[jira] [Commented] (COMDEV-313) HTTP/3 for Apache Tomcat: DTLS support for JSSE+OpenSSL

Wed, 27 Mar 2019 07:26:15 -0700 


    [ 
https://issues.apache.org/jira/browse/COMDEV-313?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16802854#comment-16802854
 ] 

Mark Thomas commented on COMDEV-313:
------------------------------------

[~rbo...@rcbowen.com] GSoC ideas for projects that don't use Jira are opened in 
COMDEV.

[~Abhism] It isn't quite as simple as I first thought. The QUIC over DTLS 
proposal wasn't accepted by the IETF working group. QUIC and TLS are tightly 
integrated. A good place to start would be reading these:
https://datatracker.ietf.org/doc/draft-ietf-quic-tls/
https://datatracker.ietf.org/doc/draft-ietf-quic-transport/
https://datatracker.ietf.org/doc/draft-ietf-quic-http/

Then considering Tomcat's HTTP/2 implementation:
https://github.com/apache/tomcat/tree/master/java/org/apache/coyote/http2

and low level network implementation:
https://github.com/apache/tomcat/tree/master/java/org/apache/tomcat/util/net

start to think about how QUIC and HTTP/3 would fit into Tomcat's overall 
architecture.

I would expect to see a successful applicant engaged on the Tomcat dev mailing 
list demonstrating coding ability and commitment to the project. There are many 
ways to do this but, to set expectations, the sort of contribution I have in 
mind is a proposal for how to implement RFC 7838 and some (not necessarily 
complete) patches to support that proposal.

> HTTP/3 for Apache Tomcat: DTLS support for JSSE+OpenSSL
> -------------------------------------------------------
>
>                 Key: COMDEV-313
>                 URL: https://issues.apache.org/jira/browse/COMDEV-313
>             Project: Community Development
>          Issue Type: New Feature
>          Components: GSoC/Mentoring ideas
>            Reporter: Mark Thomas
>            Priority: Major
>              Labels: gsoc2019
>
> HTTP/3 is the next iteration of the HTTP protocol. An HTTP/3 implementation 
> requires a number of building blocks of which this is one.
> Java does not currently have DTLS support.
> Tomcat has two options for TLS. Pure JSSE and JSSE+OpenSSL where a JSSE 
> wrapper is placed around OpenSSL and OpenSSL is used to perform the 
> encryption.
> Irrespective of whether Java provides DTLS support, Tomcat will want an 
> JSSE+OpenSSL option for DTLS. This project is to provide that JSSE+OpenSSL 
> based DTLS implementation.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@community.apache.org
For additional commands, e-mail: dev-h...@community.apache.org

Reply via email to