2024-06-02 22:54:28 +02:00
|
|
|
# SplitHTTP
|
|
|
|
|
|
2024-07-05 09:09:26 -05:00
|
|
|
<Badge text="v1.8.16+" type="warning"/>
|
|
|
|
|
|
2024-06-02 22:54:28 +02:00
|
|
|
Uses HTTP chunked-transfer encoding for download, and multiple HTTP requests for upload.
|
|
|
|
|
|
2024-07-27 20:01:08 +02:00
|
|
|
Can be deployed on CDNs that do not support WebSocket. However, **the CDN must
|
|
|
|
|
support HTTP chunked transfer encoding in a streaming fashion**, no response
|
|
|
|
|
buffering.
|
2024-06-02 22:54:28 +02:00
|
|
|
|
2024-06-21 02:08:36 +02:00
|
|
|
This transport serves the same purpose as Meek (support non-WS CDN). It has the
|
|
|
|
|
above streaming requirement to the CDN so that download can be much faster than
|
|
|
|
|
(v2fly) Meek, close to WebSocket performance. The upload is also optimized, but
|
|
|
|
|
still much more limited than WebSocket.
|
2024-06-02 22:54:28 +02:00
|
|
|
|
|
|
|
|
Like WebSocket transport, SplitHTTP parses the `X-Forwarded-For` header for logging.
|
|
|
|
|
|
|
|
|
|
## SplitHttpObject
|
|
|
|
|
|
|
|
|
|
The `SplitHttpObject` corresponds to the `splithttpSettings` section under transport configurations.
|
|
|
|
|
|
|
|
|
|
```json
|
|
|
|
|
{
|
|
|
|
|
"path": "/",
|
|
|
|
|
"host": "xray.com",
|
|
|
|
|
"headers": {
|
|
|
|
|
"key": "value"
|
2024-07-02 16:57:31 -05:00
|
|
|
},
|
2024-07-29 16:47:12 -05:00
|
|
|
"scMaxEachPostBytes": 1000000,
|
|
|
|
|
"scMaxConcurrentPosts": 100,
|
|
|
|
|
"scMinPostsIntervalMs": 30,
|
2024-08-30 09:38:15 +02:00
|
|
|
"noSSEHeader": false,
|
2024-09-16 18:31:50 +02:00
|
|
|
"xPaddingBytes": "100-1000",
|
|
|
|
|
"xmux": {
|
|
|
|
|
"maxConcurrency": 0,
|
2024-09-18 05:57:14 -05:00
|
|
|
"maxConnections": 0,
|
2024-09-16 18:31:50 +02:00
|
|
|
"cMaxReuseTimes": 0,
|
|
|
|
|
"cMaxLifetimeMs": 0
|
|
|
|
|
}
|
2024-06-02 22:54:28 +02:00
|
|
|
}
|
|
|
|
|
```
|
|
|
|
|
|
|
|
|
|
> `path`: string
|
|
|
|
|
|
|
|
|
|
HTTP path used by the connection. Defaults to `"/"`.
|
|
|
|
|
|
|
|
|
|
> `host`: string
|
|
|
|
|
|
|
|
|
|
HTTP Host sent by the connection. Empty by default. If this value is empty on the server, the host header sent by clients will not be validated.
|
|
|
|
|
|
|
|
|
|
If the `Host` header has been defined on the server in any way, the server will validate if the `Host` header matches.
|
|
|
|
|
|
|
|
|
|
The current priority of the `Host` header sent by clients: `host` > `headers` > `address`
|
|
|
|
|
|
|
|
|
|
> `headers`: map \{string: string\}
|
|
|
|
|
|
|
|
|
|
Customized HTTP headers defined in key-value pairs. Defaults to empty.
|
|
|
|
|
|
2024-07-29 16:47:12 -05:00
|
|
|
> `scMaxEachPostBytes`: int/string
|
2024-06-18 08:48:02 +02:00
|
|
|
|
2024-08-30 09:38:15 +02:00
|
|
|
The maximum size of upload chunks, in bytes. Defaults to 1MB.
|
2024-06-18 08:48:02 +02:00
|
|
|
|
2024-07-29 01:55:21 -05:00
|
|
|
The size set by the client must be lower than this value, otherwise when the
|
|
|
|
|
POST request is sent larger than the value set by the server, the request will
|
|
|
|
|
be rejected.
|
2024-06-18 08:48:02 +02:00
|
|
|
|
2024-07-29 01:55:21 -05:00
|
|
|
This value should be smaller than the maximum request body allowed by the CDN
|
|
|
|
|
or other HTTP reverse proxy, otherwise an HTTP 413 error will be thrown.
|
|
|
|
|
|
|
|
|
|
It can also be in the form of a string `"1000000-2000000"`. The core will
|
|
|
|
|
randomly select a value within the range each time to reduce fingerprints.
|
|
|
|
|
|
2024-07-29 16:47:12 -05:00
|
|
|
> `scMaxConcurrentPosts`: int/string
|
2024-07-29 01:55:21 -05:00
|
|
|
|
|
|
|
|
The number of concurrent uploads to run. Defaults to 100 on the client, and
|
|
|
|
|
200 on the server.
|
2024-06-18 08:48:02 +02:00
|
|
|
|
|
|
|
|
The value on the client must not be higher than on the server. Otherwise,
|
2024-07-29 01:55:21 -05:00
|
|
|
connectivity issues will occur. In practice, the upload concurrency is also
|
|
|
|
|
limited by `minUploadIntervalMs`, so the actual concurrency on the client side
|
|
|
|
|
will be much lower.
|
|
|
|
|
|
|
|
|
|
It can also be in the form of a string `"100-200"`, and the core will randomly
|
|
|
|
|
select a value within the range each time to reduce fingerprints.
|
|
|
|
|
|
2024-07-29 16:47:12 -05:00
|
|
|
> `scMinPostsIntervalMs`: int/string
|
2024-07-29 01:55:21 -05:00
|
|
|
|
|
|
|
|
(Client-only) How much time to pass between upload requests at a minimum.
|
|
|
|
|
Defaults to `30` (milliseconds).
|
|
|
|
|
|
2024-07-29 16:47:12 -05:00
|
|
|
It can also be in the form of a string `"10-50"`, and the core will randomly
|
2024-07-29 01:55:21 -05:00
|
|
|
select a value within the range each time to reduce fingerprints.
|
|
|
|
|
|
|
|
|
|
> `noSSEHeader`
|
|
|
|
|
|
|
|
|
|
(Server-only) Do not send the `Content-Type: text/event-stream` response
|
2024-07-29 16:47:12 -05:00
|
|
|
header. Defaults to false (the header will be sent)
|
2024-06-18 08:48:02 +02:00
|
|
|
|
2024-08-30 09:38:15 +02:00
|
|
|
> `xPaddingBytes`
|
|
|
|
|
|
|
|
|
|
*Added in 1.8.24*
|
|
|
|
|
|
|
|
|
|
Control the padding of requests and responses. Defaults to `"100-1000"`,
|
|
|
|
|
meaning that each GET and POST will be padded with a random amount of bytes in
|
|
|
|
|
that range.
|
|
|
|
|
|
|
|
|
|
A value of `-1` disables padding entirely.
|
|
|
|
|
|
|
|
|
|
You can lower this to save bandwidth or increase it to improve censorship
|
|
|
|
|
resistance. Too much padding may cause the CDN to reject traffic.
|
|
|
|
|
|
2024-09-16 18:31:50 +02:00
|
|
|
> `xmux`
|
|
|
|
|
|
|
|
|
|
*Added in 24.9.16*
|
|
|
|
|
|
|
|
|
|
Control the way that SplitHTTP distributes *sub-connections* (H2 stream or QUIC
|
|
|
|
|
stream) on "physical" TCP/QUIC *connections*. The default behavior is to put
|
|
|
|
|
all sub-connections of an outbound onto a single physical connection, which is
|
|
|
|
|
basically equal to using `mux.cool` with `concurrency=999999999`.
|
|
|
|
|
|
|
|
|
|
It is recommended to tweak this transport-specific `xmux` instead of the global
|
|
|
|
|
`mux` key (mux.cool) for better performance, especially on QUIC/H3 connections.
|
|
|
|
|
That said, either one may be useful to work around certain connectivity issues
|
|
|
|
|
(and bugs in xray or other software).
|
|
|
|
|
|
|
|
|
|
* `maxConcurrency`: Default 0 = infinite. The maximum number of sub-connections
|
|
|
|
|
to put onto a physical connection. New physical connections will be opened to
|
|
|
|
|
stay under this limit overall. Mutually exclusive with `maxConnections`.
|
|
|
|
|
Equivalent to mux.cool's `concurrency`.
|
|
|
|
|
|
2024-09-18 05:57:14 -05:00
|
|
|
* `maxConnections`: Default 0 = infinite. The number of physical connections to
|
|
|
|
|
open. Every sub-connection will open a new connection until this value is
|
|
|
|
|
reached, only then connections will be reused. Mutually exclusive with
|
|
|
|
|
`maxConcurrency`.
|
|
|
|
|
|
2024-09-16 18:31:50 +02:00
|
|
|
* `cMaxReuseTimes`: Default 0 = infinite. Stop re-using a physical connection
|
|
|
|
|
after it has been used for this many sub-connections.
|
|
|
|
|
|
|
|
|
|
* `cMaxLifetimeMs`: Default 0 = infinite. Stop re-using a physical connection
|
|
|
|
|
after it has been open for this many milliseconds.
|
|
|
|
|
|
|
|
|
|
|
2024-07-27 20:01:08 +02:00
|
|
|
## HTTP versions
|
|
|
|
|
|
|
|
|
|
*Added in 1.8.21: HTTP/3 support*
|
|
|
|
|
|
|
|
|
|
SplitHTTP supports `http/1.1`, `h2` and `h3` ALPN values. If the value is not
|
|
|
|
|
set, `h2` (prior-knowledge) is assumed when TLS is enabled, and `http/1.1`
|
|
|
|
|
without TLS. If the value is set to `h3`, the client will attempt to connect as
|
|
|
|
|
HTTP/3, so UDP instead of TCP.
|
|
|
|
|
|
|
|
|
|
The server listens to HTTP/1.1 and h2 by default, but if `h3` ALPN is set on
|
|
|
|
|
the server, it will listen as HTTP/3.
|
|
|
|
|
|
|
|
|
|
Please note that nginx, Caddy and all CDN will almost certainly translate
|
|
|
|
|
client requests to a different HTTP version for forwarding, and so the server
|
|
|
|
|
may have to be configured with a different ALPN value than the client. If you
|
|
|
|
|
use a CDN, it is very unlikely that `h3` is a correct value for the server,
|
|
|
|
|
even if the client speaks `h3`.
|
|
|
|
|
|
|
|
|
|
## Troubleshooting
|
|
|
|
|
|
|
|
|
|
* If a connection hangs, the CDN may not support streaming downloads. You can
|
|
|
|
|
use `curl -Nv https://example.com/abcdef` to initiate a download and see for
|
|
|
|
|
yourself (see protocol details).
|
|
|
|
|
|
|
|
|
|
If you do not see `200 OK` and a response body of `ok`, then the CDN is
|
|
|
|
|
buffering the response body. Please ensure that all HTTP middleboxes along
|
|
|
|
|
the path between client and server observe `X-Accel-Buffering: no` from their
|
|
|
|
|
origin server. If your chain is `xray -> nginx -> CDN -> xray`, nginx may
|
|
|
|
|
strip this response header and you have to re-add it.
|
|
|
|
|
|
|
|
|
|
## Browser Dialer
|
|
|
|
|
|
|
|
|
|
<Badge text="v1.8.17+" type="warning"/>
|
|
|
|
|
|
|
|
|
|
If uTLS is not enough, SplitHTTP's TLS can be handled by a browser using [Browser Dialer](../features/browser_dialer.md)
|
|
|
|
|
|
2024-06-18 08:48:02 +02:00
|
|
|
## Protocol details
|
|
|
|
|
|
2024-06-21 02:31:36 +02:00
|
|
|
See [#3412](https://github.com/XTLS/Xray-core/pull/3412) and
|
|
|
|
|
[#3462](https://github.com/XTLS/Xray-core/pull/3462) for extensive discussion
|
2024-06-18 08:48:02 +02:00
|
|
|
and revision of the protocol. Here is a summary, and the minimum needed to be
|
|
|
|
|
compatible:
|
|
|
|
|
|
2024-07-27 20:01:08 +02:00
|
|
|
1. `GET /<UUID>` opens the download. The server immediately responds with `200
|
|
|
|
|
OK`, and immediately sends the string `ok`
|
|
|
|
|
(arbitrary length, such as `ooook`) to force HTTP middleboxes into flushing
|
|
|
|
|
headers.
|
|
|
|
|
|
2024-08-30 09:38:15 +02:00
|
|
|
The server will send these headers:
|
|
|
|
|
|
|
|
|
|
* `X-Accel-Buffering: no` to prevent response buffering in nginx and CDN
|
|
|
|
|
* `Content-Type: text/event-stream` to prevent response buffering in some
|
|
|
|
|
CDN, can be disabled with `noSSEHeader`
|
|
|
|
|
* `Transfer-Encoding: chunked` in HTTP/1.1 only
|
|
|
|
|
* `Cache-Control: no-store` to disable any potential response caching.
|
2024-06-18 08:48:02 +02:00
|
|
|
|
2024-06-21 02:08:36 +02:00
|
|
|
2. Client uploads using `POST /<UUID>/<seq>`. `seq` starts at `0` and can be
|
|
|
|
|
used like TCP seq number, and multiple "packets" may be sent concurrently.
|
|
|
|
|
The server has to reassemble the "packets" live. The sequence number never
|
|
|
|
|
resets for simplicity reasons.
|
|
|
|
|
|
|
|
|
|
The client may open upload and download in any order, either one starts a
|
|
|
|
|
session. However, eventually `GET` needs to be opened (current deadline is
|
|
|
|
|
hardcoded to 30 seconds) If not, the session will be terminated.
|
2024-06-18 08:48:02 +02:00
|
|
|
|
|
|
|
|
3. The `GET` request is kept open until the tunneled connection has to be
|
2024-07-27 20:01:08 +02:00
|
|
|
terminated. Either server or client can close.
|
|
|
|
|
|
|
|
|
|
How this actually works depends on the HTTP version. For example, in
|
|
|
|
|
HTTP/1.1 it is only possible to disrupt chunked-transfer by closing the TCP
|
|
|
|
|
connection, in other versions the stream is closed or aborted.
|
2024-06-18 08:48:02 +02:00
|
|
|
|
|
|
|
|
Recommendations:
|
|
|
|
|
|
|
|
|
|
* Do not assume any custom headers are transferred correctly by the CDN. This
|
|
|
|
|
transport is built for CDN who do not support WebSocket, these CDN tend to
|
|
|
|
|
not be very modern (or good).
|
|
|
|
|
|
|
|
|
|
* It should be assumed there is no streaming upload within a HTTP request, so
|
|
|
|
|
the size of a packet should be chosen to optimize between latency,
|
|
|
|
|
throughput, and any size limits imposed by the CDN (just like TCP, nagle's
|
|
|
|
|
algorithm and MTU...)
|
2024-06-21 02:08:36 +02:00
|
|
|
|
|
|
|
|
* HTTP/1.1 and h2 should be supported by server and client, and it should be
|
|
|
|
|
expected that the CDN will translate arbitrarily between versions. A HTTP/1.1
|
|
|
|
|
server may indirectly end up talking to a h2 client, and vice versa.
|
