Cloudflare Company kupa rutsigiro rweHTTP/3 protocol muNGINX. Iyo module yakagadzirirwa sekuwedzera-kuraibhurari yakagadziriswa neCloudflare nekushandiswa kweQUIC uye HTTP/3 yekufambisa protocol. Iyo quiche kodhi yakanyorwa muRust, asi iyo NGINX module pachayo yakanyorwa muC uye inowana raibhurari uchishandisa dynamic linking. Developments pasi peBSD rezinesi.
Kuti uunganidze, ingo dhawunirodha ku nginx 1.16 uye quiche raibhurari, wobva wavakazve nginx nesarudzo "-ne-http_v3_module -ne-quiche=../quiche". Pakuvaka, kutsigirwa kweTLS kunofanira kubva paBoringSSL raibhurari (β--with-openssl=../quiche/deps/boringsslβ), kushandiswa kweOpenSSL hakusati kwatsigirwa. Kuti ugamuchire zvinongedzo, unofanirwa kuwedzera murairo wekuteerera ne "quic" mureza kune zvigadziriso (semuenzaniso, "teerera 443 quic reuseport").
Mune software yemutengi, HTTP/3 tsigiro yakatowedzerwa kune yekuyedza kuvaka kweChrome Canary uye iyo curl utility. Padivi reseva, kusvika zvino zvaive zvakakodzera kushandisa zvakaparadzana, zvishoma . Iko kugona kugadzirisa HTTP/3 munginx kuchaita kurerutsa kutumira maseva neHTTP/3 rutsigiro uye kuchaita kuti kuedzwa kweiyo protocol itsva kuwanikwe. Kubuda kwekutsigirwa kwakajairwa kweHTTP/3 mu nginx mubazi re 1.17.x kwemwedzi 6-12.
Rangarira kuti HTTP/3 inomisa kushandiswa kweQUIC protocol sekutakura kweHTTP/2. Protocol (Kurumidza UDP Internet Connections) yakagadziridzwa neGoogle kubvira 2013 seimwe nzira kune TCP + TLS musanganiswa weWebhu, kugadzirisa matambudziko neseta refu uye nguva dzekutaurirana dzekubatanidza muTCP uye kubvisa kunonoka kana mapaketi arasika panguva yekufambisa data. QUIC ndeyekuwedzeredzwa kweprotocol yeUDP inotsigira kuwanda kwekubatanidza kwakawanda uye inopa nzira dzekunyorera dzakafanana neTLS/SSL.
chikuru QUIC:
- Kuchengetedzwa kwepamusoro kwakafanana neTLS (chaizvoizvo QUIC inopa kugona kushandisa TLS pamusoro peUDP);
- Kuyerera kutendeseka kutonga, kudzivirira kurasikirwa kwepaketi;
- Iko kugona kwekukurumidza kumisikidza kubatana (0-RTT, mune ingangoita 75% yemakesi data inogona kutumirwa pakarepo mushure mekutumira yekubatanidza setup packet) uye kupa kunonoka kudiki pakati pekutumira chikumbiro uye kugamuchira mhinduro (RTT, Round Round Trip Time);
- Kusashandisa nhamba imwechete yekutevedzana paunenge uchitumira pakiti, izvo zvinodzivirira kusanzwisisika mukuziva mapaketi akagamuchirwa uye kubvisa nguva yekubuda;
- Kurasikirwa kwepakiti kunokanganisa chete kuendeswa kwerukova rwakabatana narwo uye hakuregi kuendeswa kwedata mumigero yakafanana inofambiswa kuburikidza nekubatana kwazvino;
- Zvikanganiso zvekugadzirisa zvinhu zvinoderedza kunonoka nekuda kwekutumirazve kwemapaketi akarasika. Kushandiswa kweakakosha ekururamisa makodhi padanho repacket kudzikisa mamiriro anoda kutapurirana kwepacket data yakarasika.
- Cryptographic block miganhu inowirirana neQUIC packet miganhu, iyo inoderedza kukanganisa kwekurasikirwa kwepakeji pakugadzirisa zviri mukati memapakiti anotevera;
- Hapana matambudziko neTCP queue blocking;
- Tsigiro yekubatanidza identifier, iyo inoderedza nguva inotora kumisikidza kubatana kwevatengi venhare;
- Kugona kwekubatanidza advanced connection congestion control systems;
- Inoshandisa per-direction throughput forecasting matekiniki kuti ive nechokwadi chekuti mapaketi anotumirwa pamwero wakakwana, kudzivirira kuti asave akatsvikinyidzana uye kukonzera kurasikirwa kwepaketi;
- Perceptible kuita uye kubuda zvichienzaniswa neTCP. Kune masevhisi evhidhiyo akadai seYouTube, QUIC yakaratidzwa kudzikisa mashandiro ekudzokorora kana uchiona mavhidhiyo ne30%.
Source: opennet.ru