360互联网技术训练营第四期：360与Facebook工程师畅聊大前端的第一个分享。

1. HTTP/2
https://imququ.com

2. 2008.4 ~ 2011.5
2011.8 ~ 360
360
https://imququ.com

3. Part I HTTP
Hypertext Transfer Protocol

4. $> telnet igvita.com 80
Connected to 173.230.151.99
GET /archive
Hypertext delivery with HTTP 0.9! - eom.
(connection closed)
HTTP 0.9 is the ultimate MVP - one line, plain-text
“protocol” to test drive the “www idea”.
HTTP 0.9 1991
/ ASCII
CRLF
HTML

5. $> telnet ietf.org 80
Connected to 74.125.xxx.xxx
GET /rfc/rfc1945.txt HTTP/1.0
User-Agent: CERN-LineMode/2.15 libwww/2.17b3
Accept: */*
HTTP/1.0 200 OK
Content-Type: text/plain
Content-Length: 137582
Last-Modified: Wed, 1 May 1996 12:45:26 GMT
Server: Apache 0.84
4 years of rapid iteration later… eom.
(connection closed)
HTTP 1.0 is an informational RFC - documents
HTTP 1.0 1996

6. $> telnet google.com 80
Connected to 74.125.xxx.xxx
GET /index.html HTTP/1.1
Host: website.org
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_4)... (snip)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Cookie: __qca=P0-800083390... (snip)
HTTP/1.1 200 OK
Connection: keep-alive
Transfer-Encoding: chunked
Server: nginx/1.0.11
Content-Type: text/html; charset=utf-8
Date: Wed, 25 Jul 2012 20:23:35 GMT
Expires: Wed, 25 Jul 2012 20:23:35 GMT
Cache-Control: max-age=0, no-cache
100
<!doctype html>
(snip)
HTTP 1.1 1999
Connection: keep-alive
Transfer-Encoding: chunked
Accept-Ranges

7. HTTP 1.1 2014
RFC2616 - Hypertext Transfer Protocol -- HTTP/1.1
RFC7230 - HTTP/1.1: Message Syntax and Routing
- low-level message parsing and connection management
RFC7231 - HTTP/1.1: Semantics and Content
- methods, status codes and headers
RFC7232 - HTTP/1.1: Conditional Requests
- e.g., If-Modified-Since
RFC7233 - HTTP/1.1: Range Requests
- getting partial content
RFC7234 - HTTP/1.1: Caching
- browser and intermediary caches
RFC7235 - HTTP/1.1: Authentication
- a framework for HTTP authentication
✗
✔

8. SPDY ? 2012 - 2015

9. Part II HTTP/1

10. Web ...
Web Web
SPA

11. HttpArchive
Web ...
~2000 KB
~100
~17
~50

12. ● Cable profile (5Mbps / 28 ms RTT)
● Main thread attributionin Blink
o Measured via Telemetry
● 69.5% of time blocked on network
● 6.6% of time blocked JavaScript
● 5.1% blocked on Layout
● 4.5% blocked on Paint
● ...
No surprises here... First page load is
network (latency) bound!
TOP 1M Alexa Sites

13. HTTP -
TCP
/

14. Keep-Alive
TCP
✗

15. Pipelining

16. RFC2616 2 RFC7230
6

21. • Batch Ajax Request
• CSS Sprite
• CSS JS Concatenation
• CSS JS Inline
• Data URI
• ... ...

26. TCP /
- TCP 6
- DNS TCP TCP
-
-
HTTP
-
- Cookie-Less
- CSS JS
-

27. HTTP/1
HTTP/1
HTTP/2

28. Part III HTTP2

29. HTTP/2
RFC 7540 - Hypertext Transfer Protocol Version 2 (HTTP/2)
RFC 7541 - HPACK: Header Compression for HTTP/2

30. HTTP/2
TCP
=> Stream
- Multiplexed
- Prioritized
- Prioritization
- Flow control
- Server Push
Header Compression HPACK

34. =>

35. =>

36. Server Push
ClientServer
PUSH_PROMISE

37. HPACK header compression
● Literal values are (optionally) encoded with a static Huffman code
● Previously sent values are (optionally) indexed
○ e.g. “2” in above example expands to “method: GET”
HTTP/1

42. ↓~54%

43. ↓~90%

46. Part IV HTTP2

47. Web Server
>>

48. CanIUse
*Only Win10

49. HTTP/2
HTTP/2

50. H2C HTTP/2 Cleartext
Firefox Chrome Safari IE Edge
H2C

51. Chrome HTTPS
2015 8 Chrome HTTPS 63%

52. HTTPS

53. HTTP
Chrome HTTPS API

54. ALPN

55. HTTP/2
HTTP/2

56. Chrome
FireFox

58. HTTP/2
HTTP/2
HTTP/2

59. chrome://net-internals

60. Wireshark

61. HTTP/1 HTTP/2

62. >>

63. >>

64. Part V HTTP2

65. Is TLS Fast Yet?
https://istlsfastyet.com/

68. iana

69. RSA cloudflare

70. ECDHE cloudflare

71. TLS

72. TLS Caching

73. TLS Tickets

74. TLS Tickets

75. TLS

76. TLS False Start

77. TLS

79. ECC
ECC Elliptic Curve Cryptography
256 ECC Key 3072 RSA Key

81. OCSP Online Certificate Status Protocol

82. HSTS HTTP Strict Transport Security
strict-transport-security: max-age=16070400; includeSubDomains

83. SSL OpenSSL LibreSSL BoringSSL
- PC AES-GCM AES-NI CPU
- ChaCha20-Poly1305 ARM CPU

84. >>
TLS

85. HTTP/2

86. DNS
•
• dns-prefetch
•
CDN
•
• JS CSS HTML
• PngOut PngCrush JpegOptim GifSicle
• GZip
HTTP
• Expires / Cache-Control Last-Modified / ETag

87. HTTP/2

88. - HTTP/2 TCP
- TCP CPU
- HTTP/2
- HTTP/2 TCP
-
- CPU
- HTTP/2 Server Push
-
-

89. HTTP/2
- IP
-

90. Server Push
- Cookie
- Cookie Push

91. Part VI HTTP2

92. HTTP/2
Pangolin H2C WEB

93. Web Server
Server Push
HTTP/2
10
HTTP/1.1 HTTP/2 Web

94. TCP
TCP Head of Line Blocking
TCP
HTTP/2
TCP
Google QUIC Quick UDP Internet Connections

95. QUIC
QUIC UDP TCP+TLS+SPDY

96. &&
Web
- Ilya Grigorik
-
HTTP
- David Gourley Brian Totty Marjorie Sayer Sailu Reddy Anshu Aggarwal
-
HTTP-2 is here, let's optimize!
- Velocity SC 2015
- Ilya Grigorik

97. Nginx/H2O HTTP/2
Wireshark HTTP/2
HTTP/2
BoringSSL HTTPS
H2O Cache-Aware Server Push
TLS
HTTP/2
... ...
https://imququ.com

98. Thank You!
Q & A
quguangyu@gmail.com