Slashdot Mirror

← Back to Stories (view on slashdot.org)

HTTP/2 Finalized

Posted by Soulskill on from the onward-and-upward dept.

An anonymous reader writes: Mark Nottingham, chair of the IETF HTTP working group, has announced that the HTTP/2 specification is done. It's on its way to the RFC Editor, along with the HPACK specification, where it'll be cleaned up and published. "The new standard brings a number of benefits to one of the Web's core technologies, such as faster page loads, longer-lived connections, more items arriving sooner and server push. HTTP/2 uses the same HTTP APIs that developers are familiar with, but offers a number of new features they can adopt. One notable change is that HTTP requests will be 'cheaper' to make. ... With HTTP/2, a new multiplexing feature allows lots of requests to be delivered at the same time, so the page load isn't blocked." Here's the HTTP/2 FAQ, and we recently talked about some common criticisms of the spec.

15 of 171 comments (clear)

  1. Heaven forbid! Actual news for nerds on Slashdot! by Xharlie · · Score: 5, Funny

    The post even has counter-arguments and links to stuff. Are the 90's back again? Do I hear rave music, modem hand-shake tones and browser wars?

  2. Great if optimizing the wrong thing is your thing by Anonymous Coward · · Score: 5, Insightful

    Web pages being slow has nothing to do with HTTP and all to do with bloat eating every bit of performance that is available to the marketers who are in charge of the web now. A binary protocol to save a couple of bytes in times where every web page loads at least three "analytics" scripts weighing dozens of kbytes each. Marketing rots the brain.

  3. Re:IE once again kills innovation by QuasiSteve · · Score: 4, Insightful

    4) People enable it on their servers and those with browsers that do support it enjoy the benefits (and possibly some of the side-effects) that it brings, while everybody else will either chug along on HTTP/1.1 or even HTTP/1.0, or switch to a browser that does support HTTP/2, and whether or not older versions of IE support it remains a non-issue.

  4. Not really happy by Aethedor · · Score: 5, Interesting

    As the author of an open source webserver, I must say that I'm not really happy with HTTP/2. It adds a lot of extra complexity to the server side of the protocol. And all sorts of ugly and nasty things in HTTP/1 (too much work to go into that right now) have not been fixed.

    What I have experienced is that SPDY (and therefor also HTTP/2) will only offer more speed if you are Google or are like Google. Multiplexing doesn't offer that much speed increase as some people would like you to believe. Often, the content of a website is located on multiple systems (pictures, advertisements, etc), which still requires that the browser uses more than one connection, even with HTTP/2. Also, HTTP/1 already allows a browser to send multiple requests without waiting for the response of the previous request. This is called request pipelining, but is turned off by default in most browsers. What I also often see is that a browser makes a first request (often for a CGI script) and the following requests (for the images, JS, CSS, etc) are never made due to browser caching. So, to me HTTP/2 adds a lot of complexity with almost no benefits in return.

    Then why do we have HTTP/2? Well, because it's good for Google. They have all the content for their websites on their own servers. Because IETF failed to come up with a HTTP/2 proposal, a commercial company (Google in this case) used that to take control. HTTP/2 is in fact a protocol by Google, for Google.

    In my experience, you are far better off with smart caching. With that, you will be able to get far better speed-increase results than HTTP/2 will ever offer. Specially if you use a framework that communicates directly with the webserver about this (like I did with my PHP framework). You will be able to get hundreds to thousands requests per second for a CGI script instead of a few tens of requests. This is a speed increase that HTTP/2 will never offer.

    I think this is a failed change to do it right. HTTP is just like SMTP and FTP one of those ancient protocols. In the last 20 years, a lot has changed. HTTP/1 worked fine for those years. But for where the internet is headed, we need something new. Something completely new and not a HTTP/1 patch.

    --
    It doesn't have to be like this. All we need to do is make sure we keep talking.
    1. Re:Not really happy by higuita · · Score: 4, Informative

      And for the http/1.1 pipeline, it simple don't work... 90% of the sites can work with it, but others fail and fail badly... the page take forever to load, waiting for resources that were asked but never received. all browsers tried to enabled it and all had to revert it due to the (few but important) problems founds that are impossible to solve without a huge whitelist/blacklist of servers (impossible to really implement and a pain for all those important and old internal servers)

      So the 2 major issues that http/2 want to solve are really the tls slow start and a working pipeline... By announcing http/2, a browser knows that this things do work and are safe to use, no more guessing games and workarounds for bad servers.

      --
      Higuita
    2. Re:Not really happy by raxx7 · · Score: 5, Informative

      You might be happier if you researched why HTTP pipelining is off in most browsers and what problem it actually wants to solve.

      First, HTTP/1.1 pipelining and HTTP/2.0 are not about increasing the number of request your server can handle. It's mainly about reducing the effect of round trip latency in page loading times, which is significant.
      If a browser is fetching a simple page with 10 tiny elements (or even cached elements subject to conditional GET) but the server round trip latency is 100 ms, then it will take over 1 second to load the page.

      HTTP was a first attempt to solve this problem, by allowing the server to send multiple requests over the connection without waiting for the earlier requests to complete.
      If you can pipeline N requests, the round trip latency contribution is divided by N.
      However, HTTP/1.1 pipelining has two issues which led most browsers to disable it by default (it's not because they enjoy implementing features not be used):
      - There are or were a number of broken servers which do not handle pipelining correctly.
      - HTTP/1.1 pipelining is subject to head of line blocking: the server serves the requests in order and a small/fast request may have to wait inline behind a larger/slow request.

      Instead, browsers make multiple parallel requests to each server.
      However, because some servers (eg, Apache) have problems with large numbers of requests so browsers use arbitrary low limits (eg, 4-8 parallel requests per hostname).

      HTTP/2.0 attempts to solve these shortcomings by:
      a) being new, hopefully without broken servers out there
      b) using multiplexing, allowing the server to serve the requests in whatever order. Thus, no head-of-line blocking.

      So. HTTP/2.0 is, fundamentally, HTTP/1.1 pipelining without these shortcomings. We hope.

  5. Re: IE once again kills innovation by rkcth · · Score: 4, Funny

    It's hard to take your knowledge in this matter seriously, since you call it HTML/2.

  6. Re:IE once again kills innovation by Richard_at_work · · Score: 4, Interesting

    3) Microsoft will fear loosing to much browser market share, will back pedal and backport spartan.

    Didn't work for DirectX, don't think it will work for this.

  7. Re:(binary protocol)-- by Lennie · · Score: 4, Informative

    I'm really going to miss being able to telnet to a server and troubleshoot using plain text. Feels like a lot of simple has disappeared from the internet

    Yes, HTTP/2 is a multipllexing binary framing layer, but it has all the same semantics of HTTP/1.x on top.

    HTTP/2 is 'just' an optimization. So if your webserver supports HTTP/1.x and HTTP/2 then you can still use telnet to check whatever you want and it should give the same result as HTTP/2.

    But you also have to remember:
    The IETF which is the group of people who design the Internet protocol made this statement:
    https://www.iab.org/2014/11/14...

    "Newly designed protocols should prefer encryption to cleartext operation."

    The W3C made a similar statement, there are also drafts with the intention to moving to HTTPS by default.

    So it is all moving to TLS protocols like HTTPS or STARTTLS for SMTP anyway. Those are clearly not text protocol either.

    So even if you want to interact with the text protocol used inside that TLS-encrypted connection, you'll need to use a tool because netcat or telnet won't cut it.

    Let's look at HTTP, because this is a HTTP/2 article.

    That tool could be the openssl s_client, but as you can see that is kind of cumbersome:
    echo -en "HEAD / HTTP/1.1\nHost: slashdot.org\nConnection: close\n\n" | openssl s_client -ign_eof -host slashdot.org -port 443 -servername slashdot.org

    But I suggest you just use:
    curl -I https://slashdot.org/

    The main developer for cURL works for Mozilla these days and is one of the people working on the HTTP/2 implementation in Firefox and is writing a document explaining HTTP/2: http://daniel.haxx.se/http2/
    So as you would expect Curl supports HTTP/2:
    https://github.com/http2/http2...

    Basically every browser include 'developer tools' which will also let you see the headers and everything else you are used from HTTP/1.x.

    I would rather see we all move to using encrypted protocols then that we can still use telnet.

    --
    New things are always on the horizon
  8. Re:Great if optimizing the wrong thing is your thi by Dagger2 · · Score: 4, Informative

    The main problem isn't the size of the stuff that gets loaded. What's dozens of kb these days? Even a megabyte takes a tenth of a second to transfer on my connection. The problem is latency: it takes more than 100ms for that megabyte of data to even start flowing, let alone get up to speed. That's what the multiplexing is intended to deal with.

    That said, the root cause of all this is the sheer amount of unnecessary stuff on pages these days. Fancy multiplexing or not, no request can finish faster than the one that's never made.

  9. Slashdot by ledow · · Score: 5, Interesting

    While we're discussing HTTP, what's wrong with Slashdot lately?

    I keep getting timeouts, signed out, nothing but the front page, everything else loaded from a CDN (that just gives me browser security warnings because it's not coming up as slashdot.org), etc.

    Are you guys under attack, or just unable to keep a site with ~100 comments per article up?

  10. Re:IE once again kills innovation by 93+Escort+Wagon · · Score: 4, Insightful

    If people do "switch to a browser that does support http/2", it will be for some other reason unrelated to the protocol - getting http/2 support will be serendipitous. Very few people other than tech heads are going to care about the protocol, one way or the other... they won't even be aware of it.

    --
    #DeleteChrome
  11. Please run spellcheck this time by master_kaos · · Score: 4, Funny

    So you don't having something like HTTP_REFERER again

  12. Re:Great if optimizing the wrong thing is your thi by Bengie · · Score: 4, Informative

    It's a bandwidth vs latency issue. HTTP1/1.1 is more latency sensitive, HTTP2 helps high latency. You say that pages load slowly because they're so large, yet these large bloated web pages consume nearly no bandwidth. HTTP2 multiplexing allows async requests and preemptive pushing of data, which should allow better usage of bandwidth. Fewer connections will also allow for quicker TCP relieve window ramp up and reduce the thundering hurd issue that many connections over a congested link creates.

  13. Re:IE once again kills innovation by DarkOx · · Score: 5, Funny

    The masses will switch as soon as they see "Did you know Facebook could be faster --> Click Here ---"

    --
    Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html