HTTP2 分享记录
这个是一个自己工作中小组内的一个简单分享,关于HTTP2各种内容。以HTTP2作为标题,结合了一些工作里的业务场景,内容主要还是要靠讲的,并且在语速比较快的情况下也说了约40分钟,所以只能偷懒上些ppt的内容了。当然作为国际部门,现在内部要求都要英文交流,所以ppt也是英文的...
HTTP History
- Concept Hypertext (1963)
- HTTP 0.9 (before 1995)
- Only get, no header, 1 page
- HTTP 1.0 (1996)
- Header, response code, redirect, post. Etc, 60 pages
- HTTP 1.1 (1999)
- Options, upgrade, cache header extends
- SPDY (2009 google)
- HTTP2 (2012, 2015/5/14 published)
HTTP2 related
- Server (google)
- Proxy (akamai)
- Client (google firefox)
HTTP2 Features
- One Connection
- use one connection for parallelism (ares oversea)
- Header Compression
- uses header compression to reduce overhead
- Server Push
- allows servers to “push” responses proactively into client caches
HTTP2 Requirement
- Stage 1 (NPN)
- Web server supported H2 (nginx 1.9.5+)
- TLS certificate (Let' s Encrypt)
- Chrome 41, Firefox 36, Edge 12, Safari 9, Opera 28
- Stage 2 (ALPN)
- OpenSSL 1.0.2g
- Chrome 51
Site: HTTP1.1 vs HTTP2
sample demo parse
Questions about connection
- How many connections browser can open, and why?
- How many connections system can maintain?
- What’s the ideal delay between Shanghai and New York?
Windows connections
ref: http://smallvoid.com/article/winnt-tcpip-max-limit.html
- TCP connection allow: TcpNumConnections = 16M
- Max dynamic ports: MaxUserPort = 5000 (1024 to 5000)
- TCP control block: MaxFreeTcbs = 1000 (srv = 2000)
- 0.5k for pagepool and 0.5k for non-pagepool
- TCB HashTable: MaxHashTableSize = 512 (Default = 512, Range = 64-65536)
- Pagepool
- allocated a 1000 TCBs == 1000 connection, close connection occupy port 4min: TcpTimedWaitDelay = 240 sec
- Without closing the connection properly: KeepAliveTime = 2 h
result: < 1000
Http1 problems
- Head of line blocking
- Inefficient of TCP usage rate
- Slow start
- Congestion window
- Etc...
Http1.1 Optimization
- Sprite Image
- Domain sharding
- Disable cookie
- File concat
Then use http2
Http1.1 Optimization in H2
- Sprite Image
- It depends, heigh cost, bg image load when visible
- Domain sharding
- wrong
- Disable cookie
- wrong
- File concat
- It depends, unnecessary almost
Client Support detect
- Upgrade header
- TLS
- NPN (Next Protocol Negotiation)
- ALPN (Application Layer Protocol Negotiation)
- HTTP Alternative services
Upgrade header
GET ws://example.com/ HTTP/1.1
Connection: Upgrade
Upgrade: websocket
Origin: http://swordair.com
Sec-WebSocket-Version: 13
Sec-WebSocket-Key: xxx
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xxxxx
GET / HTTP/1.1 Host: example.com
Connection: Upgrade, HTTP2-Settings
Upgrade: h2c
HTTP2-Settings: <base64url encoding of HTTP/2 SETTINGS payload>
Unsupport:
HTTP/1.1 200 OK
Content-Length: 243
Content-Type: text/html
Unsupport:
HTTP/1.1 200 OK
Content-Length: 243
Content-Type: text/html
but, just exist in RFC actually
ALPN
TLS connection ‘Client Hello’
Client double confirm
Connection preface
PRI * HTTP/ 2. 0\ r\ n\ r\ nSM\ r\ n\ r\ n
- SETTINGS client
- SETTINGS ack server
HTTP2 basics
- TCP socket
- Steam
- Frame
- Steam
HTTP2 Steam
- Steam is H2 independent, two-way frame change
- A new request will rise a new steam
- Steam id
H2 Frame
- HTTP based on ‘Text splite’
- HTTP2 based on Frame (key of one connection for parallelism)
Frame Type
NAME | ID | DESC |
---|---|---|
DATA | 0x0 | Steam data |
HEADERS | 0x1 | http header |
PRIORTY | 0x2 | Priority of steam |
RST_STEAM | 0x3 | Stop steam (error) |
SETTINGS | 0x4 | Set connection param |
PUSH_PROMISE | 0x5 | Server push tips |
PING | 0x6 | Test connection and rtt |
GOAWAY | 0x7 | Steam end |
WINDOW_UPDATE | 0x8 | Flow control |
CONTINUATION | 0x9 | Extends HEADERS frame |
Header Compression
- deflate & CRIME (Compression Ratio Info-leak Made Easy)
- Gzip is unsafe
- HPACK
- Header infos are similar
- Index specific header and value
HPACK sample
Header1: All work and no play
Header2: makes Steven
Header3: a dull boy
Client generate this index and send to server, server will also create one
Index | Header name | Value |
---|---|---|
55 | Header1 | All work and no play |
56 | Header2 | makes Steven |
57 | Header3 | a dull boy |
Next item send: 55 56 57
Every connection maintain it’s index status.
Server Push
- Reasonable push decrease 20% - 50% render time
- Push will waste bandwidth (resource cached already)
- Best Timing:
- Server busy
- Client idle
- Frame Type “PUSH_RPOMISE”
- Client can reject use “RST_STEAM”
FTTB in H2
H2 Extra work:
- Window size adjust
- Dependency tree
- Index header
- Header compression
- Priority change
- Server pre push
Performance:
H2 <= H1
Experience
H2 > H1
HTTP2 debug
- chrome://net-internals/ (early version)
- Chrome debug tool -> network tab
- Session key logging (env SSLKEYLOGFILE=~/key.log) wireshark
- Firefox command mode record HTTP session log
TCP and UDP
- TCP is not fast portocal but it is reliable
- But we need more fast net
core problen is:
- TCP/IP is integrated in system core
- TCP is in core space
- UDP is in user space
QUIC
- Quick UDP Internet Connection
- Based on UDP which in user space
- Provide equivalent HTTP2 new features
HTTP3 ?
FIN