2015-05-30 13:07:39 +03:00
|
|
|
HTTP/2 with curl
|
|
|
|
================
|
2013-09-03 01:30:38 +04:00
|
|
|
|
2015-06-15 12:34:14 +03:00
|
|
|
[HTTP/2 Spec](https://www.rfc-editor.org/rfc/rfc7540.txt)
|
2016-02-03 03:45:21 +03:00
|
|
|
[http2 explained](https://daniel.haxx.se/http2/)
|
2013-09-03 01:30:38 +04:00
|
|
|
|
2015-05-30 13:07:39 +03:00
|
|
|
Build prerequisites
|
|
|
|
-------------------
|
2014-03-09 20:39:46 +04:00
|
|
|
- nghttp2
|
2016-03-29 11:23:33 +03:00
|
|
|
- OpenSSL, libressl, BoringSSL, NSS, GnutTLS, mbedTLS, wolfSSL or SChannel
|
|
|
|
with a new enough version.
|
2014-03-09 20:39:46 +04:00
|
|
|
|
2015-05-30 13:07:39 +03:00
|
|
|
[nghttp2](https://nghttp2.org/)
|
|
|
|
-------------------------------
|
2013-09-10 01:05:22 +04:00
|
|
|
|
2015-05-30 13:07:39 +03:00
|
|
|
libcurl uses this 3rd party library for the low level protocol handling
|
|
|
|
parts. The reason for this is that HTTP/2 is much more complex at that layer
|
|
|
|
than HTTP/1.1 (which we implement on our own) and that nghttp2 is an already
|
|
|
|
existing and well functional library.
|
2014-02-05 18:31:29 +04:00
|
|
|
|
2015-05-30 13:07:39 +03:00
|
|
|
We require at least version 1.0.0.
|
2014-02-07 01:26:47 +04:00
|
|
|
|
2015-05-30 13:07:39 +03:00
|
|
|
Over an http:// URL
|
|
|
|
-------------------
|
2013-09-03 01:30:38 +04:00
|
|
|
|
2015-05-30 13:07:39 +03:00
|
|
|
If `CURLOPT_HTTP_VERSION` is set to `CURL_HTTP_VERSION_2_0`, libcurl will
|
|
|
|
include an upgrade header in the initial request to the host to allow
|
|
|
|
upgrading to HTTP/2.
|
2014-02-05 18:31:29 +04:00
|
|
|
|
2015-05-30 13:07:39 +03:00
|
|
|
Possibly we can later introduce an option that will cause libcurl to fail if
|
|
|
|
not possible to upgrade. Possibly we introduce an option that makes libcurl
|
|
|
|
use HTTP/2 at once over http://
|
2013-09-03 01:30:38 +04:00
|
|
|
|
2015-05-30 13:07:39 +03:00
|
|
|
Over an https:// URL
|
|
|
|
--------------------
|
2013-09-03 01:30:38 +04:00
|
|
|
|
2015-05-30 13:07:39 +03:00
|
|
|
If `CURLOPT_HTTP_VERSION` is set to `CURL_HTTP_VERSION_2_0`, libcurl will use
|
|
|
|
ALPN (or NPN) to negotiate which protocol to continue with. Possibly introduce
|
|
|
|
an option that will cause libcurl to fail if not possible to use HTTP/2.
|
2014-02-05 18:31:29 +04:00
|
|
|
|
2016-03-09 13:09:39 +03:00
|
|
|
`CURL_HTTP_VERSION_2TLS` was added in 7.47.0 as a way to ask libcurl to prefer
|
|
|
|
HTTP/2 for HTTPS but stick to 1.1 by default for plain old HTTP connections.
|
|
|
|
|
2015-05-30 13:07:39 +03:00
|
|
|
ALPN is the TLS extension that HTTP/2 is expected to use. The NPN extension is
|
|
|
|
for a similar purpose, was made prior to ALPN and is used for SPDY so early
|
|
|
|
HTTP/2 servers are implemented using NPN before ALPN support is widespread.
|
2014-02-07 18:50:31 +04:00
|
|
|
|
2016-03-08 02:02:52 +03:00
|
|
|
`CURLOPT_SSL_ENABLE_ALPN` and `CURLOPT_SSL_ENABLE_NPN` are offered to allow
|
|
|
|
applications to explicitly disable ALPN or NPN.
|
|
|
|
|
2014-02-05 18:31:29 +04:00
|
|
|
SSL libs
|
2015-05-30 13:07:39 +03:00
|
|
|
--------
|
2014-02-05 18:31:29 +04:00
|
|
|
|
2015-05-30 13:07:39 +03:00
|
|
|
The challenge is the ALPN and NPN support and all our different SSL
|
2016-03-29 11:23:33 +03:00
|
|
|
backends. You may need a fairly updated SSL library version for it to provide
|
|
|
|
the necessary TLS features. Right now we support:
|
|
|
|
|
|
|
|
- OpenSSL: ALPN and NPN
|
|
|
|
- libressl: ALPN and NPN
|
|
|
|
- BoringSSL: ALPN and NPN
|
|
|
|
- NSS: ALPN and NPN
|
|
|
|
- GnuTLS: ALPN
|
|
|
|
- mbedTLS: ALPN
|
|
|
|
- SChannel: ALPN
|
|
|
|
- wolfSSL: ALPN
|
2014-02-05 18:31:29 +04:00
|
|
|
|
2015-05-30 12:53:24 +03:00
|
|
|
Multiplexing
|
2015-05-30 13:07:39 +03:00
|
|
|
------------
|
|
|
|
|
|
|
|
Starting in 7.43.0, libcurl fully supports HTTP/2 multiplexing, which is the
|
|
|
|
term for doing multiple independent transfers over the same physical TCP
|
|
|
|
connection.
|
|
|
|
|
|
|
|
To take advantage of multiplexing, you need to use the multi interface and set
|
|
|
|
`CURLMOPT_PIPELINING` to `CURLPIPE_MULTIPLEX`. With that bit set, libcurl will
|
|
|
|
attempt to re-use existing HTTP/2 connections and just add a new stream over
|
|
|
|
that when doing subsequent parallel requests.
|
|
|
|
|
|
|
|
While libcurl sets up a connection to a HTTP server there is a period during
|
|
|
|
which it doesn't know if it can pipeline or do multiplexing and if you add new
|
|
|
|
transfers in that period, libcurl will default to start new connections for
|
|
|
|
those transfers. With the new option `CURLOPT_PIPEWAIT` (added in 7.43.0), you
|
|
|
|
can ask that a transfer should rather wait and see in case there's a
|
|
|
|
connection for the same host in progress that might end up being possible to
|
|
|
|
multiplex on. It favours keeping the number of connections low to the cost of
|
2015-06-08 14:22:54 +03:00
|
|
|
slightly longer time to first byte transferred.
|
2014-03-22 20:07:31 +04:00
|
|
|
|
2014-02-05 18:31:29 +04:00
|
|
|
Applications
|
2015-05-30 13:07:39 +03:00
|
|
|
------------
|
2014-02-05 18:31:29 +04:00
|
|
|
|
2015-05-30 13:07:39 +03:00
|
|
|
We hide HTTP/2's binary nature and convert received HTTP/2 traffic to headers
|
|
|
|
in HTTP 1.1 style. This allows applications to work unmodified.
|
2014-02-05 18:31:29 +04:00
|
|
|
|
|
|
|
curl tool
|
2015-05-30 13:07:39 +03:00
|
|
|
---------
|
2014-02-05 18:31:29 +04:00
|
|
|
|
2016-03-08 10:15:47 +03:00
|
|
|
curl offers the `--http2` command line option to enable use of HTTP/2.
|
|
|
|
|
2016-03-19 01:25:56 +03:00
|
|
|
curl offers the `--http2-prior-knowledge` command line option to enable use of
|
|
|
|
HTTP/2 without HTTP/1.1 Upgrade.
|
|
|
|
|
2016-03-08 10:15:47 +03:00
|
|
|
Since 7.47.0, the curl tool enables HTTP/2 by default for HTTPS connections.
|
2013-09-03 01:30:38 +04:00
|
|
|
|
2015-05-30 12:53:24 +03:00
|
|
|
HTTP Alternative Services
|
2015-05-30 13:07:39 +03:00
|
|
|
-------------------------
|
|
|
|
|
|
|
|
Alt-Svc is a suggested extension with a corresponding frame (ALTSVC) in HTTP/2
|
|
|
|
that tells the client about an alternative "route" to the same content for the
|
|
|
|
same origin server that you get the response from. A browser or long-living
|
|
|
|
client can use that hint to create a new connection asynchronously. For
|
|
|
|
libcurl, we may introduce a way to bring such clues to the applicaton and/or
|
|
|
|
let a subsequent request use the alternate route
|
2016-03-09 13:09:39 +03:00
|
|
|
automatically. [Spec](https://tools.ietf.org/html/draft-ietf-httpbis-alt-svc-14)
|