Re: I-D Action: draft-ietf-httpbis-connect-tcp-10.txt from Ben Schwartz on 2025-12-05 (ietf-http-wg@w3.org from October to December 2025)

From: Ben Schwartz <bemasc@meta.com>
Date: Fri, 5 Dec 2025 16:34:26 +0000
To: "i-d-announce@ietf.org" <i-d-announce@ietf.org>, "ietf-http-wg@w3.org" <ietf-http-wg@w3.org>
Message-ID: <DS0PR15MB56741879ABADE89CB883BDBDB3A7A@DS0PR15MB5674.namprd15.prod.outlook.com>

Hi HTTPBIS,

Apart from editorial improvements, revision 10 includes one significant change [1].  The essence of that change is:

1. For HTTP/1.1 over TLS implementations of CONNECT-TCP, relaxing the recommendation to send a TLS Error Alert to indicate TCP RST.  The new version has a broader recommendation that supports any closure other than a TLS Closure Alert (which could include an error alert, TCP FIN without TLS CloseNotify, or TCP RST).  This makes it easier to implement "RST after FIN" (i.e. abrupt shutdown in the half-closed state), which is somewhat esoteric anyway since it is hard to observe through the POSIX APIs.
2. Expanding the recommendation not to use HTTP/1.1 for CONNECT-TCP at all.  In the discussion of this PR, we identified several additional likely failure modes that can be avoided by using HTTP/2+.

I am not aware of any further changes needed in this draft.

--Ben

[1] https://github.com/httpwg/http-extensions/pull/3141/files?short_path=aad280e#diff-aad280e5473467945c82a323a4fab02933c86b92e88d67da49551ef5a022b9a7
________________________________
From: internet-drafts@ietf.org <internet-drafts@ietf.org>
Sent: Friday, December 5, 2025 10:33 AM
To: i-d-announce@ietf.org <i-d-announce@ietf.org>
Cc: ietf-http-wg@w3.org <ietf-http-wg@w3.org>
Subject: I-D Action: draft-ietf-httpbis-connect-tcp-10.txt

Internet-Draft draft-ietf-httpbis-connect-tcp-10.txt is now available. It is a
work item of the HTTP (HTTPBIS) WG of the IETF.

   Title:   Template-Driven HTTP CONNECT Proxying for TCP
   Author:  Benjamin M. Schwartz
   Name:    draft-ietf-httpbis-connect-tcp-10.txt
   Pages:   17
   Dates:   2025-12-05

Abstract:

   TCP proxying using HTTP CONNECT has long been part of the core HTTP
   specification.  However, this proxying functionality has several
   important deficiencies in modern HTTP environments.  This
   specification defines an alternative HTTP proxy service configuration
   for TCP connections.  This configuration is described by a URI
   Template, similar to the CONNECT-UDP and CONNECT-IP protocols.

The IETF datatracker status page for this Internet-Draft is:
https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-ietf-httpbis-connect-tcp/__;!!Bt8RZUm9aw!-zwRcTJT7BbOivvCpa1UZ_favMDqjrPEwG61ihNCIBthZq6KAxx_sSbp-bnxXNrQ1Rjcjdl9UJ69nqVGlERYpg$

There is also an HTML version available at:
https://urldefense.com/v3/__https://www.ietf.org/archive/id/draft-ietf-httpbis-connect-tcp-10.html__;!!Bt8RZUm9aw!-zwRcTJT7BbOivvCpa1UZ_favMDqjrPEwG61ihNCIBthZq6KAxx_sSbp-bnxXNrQ1Rjcjdl9UJ69nqUTBrdWqQ$

A diff from the previous version is available at:
https://urldefense.com/v3/__https://author-tools.ietf.org/iddiff?url2=draft-ietf-httpbis-connect-tcp-10__;!!Bt8RZUm9aw!-zwRcTJT7BbOivvCpa1UZ_favMDqjrPEwG61ihNCIBthZq6KAxx_sSbp-bnxXNrQ1Rjcjdl9UJ69nqVopokC5w$

Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts

Received on Friday, 5 December 2025 16:34:41 UTC