WebSockets over HTTP/2

Question

WebSockets over HTTP/2

nhooyr opened this issue 6 years ago · comments

Quinn Rivenwell commented 6 years ago

Blocked on the drafts and Go support.

Quinn Rivenwell commented 5 years ago

Quinn Rivenwell · Answer 1 · Fri Sep 07 2018 07:22:17 GMT+0800 (China Standard Time)

Definitely worth reading https://tools.ietf.org/html/rfc8441

Quinn Rivenwell · Answer 2 · Sat Mar 30 2019 07:19:33 GMT+0800 (China Standard Time)

This does mean we cannot expose net.Conn directly as part of the API interface like gorilla/ws because there may not be a net.Conn to expose.

Quinn Rivenwell · Answer 3 · Fri Apr 05 2019 08:47:42 GMT+0800 (China Standard Time)

So unfortunately, there is no clean way for a client to detect whether a HTTP server supports WebSockets over HTTP/2 without actually performing a handshake. I've emailed the working group regarding this.

Quinn Rivenwell · Answer 4 · Fri Apr 05 2019 09:35:21 GMT+0800 (China Standard Time)

Hopefully shows up on https://lists.w3.org/Archives/Public/ietf-http-wg/2019AprJun/

Quinn Rivenwell · Answer 5 · Mon Apr 08 2019 02:12:03 GMT+0800 (China Standard Time)

https://lists.w3.org/Archives/Public/ietf-http-wg/2019AprJun/0010.html

Quinn Rivenwell · Answer 6 · Thu May 30 2019 12:00:41 GMT+0800 (China Standard Time)

So it looks like my suggestion won't be implemented. The only way to implement this then is to take a HTTP2 flag on the dial options or keep a global cache.

For the server, I'm sure we can do this transparently but will require some collaboration with net/http.

Quinn Rivenwell · Answer 7 · Mon Jul 15 2019 21:49:32 GMT+0800 (China Standard Time)

Could probably implement this reasonably quickly if we forked x/net/http2.

Need to be able to advertise support for HTTP/2 WebSockets
Use http.Hijacker on HTTP/2 Connect requests with a mocked out net.Conn for the stream.
Have *http.Client return a rw body for successful HTTP/2 Connect requests
Be able to set the :protocol pseduo header.

Nia · Answer 8 · Tue Jul 16 2019 13:04:18 GMT+0800 (China Standard Time)

Hi, I have been building a similar websocket package, and would be willing to help if I can. Some things I can share:

I also looked into the problem of identifying whether an endpoint supports HTTP/2 WebSockets. The best I came up with was similar to that suggested elsewhere - use an HTTP/2 connection first, then downgrade to HTTP/1 if necessary. However, SETTINGS_ENABLE_CONNECT_PROTOCOL, and similar host-wide mechanisms are not actually sufficient to identify whether an endpoint supports RFC8441 or not - I think it can be theoretically confused by a non-RFC8441 service behind an RFC8441-compliant reverse proxy. In reality, once this gets pushed out into the world a lot of services are likely to have partial support during an upgrade period - with some endpoints using the upgraded websocket packages and others not yet supporting it. The most foolproof way I came up with is to send a request and check for a 405 Method Not Allowed status code. Any RFC6455-compliant server will return a 405 Method Not Allowed if it recieves an unrecognized method, such as CONNECT as used here. When I checked, all implementations I found did this correctly.
The rw body for successful HTTP/2 Connect requests has already been implemented. I have tested it out, and it works.
I did open an issue which you linked about being able to set the :protocol header. I have been looking into that, and so far I have not come up with any reasonable way to expose this behavior beyond adding an override hack like the one currently used to force HTTP/1 for websockets.

I see you on some of the related threads, so some of this is just to provide context to anyone else reading this issue thread.

Quinn Rivenwell · Answer 9 · Tue Jul 16 2019 23:53:04 GMT+0800 (China Standard Time)

The rw body for successful HTTP/2 Connect requests has already been implemented. I have tested it out, and it works.

Nice.

However, SETTINGS_ENABLE_CONNECT_PROTOCOL, and similar host-wide mechanisms are not actually sufficient to identify whether an endpoint supports RFC8441 or not - I think it can be theoretically confused by a non-RFC8441 service behind an RFC8441-compliant reverse proxy.

I think it should be fine. A RFC 8441-complaint reverse proxy would translate HTTP/2 over web sockets into HTTP/1.1 for the origin server. e.g. Nginx translates all HTTP/2 requests into HTTP/1.1 for origin servers. Otherwise it wouldn't be RFC 8441-complaint if it just proxied the request directly.

I did open an issue which you linked about being able to set the :protocol header. I have been looking into that, and so far I have not come up with any reasonable way to expose this behavior beyond adding an override hack like the one currently used to force HTTP/1 for websockets.

Yea that is unfortunate. Maybe a new field on *http.Request to set custom pseudo headers forcing HTTP/2? Or translating the HTTP/1.1 Protocol header to :protocol for HTTP/2? I think that would be reasonable.

Hi, I have been building a similar websocket package, and would be willing to help if I can.

Awesome, would love your help :)

So then the remaining items here are:

HTTP/2 CONNECT support for http.Handler
Setting custom HTTP/2 pseudo headers

Quinn Rivenwell · Answer 10 · Tue Nov 05 2019 23:11:51 GMT+0800 (China Standard Time)

See my proposal at golang/go#32763 (comment) to make net/http transparently handle http/2 upgrades server side and client side.

Would be much nicer than implementing it here as all Go WebSocket server's would work over HTTP/2 and we would get client side support for free as we use net/http's Client directly.

Hannes · Answer 11 · Thu May 13 2021 14:39:02 GMT+0800 (China Standard Time)

Hi... is there a workaround that can be used until go supports something in that direction?

Quinn Rivenwell · Answer 12 · Fri Aug 06 2021 17:21:45 GMT+0800 (China Standard Time)

@hons82 Unfortunately apart from forking the go net/http library nope. I don't think it'd be very difficult to implement but there just hasn't been a response from the Go team on the linked issue.

James Mills · Answer 13 · Wed Apr 06 2022 10:18:46 GMT+0800 (China Standard Time)

@nhooyr Any further updates or progress on this?

Quinn Rivenwell · Answer 14 · Wed Aug 16 2023 11:47:45 GMT+0800 (China Standard Time)

I'm full time on websocket the next few months. There hasn't been any movement on the Go issue but I think I'll just fork net/http and implement my proposal linked above there. Then people can use my fork if they want WebSockets over http/2 with my library.

As well I'll open a CL on the standard library with my proposal so hopefully my fork won't be necessary. These things don't tend to get moving on issue trackers unless someone shows the initiative by implementing and demonstrating the demand.

Tv · Answer 15 · Thu Aug 17 2023 05:02:46 GMT+0800 (China Standard Time)

I believe the link was meant to be #402

Mitar · Answer 16 · Sun Oct 22 2023 03:57:37 GMT+0800 (China Standard Time)

Have you seen golang/go#49918?

Mitar · Answer 17 · Sun Oct 22 2023 03:59:11 GMT+0800 (China Standard Time)

Also golang/go#53209 and golang/go#53208.

Quinn Rivenwell · Answer 18 · Sun Oct 22 2023 09:13:16 GMT+0800 (China Standard Time)

Nope, I missed those thanks for the links!

Hannes · Answer 19 · Mon Oct 23 2023 19:37:07 GMT+0800 (China Standard Time)

That would be awesome

F.Baube · Answer 20 · Tue Nov 14 2023 05:51:22 GMT+0800 (China Standard Time)

While the Go team decides how (or whether?) to handle this, is there a workaround ?

My execution environment:

server: go1.21.4 darwin/arm64
client: Safari 17.1 running a wasm client compiled with go1.21.4 (GOOS=js GOARCH=wasm)

When the wasm client tries to connect, the server gets this error from websocket.Accept(w,req,nil):

failed to accept WebSocket connection: WebSocket protocol violation: Connection header "keep-alive" does not contain Upgrade

When package websocket is compiled for wasm, the field websocket.DialOptions.HTTPHeader is not available, so I cannot add the required header. This appears to be a limitation of the Javascript WebSocket API, or of how the API is used.

I presume this is all related to issue 373.

But it is possible that I am on the wrong track and have no idea what I am doing wrong.

I would be grateful for any guidance.