Advertisement
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020
HTTP/3 in curl 2020

Check these out next

Http3 fullstackfest-2019
Http3 fullstackfest-2019
Daniel Stenberg
Getting started with libcurl
Getting started with libcurl
Daniel Stenberg
HTTP/3, QUIC and streaming
HTTP/3, QUIC and streaming
Daniel Stenberg
HTTP/3
HTTP/3
Daniel Stenberg
Just curl it!
Just curl it!
Daniel Stenberg
curl - a hobby project that conquered the world
curl - a hobby project that conquered the world
Daniel Stenberg
DNS over HTTPS
DNS over HTTPS
Daniel Stenberg
Curl with rust
Curl with rust
Daniel Stenberg
1 of 51

HTTP/3 in curl 2020

May. 5, 2020
Download to read offline
Software

Daniel Stenberg's presentation about HTTP/3 in curl 2020. Done for curl up 2020.

Daniel Stenberg
Segfault manufacturer at wolfSSL
Advertisement
Advertisement
Advertisement

Recommended

HTTP/3 in curlHTTP/3 in curl
HTTP/3 in curlDaniel Stenberg1.9K views39 slides
HTTP/3 for everyoneHTTP/3 for everyone
HTTP/3 for everyoneDaniel Stenberg1.1K views66 slides
Landing code in curlLanding code in curl
Landing code in curlDaniel Stenberg1.3K views30 slides
curl roadmap 2020curl roadmap 2020
curl roadmap 2020Daniel Stenberg1K views28 slides
Testing curl for securityTesting curl for security
Testing curl for securityDaniel Stenberg1.2K views39 slides
curl bettercurl better
curl betterDaniel Stenberg392 views58 slides

More Related Content

Slideshows for you(20)

Http3 fullstackfest-2019Http3 fullstackfest-2019
Http3 fullstackfest-2019
Daniel Stenberg1.3K views
Getting started with libcurlGetting started with libcurl
Getting started with libcurl
Daniel Stenberg325 views
HTTP/3, QUIC and streamingHTTP/3, QUIC and streaming
HTTP/3, QUIC and streaming
Daniel Stenberg1.8K views
HTTP/3HTTP/3
HTTP/3
Daniel Stenberg5.9K views
Just curl it!Just curl it!
Just curl it!
Daniel Stenberg1.2K views
curl - a hobby project that conquered the worldcurl - a hobby project that conquered the world
curl - a hobby project that conquered the world
Daniel Stenberg2K views
DNS over HTTPSDNS over HTTPS
DNS over HTTPS
Daniel Stenberg1.9K views
Curl with rustCurl with rust
Curl with rust
Daniel Stenberg431 views
Speeding up Linux disk encryption by Ignat KorchaginSpeeding up Linux disk encryption by Ignat Korchagin
Speeding up Linux disk encryption by Ignat Korchagin
NETWAYS132 views
Re-thinking Performance tuning with HTTP2Re-thinking Performance tuning with HTTP2
Re-thinking Performance tuning with HTTP2
Vinci Rufus859 views
Zombilizing The Web Browser Via Flash Player 9Zombilizing The Web Browser Via Flash Player 9
Zombilizing The Web Browser Via Flash Player 9
thaidn1.4K views
XFLTReat: a new dimension in tunnellingXFLTReat: a new dimension in tunnelling
XFLTReat: a new dimension in tunnelling
Shakacon870 views
Dock ir incident response in a containerized, immutable, continually deploy...Dock ir incident response in a containerized, immutable, continually deploy...
Dock ir incident response in a containerized, immutable, continually deploy...
Shakacon272 views
securing_syslog_onFreeBSDsecuring_syslog_onFreeBSD
securing_syslog_onFreeBSD
webuploader584 views
Who Broke My CryptoWho Broke My Crypto
Who Broke My Crypto
John Varghese17 views
Scapy talkScapy talk
Scapy talk
Ashwin Patil, GCIH, GCIA, GCFE2.7K views
Demystifying Docker Networking Devoxx MA 2017Demystifying Docker Networking Devoxx MA 2017
Demystifying Docker Networking Devoxx MA 2017
Imad Hsissou145 views
Dos threats and countermeasuresDos threats and countermeasures
Dos threats and countermeasures
n|u - The Open Security Community3.9K views
Altitude SF 2017: QUIC - A low-latency secure transport for HTTPAltitude SF 2017: QUIC - A low-latency secure transport for HTTP
Altitude SF 2017: QUIC - A low-latency secure transport for HTTP
Fastly1.3K views
Hunting for the secrets in a cloud forestHunting for the secrets in a cloud forest
Hunting for the secrets in a cloud forest
SecuRing699 views

Similar to HTTP/3 in curl 2020(20)

HTTP/3 over QUIC. All is new but still the same!HTTP/3 over QUIC. All is new but still the same!
HTTP/3 over QUIC. All is new but still the same!
Daniel Stenberg949 views
HTTP/3 in curl - curl up 2022HTTP/3 in curl - curl up 2022
HTTP/3 in curl - curl up 2022
Daniel Stenberg73 views
HTTP/2 What's inside and WhyHTTP/2 What's inside and Why
HTTP/2 What's inside and Why
Adrian Cole4.5K views
03_clere-HTTP2 HTTP3 the State of the Art in Our Servers.pdf03_clere-HTTP2 HTTP3 the State of the Art in Our Servers.pdf
03_clere-HTTP2 HTTP3 the State of the Art in Our Servers.pdf
Jean-Frederic Clere6 views
CouchDB Day NYC 2017: Introduction to CouchDB 2.0CouchDB Day NYC 2017: Introduction to CouchDB 2.0
CouchDB Day NYC 2017: Introduction to CouchDB 2.0
IBM Cloud Data Services591 views
A New Internet? Introduction to HTTP/2, QUIC and DOHA New Internet? Introduction to HTTP/2, QUIC and DOH
A New Internet? Introduction to HTTP/2, QUIC and DOH
APNIC2.7K views
HTTP/2 IntroductionHTTP/2 Introduction
HTTP/2 Introduction
Walter Liu2.2K views
Http2Http2
Http2
Daniel Stenberg45.4K views
A new Internet? Intro to HTTP/2, QUIC, DoH and DNS over QUICA new Internet? Intro to HTTP/2, QUIC, DoH and DNS over QUIC
A new Internet? Intro to HTTP/2, QUIC, DoH and DNS over QUIC
APNIC4.2K views
Kubernetes Operability Tooling (GOTO Chicago 2019)Kubernetes Operability Tooling (GOTO Chicago 2019)
Kubernetes Operability Tooling (GOTO Chicago 2019)
bridgetkromhout151 views
What's new with Apache Camel 3? | DevNation Tech TalkWhat's new with Apache Camel 3? | DevNation Tech Talk
What's new with Apache Camel 3? | DevNation Tech Talk
Red Hat Developers3.1K views
DevNation Live 2020 - What's new with Apache Camel 3DevNation Live 2020 - What's new with Apache Camel 3
DevNation Live 2020 - What's new with Apache Camel 3
Claus Ibsen495 views
Sword v2 at UKCoRRSword v2 at UKCoRR
Sword v2 at UKCoRR
SWORD Project1.4K views
Linux HTTPS/TCP/IP Stack for the Fast and Secure WebLinux HTTPS/TCP/IP Stack for the Fast and Secure Web
Linux HTTPS/TCP/IP Stack for the Fast and Secure Web
All Things Open419 views
Go 1.8 'new' networking featuresGo 1.8 'new' networking features
Go 1.8 'new' networking features
strikr .1.3K views
Tickling CGI Problems (Tcl Web Server Scripting Vulnerability Research)Tickling CGI Problems (Tcl Web Server Scripting Vulnerability Research)
Tickling CGI Problems (Tcl Web Server Scripting Vulnerability Research)
Derek Callaway6.4K views
REST Web SebviceREST Web Sebvice
REST Web Sebvice
khmerforge671 views
Introduction to HTTP2Introduction to HTTP2
Introduction to HTTP2
Sudarshan Pant100 views
So that was HTTP/2, what's next?So that was HTTP/2, what's next?
So that was HTTP/2, what's next?
Daniel Stenberg921 views
Inside Sqale's Backend at RubyConf Taiwan 2012Inside Sqale's Backend at RubyConf Taiwan 2012
Inside Sqale's Backend at RubyConf Taiwan 2012
Gosuke Miyashita3.1K views
Advertisement

More from Daniel Stenberg(11)

curl - openfourm europe.pdfcurl - openfourm europe.pdf
curl - openfourm europe.pdf
Daniel Stenberg40 views
curl experiments - curl up 2022curl experiments - curl up 2022
curl experiments - curl up 2022
Daniel Stenberg19 views
curl security - curl up 2022curl security - curl up 2022
curl security - curl up 2022
Daniel Stenberg22 views
The state of curl 2022The state of curl 2022
The state of curl 2022
Daniel Stenberg34 views
Let me tell you about curlLet me tell you about curl
Let me tell you about curl
Daniel Stenberg209 views
The state of curl 2020The state of curl 2020
The state of curl 2020
Daniel Stenberg674 views
Writing safe and secure codeWriting safe and secure code
Writing safe and secure code
Daniel Stenberg872 views
The state of curl 2019The state of curl 2019
The state of curl 2019
Daniel Stenberg983 views
Säker kod (secure code)Säker kod (secure code)
Säker kod (secure code)
Daniel Stenberg240 views
You know what's cool? Running on a billion devicesYou know what's cool? Running on a billion devices
You know what's cool? Running on a billion devices
Daniel Stenberg1.1K views
TLSTLS
TLS
Daniel Stenberg943 views

Recently uploaded(20)

MANUAL 1.pdfMANUAL 1.pdf
MANUAL 1.pdf
Nombre Apellidos6 views
seminarppt (2).pptxseminarppt (2).pptx
seminarppt (2).pptx
VrushankChops13 views
DETECTION OF QR CODE.pptx DETECTION OF QR CODE.pptx
DETECTION OF QR CODE.pptx
ELECTRONICSCOMMUNICA63 views
Micro Services.pdfMicro Services.pdf
Micro Services.pdf
ELHEITMohamedWassim3 views
CREATION AND DETECTION OF QR CODE.pptxCREATION AND DETECTION OF QR CODE.pptx
CREATION AND DETECTION OF QR CODE.pptx
ELECTRONICSCOMMUNICA64 views
Data Conversion.pptData Conversion.ppt
Data Conversion.ppt
Amit Sharma2 views
W1-Intro to python.pptxW1-Intro to python.pptx
W1-Intro to python.pptx
NaziaPerwaiz22 views
Firewalls (1).pptFirewalls (1).ppt
Firewalls (1).ppt
adnanetnzr1 view
PPT-UEU-Basis-Data-Pertemuan-1.pptxPPT-UEU-Basis-Data-Pertemuan-1.pptx
PPT-UEU-Basis-Data-Pertemuan-1.pptx
UbaidURRahman781 view
Big Data Technologies and the Metaverse.pptxBig Data Technologies and the Metaverse.pptx
Big Data Technologies and the Metaverse.pptx
Henry1245860 views
Customer Engagement ProgramCustomer Engagement Program
Customer Engagement Program
Prasanna Hegde4 views
Are you ready for AI? Is AI ready for you?Are you ready for AI? Is AI ready for you?
Are you ready for AI? Is AI ready for you?
KonfHubTechConferenc124 views
k8s practice 2023.pptxk8s practice 2023.pptx
k8s practice 2023.pptx
wonyong hwang0 views
Fansportiz - Fantasy Sports app development companyFansportiz - Fantasy Sports app development company
Fansportiz - Fantasy Sports app development company
Fansportiz - Fantasy Sports app development company2 views
Zethic’s Basics of App Development - Step-by-Step Guide.pdfZethic’s Basics of App Development - Step-by-Step Guide.pdf
Zethic’s Basics of App Development - Step-by-Step Guide.pdf
Zethic 12 views
ISTQB-CTFL_Syllabus_2018_v3.1.1 (1).pdfISTQB-CTFL_Syllabus_2018_v3.1.1 (1).pdf
ISTQB-CTFL_Syllabus_2018_v3.1.1 (1).pdf
D19CQVT01NTATHIMAILI4 views
06_08_emea_how_to_evaluate_rollout_and_operationalize_your_sdwan_projects_web...06_08_emea_how_to_evaluate_rollout_and_operationalize_your_sdwan_projects_web...
06_08_emea_how_to_evaluate_rollout_and_operationalize_your_sdwan_projects_web...
ThousandEyes2 views
The scale-up, the autonomy and the nuclear submarineThe scale-up, the autonomy and the nuclear submarine
The scale-up, the autonomy and the nuclear submarine
Thomas Pierrain0 views
How to migrate from Alfresco Search Services to Alfresco SearchEnterpriseHow to migrate from Alfresco Search Services to Alfresco SearchEnterprise
How to migrate from Alfresco Search Services to Alfresco SearchEnterprise
Angel Borroy López7 views
harnessing_the_power_of_artificial_intelligence_for_software_development.pptxharnessing_the_power_of_artificial_intelligence_for_software_development.pptx
harnessing_the_power_of_artificial_intelligence_for_software_development.pptx
sarah david5 views
Advertisement

HTTP/3 in curl 2020

  1. 20202020 DanielStenberg–curlup-May5th ,2020 in curl
  2. Daniel Stenberg @bagderhttps://daniel.haxx.se
  3. How HTTP/3 differs from 1 and 2How HTTP/3 differs from 1 and 2 Build curl to enable HTTP/3Build curl to enable HTTP/3 The TLS situationThe TLS situation HTTP/3 with the curl toolHTTP/3 with the curl tool HTTP/3 with libcurlHTTP/3 with libcurl Remaining issuesRemaining issues WhenWhen @bagder@bagder
  4. This is not my HTTP/3 explanation talk HTTP/3 for everyone (FOSDEM 2020) https://daniel.haxx.se/videos/ @bagder@bagder
  5. @bagder@bagder
  6. Improvements in QUICImprovements in QUIC TCP head of line blockingTCP head of line blocking Faster handshakesFaster handshakes Earlier dataEarlier data More encryption, alwaysMore encryption, always Future developmentFuture development @bagder@bagder
  7. QUIC on top of UDP TCP and UDP remain “the ones”TCP and UDP remain “the ones” Use UDP instead of IPUse UDP instead of IP Reliable transport protocol - inReliable transport protocol - in user-spaceuser-space A little like TCP + TLSA little like TCP + TLS @bagder@bagder
  8. Streams! QUIC provides streamsQUIC provides streams Many logical flows within a single connectionMany logical flows within a single connection Similar to HTTP/2 but in the transport layerSimilar to HTTP/2 but in the transport layer IndependentIndependent streamsstreams @bagder@bagder
  9. @bagder@bagder HTTP/3 = HTTP over QUIC @bagder@bagder
  10. Stacks: old vs new TCP TLS 1.2+ HTTP/2 UDP HTTP/3 QUIC TLS 1.3 IP HTTP/1 @bagder@bagder streams @bagder@bagder
  11. HTTPS is TCP? HTTPS:// URLs are everywhereHTTPS:// URLs are everywhere TCP (and TLS) on TCP port 443TCP (and TLS) on TCP port 443 @bagder@bagder
  12. This service - over there! The Alt-Svc: response header Another host, protocol or port number is the same “origin” This site also runs on HTTP/3 “over there”, for the next NNNN seconds @bagder@bagder
  13. HTTP/3 challenges 3-7% something of all QUIC attempts fail Clients need “fall back” algorithms CPU intensive Unoptimized UDP stacks “Funny” TLS layer All QUIC stacks are user-land No standard QUIC API Lack of tooling @bagder@bagder
  14. Ship date @bagder@bagder 2020?2020?
  15. curl runs in all your devices @bagder@bagder
  16. Work in progress Early days – your help is appreciated HTTP/3 and QUIC support is experimental Things might will change Code is in git master and shipped Only HTTP/3 (not QUIC) is exposed in curl @bagder@bagder
  17. @bagder@bagder Build @bagder@bagder
  18. Build curl Early support aids the protocol community Requires 3rd party libraries for low level Selectable backend, use one out of several choices Quiche or ngtcp2 for now - Different TLS requirements - Very different APIs @bagder@bagder
  19. @bagder@bagder Build curl with quiche https://github.com/cloudflare/quiche Uses BoringSSL (Look at docs/HTTP3.md) You want alt-svc support as well @bagder@bagder
  20. @bagder@bagder Build curl with ngtcp2 (and nghttp3) https://github.com/ngtcp2/ngtcp2 https://github.com/ngtcp2/nghttp3 Uses a patched OpenSSL or GnuTLS from git (Look at docs/HTTP3.md) You want alt-svc support as well @bagder@bagder
  21. @bagder@bagder Why is it called ngtcp2? Jana Iyengar (then at Google) did a QUIC presentation in the HTTP Workshop Stockholm in July 2016 In that presentation, he showed...
  22. @bagder@bagder The TLS situation
  23. The TLS situation (1/2) TLS was made for TCP TLS is sent over TCP as records containing individual messages QUIC uses TLS messages No TLS library support(ed) TLS messages QUIC also needs additional secrets @bagder@bagder
  24. The TLS situation (2/2) @bagder@bagder Frame 0 Message 0 Message 1 Frame 1 Message 2 Message 3TCPTCP Message 0 Message 1 Message 2 Message 3 QUICQUIC
  25. @bagder@bagder BoringSSL Supports QUIC already BoringSSL is really hard for non-Google products to use Quiche uses BoringSSL … and so does Chrome/Edge and some other implementations @bagder@bagder
  26. @bagder@bagder OpenSSL No support in any release, nor git “once the 3.0 release is done, QUIC will become a significant focus of our effort” + “final [3.0] release in early Q4 2020” PR #8797 OpenSSL offers an API similar to the BoringSSL one. https://github.com/openssl/openssl/pull/8797 ngtcp2 uses OpenSSL+8797 … and so does msquic, node.js and more @bagder@bagder
  27. @bagder@bagder GnuTLS Has initial support landed in git ngtcp2 can be built to use it @bagder@bagder
  28. @bagder@bagder Other libraries The other TLS libraries curl supports lack the necessary APIs for QUIC @bagder@bagder
  29. @bagder@bagder curl uses a single TLS lib When built to support QUIC, the same library is used for “normal” TLS.
  30. Use @bagder@bagder
  31. It looks like HTTP/1 As for HTTP/2, HTTP/3 in curl is made to lookmade to look like HTTP/1like HTTP/1 when curl shows requests, headers and similar. For consistency and easy of use. @bagder@bagder
  32. Run curl --http3 Forces curl to try QUIC and HTTP/3 on the given host name No fallback! --alt-svc <filename> Bootstraps into HTTP/3 the “standard way” Requires alt-svc: response headers (several dev servers don’t do those) Takes an additional round-trip Makes the initial request HTTP/1 or HTTP/2 the “usual way” The alt-svc file format: https://curl.haxx.se/docs/alt-svc.html @bagder@bagder
  33. Run curl $ curl –-http3 https://quic.tech:8443/ -v $ curl –-alt-svc alt.txt https://quic.tech:8443/ -v $ curl --version … Features: alt-svc ... HTTP3 ... @bagder@bagder
  34. Works now with HTTP/3 @bagder@bagder HTTP/3 draft-27 Connecting over IPv4 and IPv6 and “Happy eyeballs” Direct or via alt-svc Funny host name/DNS tricks like --resolve and friends HTTP GET and POST requests HTTP header parsing, adding and removing headers Cookies, connection caching, connection re-use etc SSLKEYLOGFILE
  35. HTTP/3 in the curl CI We verify the HTTP/3 builds in every curl commit and PR Both quiche and ngtcp2 Builds only, they don’t run tests yet @bagder@bagder
  36. libcurllibcurl @bagder@bagder
  37. curl is powered by libcurl Previously mentioned features are in libcurl … with a few more knobs to tweak @bagder@bagder
  38. “Force” HTTP/3 @bagder@bagder
  39. Alt-Svc style @bagder@bagder
  40. Check for support @bagder@bagder
  41. Remaining issues right now @bagder@bagder
  42. HTTP/3 is still “experimental” in curl Fallback (happy eyeballs?) https://github.com/curl/curl/wiki/HTTP3 Multiplexing Certificates Trailers Stability Tests Push qlog @bagder@bagder
  43. Upgrading to h3 - long term Tricky HTTP/2 reuses the same connection - easier alt-svc needs cache on disk to be effective Happy eyeballs... @bagder@bagder
  44. When @bagder@bagder
  45. Specifications Ship curl HTTP/3-enabled?Ship curl HTTP/3-enabled? Deployed servers Browser support libcurl TLS libraries QUIC and HTTP/3 libraries @bagder@bagder
  46. @bagder@bagder It will take a while @bagder@bagder
  47. 48 You can help!You can help! @bagder@bagder
  48. December 6, 2019December 6, 2019 @bagder@bagder
  49. HTTP/3 Explained https://http3-explained.haxx.se @bagder@bagder
  50. Daniel Stenberg @bagder https://daniel.haxx.se/ Thank you!Thank you! Questions?Questions?
Advertisement