1. Server side

With spring boot, we can set up a http server easily. Restcontroller make it easier to provide REST apis.

今天博主决定体验下HTTP/2。用spring boot搭建http服务相对容易,于是开始动手编写。

Entrance (入口)

@SpringBootApplication
public class App {

    public static void main(String[] args) {
        SpringApplication.run(AppConfig.class, args);
    }
}

Configuration (配置)

Marked sentence enables http/2

标记部分可以为undertow容器开启H2的支持

@Configuration
public class BaseConfig {
    @Bean
    public EmbeddedServletContainerFactory servletContainer() {
        UndertowEmbeddedServletContainerFactory factory = new UndertowEmbeddedServletContainerFactory();
        factory.addBuilderCustomizers(builder -> builder.setServerOption(UndertowOptions.ENABLE_HTTP2, true));
        return factory;
    }
}

Controller

@RestController
public class SimpleController {

    @RequestMapping("/greeting")
    public String greeting(@RequestParam(value="name", defaultValue="World") String name) {
        ExpressionParser parser = new SpelExpressionParser();
        Expression exp = parser.parseExpression("'Hello World'.concat('~')");
        String message = exp.getValue(String.class);

        return message;
    }

    @RequestMapping("/hello")
    public ResponseEntity hello(@RequestParam(value="name", defaultValue = "SYSTEM") String name) {
        return ResponseEntity.ok().body("Hello from " + name);
    }
}

Let's try it! Start server, use okhttp client to visit one link localhost:8080/greeting, and then wait for the response. Surprisingly, the http protocol is still http/1.1. What happened? Why there is no magic after enabling http/2 support? Well, JDK 8 still lacks good support for http/2.

编写完成,启动服务器,用okhttp客户端访问其中一个url。虽然有所期待,然而并无惊喜,从响应来看协议还是1.1。经过一番调查发现,即便是最新的JDK8,对H2的支持也不好。(听说JDK9会支持)

The good news is, we can start server with alpn jar to make up for this limitation. Let's config the following argument in jvm. Remember to choose the proper jar version that matches your jre version. https://www.eclipse.org/jetty/documentation/9.4.x/alpn-chapter.html#alpn-starting

好在Jetty alpn为JDK 8提供了alpn支持,我们在jvm的启动参数里加上下面这句

-Xbootclasspath/p:{maven dir}/repository/org/mortbay/jetty/alpn/alpn-boot/8.1.3.v20150130/alpn-boot-8.1.3.v20150130.jar

Again, the response shows the protocol is http/1.1. Thanks to the blog https://daniel.haxx.se/blog/2015/03/06/tls-in-http2/, it reminds us most existing servers only speak http/2 via TLS.

OK, let's make our Spring boot support https as well. First generate a SSL cert, and then configure the keystore infos in spring properties.

可是重启服务器之后,协议还是1.1。这次又是为什么呢?原来,虽说h2的规范中并没有强行要求一定要在传输层加密,然而现有实现基本都建立在安全传输层协议上的。 所以要搭建H2服务器,我们还差最后一步 ------ 支持安全传输层协议。

将http改为https很容易,创建证书,给spring加上相关配置,重启服务便完成了。

server.ssl.key-store=classpath:keystore.p12
server.ssl.key-store-password=123456
server.ssl.keyStoreType=PKCS12

Finally, an HTTP/2 is running successfully.

一波三折,H2服务器终于搞定。

2. Client side

Next, let's use okhttp client to experience http/2.

Using default okhttp client will encounter this error.

接着,用okhttp客户端来感受下新协议。出师不利,一开始访问就遇到下面的错误。

sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

Luckily, we can customize unsafe http client to trust self signed cert.

刚才给服务器配的证书是自签名的,客户端不让轻易连接。暂时不想动服务器的证书,那么就降低客户端安全性吧,按照下面的代码配置一个安全性较低的客户端。

private static OkHttpClient getUnsafeOkHttpClient() {
        try {
            X509TrustManager trustManager = new X509TrustManager() {
                @Override
                public void checkClientTrusted(java.security.cert.X509Certificate[] chain, String authType) throws CertificateException {
                }

                @Override
                public void checkServerTrusted(java.security.cert.X509Certificate[] chain, String authType) throws CertificateException {
                }

                @Override
                public java.security.cert.X509Certificate[] getAcceptedIssuers() {
                    return new java.security.cert.X509Certificate[]{};
                }
            };
            // Create a trust manager that does not validate certificate chains
            final TrustManager[] trustAllCerts = new TrustManager[] {trustManager};

            // Install the all-trusting trust manager
            final SSLContext sslContext = SSLContext.getInstance("SSL");
            sslContext.init(null, trustAllCerts, new java.security.SecureRandom());
            // Create an ssl socket factory with our all-trusting manager
            final SSLSocketFactory sslSocketFactory = sslContext.getSocketFactory();

            OkHttpClient.Builder builder = new OkHttpClient().newBuilder();
            builder.sslSocketFactory(sslSocketFactory, trustManager);
            builder.hostnameVerifier((hostname, session) -> true);
return builder.build(); } catch (Exception e) { throw new RuntimeException(e); } }

Then, the client prompts below info. So we add the same argument in client side jvm as what has been done in server side.

再次访问服务器,出现了新的警告。提示很明显,所以我们参照之前的方式给客户端jvm也加上启动参数。

Apr 27, 2017 5:19:43 PM okhttp3.internal.platform.Platform log
INFO: ALPN callback dropped: HTTP/2 is disabled. Is alpn-boot on the boot class path?
Apr 27, 2017 5:19:43 PM okhttp3.internal.platform.Platform log
INFO: ALPN callback dropped: HTTP/2 is disabled. Is alpn-boot on the boot class path?

After so many fails, the expected result finally appears in the console. Okhttp client tells the current prototol becomes h2 (http/2.0).

最后,终端上显示出了期待已久的H2

h2
Time consumed in ts 2159
h2
Time consumed in ts 2160

  

3. Some benefits after using h2 client

https://http2.github.io/faq/#why-revise-http this passage already explains a lot.

Why just one TCP connection?

With HTTP/1, browsers open between four and eight connections per origin. Since many sites use multiple origins, this could mean that a single page load opens more than thirty connections.

One application opening so many connections simultaneously breaks a lot of the assumptions that TCP was built upon; since each connection will start a flood of data in the response, there’s a real risk that buffers in the intervening network will overflow, causing a congestion event and retransmits.

Additionally, using so many connections unfairly monopolizes network resources, “stealing” them from other, better-behaved applications (e.g., VoIP).

While only one communication is built per origin, it consumes less resource in both client and server.

Here we conduct a simple check of the network communications.

H2的优点很多,这里主要验证下连接开销这块。

With http 1.1

用1.1客户端给服务器发送几十个请求,可以看到许多tcp建立了起来,这同时增加了客户端和服务器的开销。

C:\Users\??>netstat | find "8080"
  TCP    127.0.0.1:8080         ??:10951            ESTABLISHED
  TCP    127.0.0.1:8080         ??:10952            ESTABLISHED
  TCP    127.0.0.1:8080         ??:10953            ESTABLISHED
  TCP    127.0.0.1:8080         ??:10954            ESTABLISHED
  TCP    127.0.0.1:8080         ??:10955            ESTABLISHED
  TCP    127.0.0.1:8080         ??:10956            ESTABLISHED
  TCP    127.0.0.1:8080         ??:10957            ESTABLISHED
  TCP    127.0.0.1:8080         ??:10958            ESTABLISHED
  TCP    127.0.0.1:8080         ??:10959            ESTABLISHED
  TCP    127.0.0.1:8080         ??:10960            ESTABLISHED
  TCP    127.0.0.1:10951        ??:8080             ESTABLISHED
  TCP    127.0.0.1:10952        ??:8080             ESTABLISHED
  TCP    127.0.0.1:10953        ??:8080             ESTABLISHED
  TCP    127.0.0.1:10954        ??:8080             ESTABLISHED
  TCP    127.0.0.1:10955        ??:8080             ESTABLISHED
  TCP    127.0.0.1:10956        ??:8080             ESTABLISHED
  TCP    127.0.0.1:10957        ??:8080             ESTABLISHED
  TCP    127.0.0.1:10958        ??:8080             ESTABLISHED
  TCP    127.0.0.1:10959        ??:8080             ESTABLISHED
  TCP    127.0.0.1:10960        ??:8080             ESTABLISHED

With http 2.0

使用2.0客户端,果然只有一个连接了。

C:\Users\??>netstat | find "8080"
  TCP    127.0.0.1:8080         ??:11571            ESTABLISHED
  TCP    127.0.0.1:11571        ??:8080             ESTABLISHED

The connection count reduced obviously after changing the protocol.

Apart from that, slow start, one congestion controll stratege, happens only one during the lifecycle. It's good the client performance and network.

由于同一个连接复用,慢启动只发生一次,这对客户端和网络也有一定好处。

Set up HTTP/2 server with Spring Boot 【基于Spring boot搭建http2.0服务器】的更多相关文章

  1. Spring boot 基于Spring MVC的Web应用和REST服务开发

    Spring Boot利用JavaConfig配置模式以及"约定优于配置"理念,极大简化了基于Spring MVC的Web应用和REST服务开发. Servlet: package ...

  2. Spring Boot 基于Spring Initializer 的快速构建 day02

    一.基于Spring Initializr 快速构建Spring Boot项目(快速) 备注:需要联网 这是使用Intellij Idea快速构建可以为我们省去大量的pom.xml配置时间,简单操作, ...

  3. Spring Cloud 微服务中搭建 OAuth2.0 认证授权服务

    在使用 Spring Cloud 体系来构建微服务的过程中,用户请求是通过网关(ZUUL 或 Spring APIGateway)以 HTTP 协议来传输信息,API 网关将自己注册为 Eureka ...

  4. Spring 学习——基于Spring WebSocket 和STOMP实现简单的聊天功能

    本篇主要讲解如何使用Spring websocket 和STOMP搭建一个简单的聊天功能项目,里面使用到的技术,如websocket和STOMP等会简单介绍,不会太深,如果对相关介绍不是很了解的,请自 ...

  5. 初学 Spring MVC(基于 Spring in Action)

    Spring MVC(Model-View-Controller) 当你看到本博文时,我猜你可能正面临着我已探索过的问题. 同其他博主一样,我先按照书上详细的介绍一下 Spring MVC,也是为了自 ...

  6. Spring Cloud Alibaba与Spring Boot、Spring Cloud之间不得不说的版本关系

    这篇博文是临时增加出来的内容,主要是由于最近连载<Spring Cloud Alibaba基础教程>系列的时候,碰到读者咨询的大量问题中存在一个比较普遍的问题:版本的选择.其实这类问题,在 ...

  7. Spring MVC 到 Spring Boot 的简化之路(山东数漫江湖)

    背景 从Servlet技术到Spring和Spring MVC,开发Web应用变得越来越简捷.但是Spring和Spring MVC的众多配置有时却让人望而却步,相信有过Spring MVC开发经验的 ...

  8. Spring boot与Spring cloud之间的关系

    Spring boot 是 Spring 的一套快速配置脚手架,可以基于spring boot 快速开发单个微服务,Spring Boot,看名字就知道是Spring的引导,就是用于启动Spring的 ...

  9. Spring MVC 到 Spring BOOT 的简化之路

    背景 Spring vs Spring MVC vs Spring Boot Spring FrameWork Spring 还能解决什么问题 Spring MVC 为什么需要Spring Boot ...

随机推荐

  1. SQL注入相关的知识【Mysql为例子】

    以DVWA的sql注入初级为例,结合网上搜索的相关利用方式,总结成这一篇文章,内容会有点跳跃. 大纲: 1.初级手工注入 2.order by的使用 3.union查询注意点 4.Mysql相关的注释 ...

  2. Git修改提交注释

    修改本地最近一次已提交的注释 git commit --amend 如果已经上传到了github上,因此github的提交和已修改的提交不一样,推送到远程可以用下面命令强制修改 git push or ...

  3. session的使用

    一.什么是session? Session:在计算机中,尤其是在网络应用中,称为“会话控制”.Session 对象存储特定用户会话所需的属性及配置信息.这样,当用户在应用程序的 Web 页之间跳转时, ...

  4. python 附加作业01

    题目1: 画方块 输入样例: 10 a 输出样例: 代码: N=eval(input()) c=input() for i in range(N): for j in range(N): print( ...

  5. 多线程图像处理中对选入DC的位图保护

    我在应用多线程加速图像处理(具体参见图像处理的多线程计算)的过程中,曾遇到过一个线程同步的问题.多线程对图像不同子块进行处理,再合成.结果发现最终不是全部子块都处理成功,有的子块好像没有被处理.而且发 ...

  6. 让Xcode日志输出中文

    有的时候xcode打印后台返回的日志,明明后台返回的是中文,但是在xcode的日志里面却不是中文,而是unicode编码,这个就比较坑,因为看不到内容. 其实解决办法有两种: 第一种就是给xcode安 ...

  7. MaterialDrawer开源侧滑菜单的使用手册

    官方有详细说明,但是我首次查找的时候并没有第一眼就能使用全部功能,而网上也查找了一下,几乎所有的博客都是简简单单的几句代码...连句说明都没有,可能是我这小菜鸡理解能力不行,或者大神们认为coding ...

  8. Swift: 使用cocoapods进行单元测试找不到bridge_header文件

    准备对项目进行单元测试,在 command + U 运行时出现了错误找不到桥接文件,如下图所示. 找了各种资料,终于解决了,如下图,可以发现search path中路径都为空,由于unit test是 ...

  9. mock.js-无需等待,随机产生数据,让前端独立于后端进行开发

    mock.js所做的 基于 数据模板 生成模拟数据. 基于 HTML模板 生成模拟数据. 拦截并模拟 ajax 请求. Mock.js官方网址:http://mockjs.com/ 1.Mock.js ...

  10. 看Lucene源码必须知道的基本概念

    终于有时间总结点Lucene,虽然是大周末的,已经感觉是对自己的奖励,毕竟只是喜欢,现在的工作中用不到的.自己看源码比较快,看英文原著的技术书也很快.都和语言有很大关系.虽然咱的技术不敢说是部门第一的 ...