IETF Logo Mail Archive

Re: [Masque] HTTP DATA frames for HTTP CONNECT?

Mirja Kuehlewind <mirja.kuehlewind@ericsson.com> Thu, 15 October 2020 23:51 UTC

Return-Path: <mirja.kuehlewind@ericsson.com>
X-Original-To: quic@ietfa.amsl.com
Delivered-To: quic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EFC833A0D05; Thu, 15 Oct 2020 16:51:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.3
X-Spam-Level:
X-Spam-Status: No, score=-3.3 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-1.2, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XouxQvL95yDo; Thu, 15 Oct 2020 16:51:25 -0700 (PDT)
Received: from EUR05-AM6-obe.outbound.protection.outlook.com (mail-am6eur05on2083.outbound.protection.outlook.com [40.107.22.83]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 27F1D3A0D06; Thu, 15 Oct 2020 16:51:24 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=mSVOYRWAmswWjXDjK9z8owT2dgLcZLCBYzzpVtD27KyXLrHw7A+WTuhjh82bHrGQtTAmMB3HR7tRIilP5lS1p+j7PEcWC5KXibIEoPvfTZMuWniOYlbldrxFNydGyklBNG1jqQ2n1Bf0U9tkYjfTmsc5zFC3xtFFDHHeeFwCguW6d4mqyb3D6YWpyosUZP7RcFjTv+ZNNqSdabk3PZqcEMs9PEUlRA3BZVqNsA40JxF8tWew4AKkKJICzMVyDMGsZzM0oXg/ceiKGycEINRp3omwf4fJQx7okbtH7mc7zWkcJR39G6ipCHQiy1QZPKuzAXX63LbOLpHSWLzJklGvCA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=MJecOWVVxkrBpDgTGstxvFS/FSKGmd3UBbbglfMRlL0=; b=TVes7MgrBLWzU9mEyl7cy9wUZVjwWeBTh+YS8aeK/XYWLlTNvUkb71sCgWY1vZX6qOgMHJjOnfqFZiMnfspPj3srTFqPyjO8S8UeFddQlAivRJxmIe+GUSh5NjRh04j3rQdk0SmoJksZCbIejlYRf8cGbO+AgdSdUuhJ2njA2LkLlTsjcArDSHky8oVPeSjjfDPGGZp69uTUMA8a9pwcDSfGuNeqhD+j3//Y0wokvn/ZjPFbss1PK77XXFchxj6xNPaiKlNzYpUJyPsEdj3SoTiNXhJs3ss8NLmRPR4wOLuZgDpT5Nnq/X5ej06fW+4ztxSbE5bA7pYQfOBV1fMpRw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=MJecOWVVxkrBpDgTGstxvFS/FSKGmd3UBbbglfMRlL0=; b=DZY+22wbHdXXrghzYf/Xcp4RbINLcmslRwe1ySPIL1h1c44hft/VSch3p1mLaSeO1b7xMz7MAQJsUb62xbatAxB/tXMQbFbfIGEngln6GpDWwGv1tObnm6U9wiXuwXQCiybJpmPhj1lbQlAfEcqkyTO69BSKrYjxB+xSkFC4N58=
Received: from AM0PR0702MB3713.eurprd07.prod.outlook.com (2603:10a6:208:19::10) by AM4PR07MB3442.eurprd07.prod.outlook.com (2603:10a6:205:11::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3477.11; Thu, 15 Oct 2020 23:51:22 +0000
Received: from AM0PR0702MB3713.eurprd07.prod.outlook.com ([fe80::9820:af8a:cdbc:73b0]) by AM0PR0702MB3713.eurprd07.prod.outlook.com ([fe80::9820:af8a:cdbc:73b0%7]) with mapi id 15.20.3499.009; Thu, 15 Oct 2020 23:51:22 +0000
From: Mirja Kuehlewind <mirja.kuehlewind@ericsson.com>
To: Mirja Kuehlewind <mirja.kuehlewind=40ericsson.com@dmarc.ietf.org>, Lucas Pardue <lucaspardue.24.7@gmail.com>, Alex Chernyakhovsky <achernya@google.com>
CC: "quic@ietf.org" <quic@ietf.org>, "masque@ietf.org" <masque@ietf.org>
Subject: Re: [Masque] HTTP DATA frames for HTTP CONNECT?
Thread-Topic: [Masque] HTTP DATA frames for HTTP CONNECT?
Thread-Index: AQHWoxCDA3i4eNYU6UycrV+M0Q16L6mY6MqAgAAEMYCAAIiYAIAAAf4A
Date: Thu, 15 Oct 2020 23:51:22 +0000
Message-ID: <6918A78D-E2F1-42D9-BFE6-BA1285D67333@ericsson.com>
References: <A92255DF-F477-4DE6-9AA2-33373959E792@ericsson.com> <CAHbWFkRvGKpHRfBrstVpHdfDZLkQyks77O2sc-j0uV8tCWyS2Q@mail.gmail.com> <CALGR9oYC6o8BYgO5Sxb0yMFibzFn241OpWTh3njnMh3KQK8ejQ@mail.gmail.com> <72706E88-C329-4E8B-A09F-CAE27D223DC8@ericsson.com>
In-Reply-To: <72706E88-C329-4E8B-A09F-CAE27D223DC8@ericsson.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.41.20091302
authentication-results: dmarc.ietf.org; dkim=none (message not signed) header.d=none;dmarc.ietf.org; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [2003:de:e713:1b00:7c4b:3dc8:29f8:9da3]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 0634ddae-8d18-43ac-f016-08d87165387d
x-ms-traffictypediagnostic: AM4PR07MB3442:
x-microsoft-antispam-prvs: <AM4PR07MB3442CEDCBFD8B7E96D5E6D7AF4020@AM4PR07MB3442.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: GP4X+8Rk7OOlCwNZsPsKH/CEXKMByKVKnEcLfSPvUWrXp3zBSvtza4BLqYTkVlh7ZQkhPFxnYYqc0yhBWA+Ox+aBKXKP4gyVdFIqV0r7MOm/2bin7Ek8gu/EL/NBjrjMY9rB4Etfjp5x1w4M5ULaxGPR3wKDCtaqjK1NxCZvVmjRqkTNNrxeALEFwfprGKtQe5wRZ9B5/QVSrDkWSqPlteYClgPbyWNgZxpEBYcnw4qpZfoG1WlNRJAULESR3fbHqnAJDxZEBKASTUfuvtmPE2eXbU4ZvMI+PugPO/iI0z9gpT1wHyKGozk8XCKHhPUs
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0PR0702MB3713.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(39860400002)(376002)(346002)(396003)(366004)(136003)(66446008)(33656002)(64756008)(36756003)(4326008)(186003)(6486002)(478600001)(66476007)(2906002)(66556008)(76116006)(2616005)(5660300002)(6506007)(83380400001)(110136005)(6512007)(86362001)(71200400001)(66946007)(44832011)(8676002)(316002)(8936002)(53546011)(54906003); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_6918A78DE2F142D9BFE6BA1285D67333ericssoncom_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM0PR0702MB3713.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 0634ddae-8d18-43ac-f016-08d87165387d
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Oct 2020 23:51:22.5728 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: FoPvmMD/y83JkF7sxMUQLrHwbsE7uzaFHfQe3TwwWmkjvuTHm+rAm4kkJ2rwaAvokRvInudZIJ/j2acPVt2yORBWpvtdcR1pwRpZCCDR9W4=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM4PR07MB3442
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/uAHb4YYTaTJoNHt9fG4V9oKJWNk>
X-BeenThere: quic@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Main mailing list of the IETF QUIC working group <quic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic>, <mailto:quic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic/>
List-Post: <mailto:quic@ietf.org>
List-Help: <mailto:quic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic>, <mailto:quic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 15 Oct 2020 23:51:27 -0000

Damn, missing „not“ below… meant to say that you need the HTTP framing for multiplexing in h2 but you don’t need it for that purpose in h3..

From: Masque <masque-bounces@ietf.org> on behalf of Mirja Kuehlewind <mirja.kuehlewind=40ericsson.com@dmarc.ietf.org>
Date: Friday, 16. October 2020 at 01:44
To: Lucas Pardue <lucaspardue.24.7@gmail.com>, Alex Chernyakhovsky <achernya@google.com>
Cc: "quic@ietf.org" <quic@ietf.org>, "masque@ietf.org" <masque@ietf.org>
Subject: Re: [Masque] HTTP DATA frames for HTTP CONNECT?

HI Lucas,

RFC7231 defines CONNECT originally like this:

“The CONNECT method requests that the recipient establish a tunnel to
   the destination origin server identified by the request-target and,
   if successful, thereafter restrict its behavior to blind forwarding
   of packets, in both directions, until the tunnel is closed.”

So I would interpret that the connection is not really a HTTP connection anymore after it has concluded the CONNECT. Again in HTTP/2 this did work because of multiplexing but in HTTP/3 is would work again and effectively maybe be the more flexible solution.

Mirja


From: Lucas Pardue <lucaspardue.24.7@gmail.com>
Date: Thursday, 15. October 2020 at 19:35
To: Alex Chernyakhovsky <achernya@google.com>
Cc: Mirja Kuehlewind <mirja.kuehlewind@ericsson.com>, "masque@ietf.org" <masque@ietf.org>
Subject: Re: [Masque] HTTP DATA frames for HTTP CONNECT?

Hey Mirja,

I'm against allowing unframed bytes on request streams. It limits extensibility (as pointed out by Alex) and introduces complexity to conventional HTTP/3 server implementations. HTTP desync attacks are something that framing protects against, let's not introduce risk for the sake of optimization.

The good news is that DATA frames can span QUIC packets. So if you're ok to take the hit once, you can send a very-long DATA frame and just keep appending data to it.

Cheers
Lucas

v2.23.0 | Report a Bug | By Email