.251
X-Spam-Level:
X-Spam-Status: No, score=-2.251 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.251, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZcLNBXKvPjxv for <masque@ietfa.amsl.com>; Thu, 25 Mar 2021 06:41:35 -0700 (PDT)
Received: from EUR02-HE1-obe.outbound.protection.outlook.com (mail-eopbgr10048.outbound.protection.outlook.com [40.107.1.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C54F73A217C for <masque@ietf.org>; Thu, 25 Mar 2021 06:41:24 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=S9rwE9cpjOgU5nMjHnwyPQlhfyRYIEKeSJNZHtz8ZvLlDnr36A8xFPXyXTdrTIWgygdRDeJ0x45IKPpqgsUBvnch6/ZrVCWPct3UNLbfmqdj1hMDZxwQKXHng632h/VTjbMT4f2VL0ozwiq05khBW5S3/XxVgP3qFJzfb7QeGuB+lcTrGIHzeqmBcLbSmkARLDxp4TAhxRxILizBDMFzOOkitbwqPbPHQAwmNPvpoLB2uxWkrF4wNqzUf8y0+ZWh8gwg/3GLh8t1VAD8SzMXvOXLD/rrfXDcdMAExzd+TGmfx4LBnRduK9sgulOKMXgDmyvR6zf59lgHIHONlBhfLw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=K0ZGeWbxGaLWEG72StjlOVWrC61hqwuPcUPvwtTlNYw=; b=BXnwGexVYY5xhMeoh9Yg6LzL3n7IEA7mWF1KVVOCLrCET36Xhvtnk3I4Z8CyroSwoltH5FIojXO3NTG9RyYjpzOQpbzrx+072HWUgGMgws5lLVu0Xt/W/isNkrBfkbFhTCwItSkuF2NJWxRIxszToRW5Mee7yABMeDA5czTV24LDwSPV7THqbfcZ4JciDnRiwIXiYjMxCX7/6IapZUEvF0f+CXcW+plhJUqFqv6wkdJZT4u/oJxiOsTK4J+TRTphUFGxhFXfSp8FBJR3Ix79WwKM5Q39YHzg3r10kl7c7daN4EpBgsvwOHmamkIIpYariylDZsFA6v0nwvDhQbBE+A==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=K0ZGeWbxGaLWEG72StjlOVWrC61hqwuPcUPvwtTlNYw=; b=XzWFKYKPWIUH+CY/2kbrStbJe46Go5Gj5WbWcossR+uXGpIgzIk33lU2zzJgu6EgUz7PXjjCJ581TVE36JnSyPKdYRAWmuSQfC31BhePZGmMXpvulhG6WSJDYAnXTnJME5FmfIZtthGf+zqwOxW9/4sherZ+JFEOVgP+A6ePa4s=
Received: from AM0PR07MB3939.eurprd07.prod.outlook.com (2603:10a6:208:40::14) by AM9PR07MB7921.eurprd07.prod.outlook.com (2603:10a6:20b:30f::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3999.16; Thu, 25 Mar 2021 13:41:22 +0000
Received: from AM0PR07MB3939.eurprd07.prod.outlook.com ([fe80::3dcd:3a09:9479:a61f]) by AM0PR07MB3939.eurprd07.prod.outlook.com ([fe80::3dcd:3a09:9479:a61f%4]) with mapi id 15.20.3977.025; Thu, 25 Mar 2021 13:41:21 +0000
From: Mirja Kuehlewind <mirja.kuehlewind@ericsson.com>
To: Alex Chernyakhovsky <achernya=40google.com@dmarc.ietf.org>, Ian Swett <ianswett@google.com>
CC: David Schinazi <dschinazi.ietf@gmail.com>, Mark Nottingham <mnot@mnot.net>, Roy Fielding <fielding@gbiv.com>, Tommy Pauly <tpauly@apple.com>, MASQUE <masque@ietf.org>
Thread-Topic: [Masque] Dropping HTTP/1.x requirement for CONNECT-UDP
Thread-Index: AQHXHEPeXV/stNM0TEW14eLOEpczcqqQmtsAgAAFCgCAAEcMAIAAAOmAgAFLK4CAAAv5AIAAHWwAgAJ05oA=
Date: Thu, 25 Mar 2021 13:41:21 +0000
Message-ID: <6476D243-6173-457F-9953-0382F7B7037B@ericsson.com>
References: <CAPDSy+5QOV-QfJVi1c1yN5KCawkibHfzZvWUaX3z9nby1tRKCg@mail.gmail.com> <CAHbWFkTjqo8kPfJZ1iYJf9Haz3bERSoo_hFuTEW7Ht-qVR=DqQ@mail.gmail.com> <2DFDA98E-E6A4-4D7A-9B22-043048ADF30E@apple.com> <4950F4ED-AF9C-493D-A72A-D2CFEE90C0FA@mnot.net> <9E9DFAEA-7B83-4208-AA99-770B70B6D569@apple.com> <CAPDSy+7ZWUeQt=Y6EvgSC=MeMAQ3QoHikta4g6ocyGViqTs0fg@mail.gmail.com> <CAKcm_gN561ruvtUL5JX9N0M58MN1dEQegWH0NuD6cGN-Badh9g@mail.gmail.com> <CAHbWFkR+5Y5jtXu2NnZ-fVxoFdSpBxP7ewutVPT0rfX1oHM6JQ@mail.gmail.com>
In-Reply-To: <CAHbWFkR+5Y5jtXu2NnZ-fVxoFdSpBxP7ewutVPT0rfX1oHM6JQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.45.21011103
authentication-results: dmarc.ietf.org; dkim=none (message not signed) header.d=none;dmarc.ietf.org; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [2003:de:e71f:e600:dcb4:14a5:e41c:b63c]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 583624bb-3de4-44fd-5eba-08d8ef93ad51
x-ms-traffictypediagnostic: AM9PR07MB7921:
x-microsoft-antispam-prvs: <AM9PR07MB7921639A7680EC2BF4C03F89F4629@AM9PR07MB7921.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0PR07MB3939.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(39860400002)(136003)(346002)(396003)(366004)(376002)(5660300002)(6506007)(36756003)(54906003)(110136005)(4326008)(316002)(33656002)(966005)(53546011)(66446008)(8936002)(64756008)(86362001)(66556008)(6486002)(478600001)(66946007)(66476007)(8676002)(76116006)(2906002)(71200400001)(38100700001)(44832011)(166002)(186003)(83380400001)(2616005)(6512007)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: N5vlKpcdZtJDRbRez7JebWWwGXK8vgtwVYuFLIC9SVx+fkCCGk/4zkb+N3HDha4UQQEFzmhFfxGH4vX5kP3FBTqyN74QL5ZN5r59fFVvmtVGuX+Hs/db51bvv0WGITUka/xsa2m6XG3fbANTFMZb7N7P+3uWKgEjGtuOYz9pMSIEsT4oz1dDKiUL+HpipRQmfgzsROhgFRGIQrbEvmLkCXjhmUF1otLUewTG7sHMjbASnTRUqh0gZeRQrhGzEjbSDG/Cx2R60facdVaHbByf1eRguyLtJXo9K7NS5tTQZmVS3O0UHYBQkeja7gGp15CKz/HdAeL1vdfvbN6oewWsjXjWTuHNUTVD9qGfLp0sZEUi80uLusm46v9BI8kW06wSjDvtEdfscl678/hozCdLqwJ9lYd7orjv66UUlyqB6GdwNojovsjDWf2CIvK7MEf5HgWB/+lgkeTdces3Iryw+nWwbS905VScvmsPsbgBKZjNsJe03h3djzjcL5/9b9h8dyYL9YrQxnu4O5D3ikfM/jEe6fa4UwzR6fcntA5PmVrlCD1RUHXHlSzypEQqA5U8GXU7UbBLKE3S1se+jROnfWpHmnY2m7o6ihuxxGBRYpTfVcwMDKRUrnTHAattl2hv+fGUJ4kr7e1qxf+z2qn2Sf0Vs9oMXMpfQjib0aeGLiJaZQnFrW4yleFFTKdB2CvbQkxLkZ/IFDIaHDUj0QURVe+FrS4htKyp5sgfC8PEKQBpRxgV9oGOkEHlEkjwHCDWmqUGpQyepXtE9mqIKVP5GpIervURn6KvrBbxXAOKCXZkMt/wHQQDbO6RKRstKNXn1HLdX/2wQv460lMnTnkSdUQpN7qWSQxWhzMJgBGH6qwhoHJIAiYM+dPz7a4Wyx7+7G+taUQpn4hbMan6w26YqQvdr0pOBkCTzXNA3Hu2FbmmVpbCZIIakgxsWGGwTvtWk2LVGVt8Bj6fbc79GX4tr0BGY0xEt8O+LvLBSR6AwL0CGSkBqucRQEl5gHIWOkcMu7HVMYSVGQ8e9P+Ra4IVP1SiGDVBeV7//xnWxc2dgD2ZrBioR6lSAh91pxm80q3qpyQW2poXu5tfa+MYB+9VSEhTrbW6AJgv/NVvSc8vhf3jWWKdaFiX/v4rmwgkzHgwLcslcqeYWhbTYCL9bX8ZPsFrW676880zJ35lWo5meX6zrK+iVUr2yg2AtsPB9EO+u2m3C/wpo5l8o3SuDlgB8rGN7EmTiPpz6qlRjlcJygwfhAiZ7DWj2IWRPmRcVfDedTyLH6Q21qhaMhx8hE96AscVlgWZ/9kV2TNqqwLadh6neY5Ml7Qub1u0iJIrT4B3Ab+v6fJPyN+ZJuZU8Qzdf5bSqDOSFOJ/7QKYcUMxJwYYvIX/8eDFRUMQEyUqmTQB
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_6476D2436173457F99530382F7B7037Bericssoncom_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM0PR07MB3939.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 583624bb-3de4-44fd-5eba-08d8ef93ad51
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Mar 2021 13:41:21.8577 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: NVD18OgkcZkWpxdWEmSn43ILc6fDq0c09BX7XdLkABiDDpnGMo1cA4mr9ivg+5T3odQu1eYZE/IQI951e86cI9nRYAciB5vWKaCVeICFfk4=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM9PR07MB7921
Archived-At: <https://mailarchive.ietf.org/arch/msg/masque/1Ifu9MOeqaM0CdnFdauFv6hOb6A>
Subject: Re: [Masque] Dropping HTTP/1.x requirement for CONNECT-UDP
X-BeenThere: masque@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Multiplexed Application Substrate over QUIC Encryption <masque.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/masque>, <mailto:masque-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/masque/>
List-Post: <mailto:masque@ietf.org>
List-Help: <mailto:masque-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/masque>, <mailto:masque-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Mar 2021 13:41:47 -0000

I agree. I thought that the mapping is actually relatively straight forward though. With H2 you can have one CONNECT per stream (and no datagram support). For H1 you can only have one CONNECT per connection and you would open multiple TCP/HTTP connections for each forwarding request separately.



From: Masque <masque-bounces@ietf.org> on behalf of Alex Chernyakhovsky <achernya=40google.com@dmarc.ietf.org>
Date: Wednesday, 24. March 2021 at 02:11
To: Ian Swett <ianswett@google.com>
Cc: David Schinazi <dschinazi.ietf@gmail.com>, Mark Nottingham <mnot@mnot.net>, Roy Fielding <fielding@gbiv.com>, Tommy Pauly <tpauly@apple.com>, MASQUE <masque@ietf.org>
Subject: Re: [Masque] Dropping HTTP/1.x requirement for CONNECT-UDP

I don't think aligning h1 and h2 makes sense. h2 is closer to h3 than it is to h1.

Sincerely,
-Alex

On Tue, Mar 23, 2021 at 7:25 PM Ian Swett <ianswett@google.com<mailto:ianswett@google.com>> wrote:
IMO it makes sense to align the h1 and h2 designs, since they're both fallbacks we'd rather not use.  If h1+h2 lands after h3 in a different doc, I don't see a problem with that, but I'm also fine with them being in a single document.

In a surprising number of cases where h3 is blocked, h2 is blocked as well(ie: Corp MITMs) and users will end up on h1.  Additionally, h1 is still widely used behind load balancers/proxies.  As such, by the time this becomes RFC, I wouldn't be surprised if there's more usage of it over h1 than h2.

I don't think the CONNECT-UDP design for h2 and h3 needs to share framing, given h3 has datagrams and doesn't need frames transmitted on streams to transmit UDP?

On Tue, Mar 23, 2021 at 6:42 PM David Schinazi <dschinazi.ietf@gmail.com<mailto:dschinazi.ietf@gmail.com>> wrote:
Or we could have one document now that describes CONNECT-UDP over h2 and h3, and a separate document that defines CONNECT-UDP over h1 later?
I'm not saying CONNECT-UDP should never support HTTP/1.1, I'm just saying that maybe we don't need to design that yet.

Thoughts?
David

On Mon, Mar 22, 2021 at 7:57 PM Tommy Pauly <tpauly@apple.com<mailto:tpauly@apple.com>> wrote:
Yes, that’s what I recall as well.

David, can we still go down the path of using frames in HTTP/3 and HTTP/2, while letting CONNECT-UDP have a more degenerate case for HTTP/1.1?

Tommy

> On Mar 22, 2021, at 7:53 PM, Mark Nottingham <mnot@mnot.net<mailto:mnot@mnot.net>> wrote:
>
> My recollection is that this was discussed at length during chartering, and the resolution was that we'd make it version-independent, like other methods. If you want to re-visit that, I think we'd need to ask the whole HTTP WG, not just a couple of people.
>
> Cheers,
>
>
>> On 23 Mar 2021, at 9:39 am, Tommy Pauly <tpauly@apple.com<mailto:tpauly@apple.com>> wrote:
>>
>> While I understand the desire for this, I’m concerned about making a method that only works with some versions.
>>
>> From https://httpwg.org/http-core/draft-ietf-httpbis-semantics-latest.html#methods<https://protect2.fireeye.com/v1/url?k=57aa9374-0831aa71-57aad3ef-86d2114eab2f-8a67a28437e1dc6d&q=1&e=cd2d81ff-d165-41ed-836c-128d76921781&u=https%3A%2F%2Fhttpwg.org%2Fhttp-core%2Fdraft-ietf-httpbis-semantics-latest.html%23methods> :
>>
>> HTTP defines a number of generic extension points that can be used to introduce capabilities to the protocol without introducing a new version, including methods, status codes, field names, and further extensibility points within defined fields, such as authentication schemes and cache-directives (see Cache-Control extensions in Section 5.2.3 of [Caching]). Because the semantics of HTTP are not versioned, these extension points are persistent; the version of the protocol in use does not affect their semantics.
>>
>> Version-independent extensions are discouraged from depending on or interacting with the specific version of the protocol in use. When this is unavoidable, careful consideration needs to be given to how the extension can interoperate across versions.
>>
>> I’d like to hear the opinions of Mark and Roy on this.
>>
>> Tommy
>>
>>> On Mar 22, 2021, at 3:21 PM, Alex Chernyakhovsky <achernya=40google.com@dmarc.ietf.org<mailto:40google.com@dmarc.ietf.org>> wrote:
>>>
>>> I think this makes a lot of sense. As it stands today, anyone wishing to add UDP support would have to make changes to their client/server anyway -- I feel like the complexity we'd take on by continuing to support HTTP/1.1 and older isn't beneficial since we wouldn't be able to interoperate with existing implementations with the new features. Requiring HTTP/2 or newer lets us rely on a lot of nice things that have been added (like multiplexing) and not have to re-invent them in HTTP/1.1 just for UDP.
>>>
>>> Sincerely,
>>> -Alex
>>>
>>> On Thu, Mar 18, 2021 at 6:12 PM David Schinazi <dschinazi.ietf@gmail.com<mailto:dschinazi.ietf@gmail.com>> wrote:
>>> Hi MASQUE enthusiasts,
>>>
>>> The CONNECT-UDP draft currently states "The CONNECT-UDP method is defined for all versions of HTTP." While supporting HTTP/3 is our top priority, and supporting HTTP/2 is necessary because of networks that block UDP, I'm not sure supporting versions of HTTP before 2 is useful. Additionally, it constrains our design space as HTTP/1.1 does not have the HTTP framing layer that HTTP/2 and HTTP/3 have. I would like to drop support for HTTP/1.1, 1.0 and 0.9.
>>>
>>> Does anyone object to dropping the requirement to support versions of HTTP before 2?
>>>
>>> Thanks,
>>> David
>>> --
>>> Masque mailing list
>>> Masque@ietf.org<mailto:Masque@ietf.org>
>>> https://www.ietf.org/mailman/listinfo/masque
>>> --
>>> Masque mailing list
>>> Masque@ietf.org<mailto:Masque@ietf.org>
>>> https://www.ietf.org/mailman/listinfo/masque
>>
>
> --
> Mark Nottingham   https://www.mnot.net/<https://protect2.fireeye.com/v1/url?k=0c525adb-53c963de-0c521a40-86d2114eab2f-69a3e42f0cf4ffba&q=1&e=cd2d81ff-d165-41ed-836c-128d76921781&u=https%3A%2F%2Fwww.mnot.net%2F>
>
> --
> Masque mailing list
> Masque@ietf.org<mailto:Masque@ietf.org>
> https://www.ietf.org/mailman/listinfo/masque
--
Masque mailing list
Masque@ietf.org<mailto:Masque@ietf.org>
https://www.ietf.org/mailman/listinfo/masque

v2.23.0 | Report a Bug | By Email