net: Add http_version to HttpRouteFragment and ConnectionConfig

jrose-signal · web-flow · commit b39e93f1a5e6 · 2025-11-14T17:10:56.000-08:00
Setting this at the route level is a requirement that doesn't quite
match up with the "negotiation" part of ALPN. However, we currently
know exactly which HTTP version we'll use to connect to any given
server: HTTP/1.1, unless we specifically know in advance the server
supports H2. That's sufficient for our uses here.
diff --git a/rust/bridge/shared/testing/src/net_env.rs b/rust/bridge/shared/testing/src/net_env.rs
@@ -12,6 +12,7 @@ use libsignal_net::enclave::{Cdsi, EnclaveEndpoint, EndpointParams, MrEnclave, S
 use libsignal_net::env::{ConnectionConfig, DomainConfig, Env, KeyTransConfig, SvrBEnv};
 use libsignal_net::infra::RECOMMENDED_WS_CONFIG;
 use libsignal_net::infra::certs::RootCertificates;
+use libsignal_net::infra::route::HttpVersion;
 
 const ENCLAVE_ID_MOCK_SERVER: &[u8] = b"0.20240911.184407";
 
@@ -27,6 +28,7 @@ fn localhost_test_domain_config_with_port_and_cert(
             hostname: "localhost",
             port,
             cert: RootCertificates::FromDer(std::borrow::Cow::Owned(root_certificate_der.to_vec())),
+            http_version: Some(HttpVersion::Http1_1),
             min_tls_version: None,
             confirmation_header_name: None,
             proxy: None,
diff --git a/rust/net/examples/dns_custom_lookup.rs b/rust/net/examples/dns_custom_lookup.rs
@@ -16,7 +16,7 @@ use libsignal_net_infra::Alpn;
 use libsignal_net_infra::dns::dns_transport_doh::DohTransportConnectorFactory;
 use libsignal_net_infra::dns::dns_transport_udp::UdpTransportConnectorFactory;
 use libsignal_net_infra::route::{
-    HttpRouteFragment, HttpsTlsRoute, TcpRoute, TlsRoute, TlsRouteFragment, UdpRoute,
+    HttpRouteFragment, HttpVersion, HttpsTlsRoute, TcpRoute, TlsRoute, TlsRouteFragment, UdpRoute,
 };
 use libsignal_net_infra::timeouts::DNS_LATER_RESPONSE_GRACE_PERIOD;
 use libsignal_net_infra::utils::no_network_change_events;
@@ -70,6 +70,7 @@ async fn main() {
                 fragment: HttpRouteFragment {
                     host_header: host.clone(),
                     path_prefix: "".into(),
+                    http_version: Some(HttpVersion::Http2),
                     front_name: None,
                 },
                 inner: TlsRoute {
diff --git a/rust/net/examples/dns_over_https.rs b/rust/net/examples/dns_over_https.rs
@@ -8,14 +8,14 @@ use std::sync::Arc;
 
 use clap::Parser;
 use futures_util::StreamExt;
+use libsignal_net::infra::Alpn;
 use libsignal_net::infra::certs::RootCertificates;
 use libsignal_net::infra::dns::custom_resolver::DnsTransport;
 use libsignal_net::infra::dns::dns_lookup::DnsLookupRequest;
+use libsignal_net::infra::dns::dns_transport_doh::DohTransportConnector;
 use libsignal_net::infra::host::Host;
-use libsignal_net_infra::Alpn;
-use libsignal_net_infra::dns::dns_transport_doh::DohTransportConnector;
-use libsignal_net_infra::route::{
-    HttpRouteFragment, HttpsTlsRoute, NoDelay, TcpRoute, TlsRoute, TlsRouteFragment,
+use libsignal_net::infra::route::{
+    HttpRouteFragment, HttpVersion, HttpsTlsRoute, NoDelay, TcpRoute, TlsRoute, TlsRouteFragment,
 };
 
 #[derive(Parser, Debug)]
@@ -49,6 +49,7 @@ async fn main() {
         fragment: HttpRouteFragment {
             host_header: host.clone(),
             path_prefix: "".into(),
+            http_version: Some(HttpVersion::Http2),
             front_name: None,
         },
         inner: TlsRoute {
diff --git a/rust/net/infra/src/dns.rs b/rust/net/infra/src/dns.rs
@@ -23,7 +23,8 @@ use crate::dns::dns_utils::log_safe_domain;
 use crate::dns::lookup_result::LookupResult;
 use crate::host::Host;
 use crate::route::{
-    DEFAULT_HTTPS_PORT, HttpRouteFragment, HttpsTlsRoute, TcpRoute, TlsRoute, TlsRouteFragment,
+    DEFAULT_HTTPS_PORT, HttpRouteFragment, HttpVersion, HttpsTlsRoute, TcpRoute, TlsRoute,
+    TlsRouteFragment,
 };
 use crate::timeouts::{
     DNS_LATER_RESPONSE_GRACE_PERIOD, DNS_SYSTEM_LOOKUP_TIMEOUT, DOH_FALLBACK_LOOKUP_TIMEOUT,
@@ -106,6 +107,7 @@ pub fn build_custom_resolver_cloudflare_doh(
                 path_prefix: "".into(),
                 front_name: None,
                 host_header: Arc::from(host.to_string()),
+                http_version: Some(HttpVersion::Http2),
             },
             inner: TlsRoute {
                 fragment: TlsRouteFragment {
diff --git a/rust/net/infra/src/http_client.rs b/rust/net/infra/src/http_client.rs
@@ -18,7 +18,7 @@ use hyper_util::rt::{TokioExecutor, TokioIo};
 use static_assertions::assert_impl_all;
 
 use crate::errors::{LogSafeDisplay, TransportConnectError};
-use crate::route::{Connector, HttpRouteFragment};
+use crate::route::{Connector, HttpRouteFragment, HttpVersion};
 use crate::{AsyncDuplexStream, Connection};
 
 #[derive(displaydoc::Display, Debug)]
@@ -243,9 +243,14 @@ where
         let HttpRouteFragment {
             host_header,
             path_prefix,
+            http_version,
             front_name: _,
         } = route;
 
+        if http_version != Some(HttpVersion::Http2) {
+            return Err(HttpConnectError::InvalidConfig("wrong HTTP version"));
+        }
+
         let info = over.transport_info();
         let io = TokioIo::new(over);
         let (sender, connection) = http2::Builder::new(TokioExecutor::new())
@@ -436,6 +441,7 @@ mod test {
                 fragment: HttpRouteFragment {
                     host_header: Arc::clone(&host),
                     path_prefix: prefix.into(),
+                    http_version: Some(HttpVersion::Http2),
                     front_name: None,
                 },
                 inner: TlsRoute {
@@ -513,6 +519,7 @@ mod test {
                 fragment: HttpRouteFragment {
                     host_header,
                     path_prefix: "".into(),
+                    http_version: Some(HttpVersion::Http2),
                     front_name: None,
                 },
                 inner: TlsRoute {
diff --git a/rust/net/infra/src/route.rs b/rust/net/infra/src/route.rs
@@ -761,6 +761,7 @@ mod test {
                     fragment: HttpRouteFragment {
                         host_header: "http-host".into(),
                         path_prefix: "".into(),
+                        http_version: Some(HttpVersion::Http1_1),
                         front_name: None,
                     },
                     inner: TlsRoute {
@@ -787,6 +788,7 @@ mod test {
                     fragment: HttpRouteFragment {
                         host_header: "front-host".into(),
                         path_prefix: "/front-host-path-prefix".into(),
+                        http_version: Some(HttpVersion::Http2),
                         front_name: Some("front-host"),
                     },
                     inner: TlsRoute {
@@ -813,6 +815,7 @@ mod test {
                     fragment: HttpRouteFragment {
                         host_header: "front-host".into(),
                         path_prefix: "/front-host-path-prefix".into(),
+                        http_version: Some(HttpVersion::Http2),
                         front_name: Some("front-host"),
                     },
                     inner: TlsRoute {
diff --git a/rust/net/infra/src/route/http.rs b/rust/net/infra/src/route/http.rs
@@ -22,6 +22,16 @@ pub const DEFAULT_HTTPS_PORT: NonZeroU16 = nonzero!(443u16);
 pub struct HttpRouteFragment {
     pub host_header: Arc<str>,
     pub path_prefix: Arc<str>,
+    /// If present, the connector may *assume* we'll be using this HTTP version.
+    ///
+    /// This isn't fully compliant with the H2 standard, RFC 7540; if we're using TLS, we should
+    /// always check the ALPN result before going ahead with an H2 connection. However, at the time
+    /// of this writing (Nov 2025) we don't connect to arbitrary servers with H2, only those we
+    /// already know should support it. If we some day have a need to negotiate ALPN properly, we'll
+    /// need to change [`TlsRouteFragment`] to accept multiple permitted ALPN values, and then once
+    /// everything is threaded through we should be able to remove this field (treating "no ALPN" as
+    /// "assume HTTP/1.1 only").
+    pub http_version: Option<HttpVersion>,
     /// Only for logging; the name of the domain front for this proxy.
     pub front_name: Option<&'static str>,
 }
@@ -47,7 +57,7 @@ pub struct DomainFrontRouteProvider {
 /// This is distinct from [`http::Version`] since only a subset of versions are
 /// supported, and is distinct from [`Alpn`] which is TLS-specific and could in
 /// theory represent non-HTTP-version values.
-#[derive(Copy, Clone, Debug)]
+#[derive(Copy, Clone, Debug, PartialEq, Eq, Hash)]
 pub enum HttpVersion {
     Http1_1,
     Http2,
@@ -141,6 +151,7 @@ impl RouteProvider for DomainFrontRouteProvider {
                     fragment: HttpRouteFragment {
                         host_header: Arc::clone(http_host),
                         path_prefix: Arc::clone(path_prefix),
+                        http_version: Some(*http_version),
                         front_name: Some(*front_name),
                     },
                 })
@@ -175,6 +186,7 @@ where
                     fragment: HttpRouteFragment {
                         host_header: Arc::clone(direct_host_header),
                         path_prefix: "".into(),
+                        http_version: Some(*direct_http_version),
                         front_name: None,
                     },
                     inner,
@@ -260,6 +272,7 @@ mod test {
                     fragment: HttpRouteFragment {
                         host_header: "direct-host".into(),
                         path_prefix: "".into(),
+                        http_version: Some(HttpVersion::Http2),
                         front_name: None,
                     },
                     inner: TlsRoute {
@@ -279,6 +292,7 @@ mod test {
                     fragment: HttpRouteFragment {
                         host_header: "front-host-1".into(),
                         path_prefix: "/prefix-1".into(),
+                        http_version: Some(HttpVersion::Http1_1),
                         front_name: Some("front-1")
                     },
                     inner: TlsRoute {
@@ -298,6 +312,7 @@ mod test {
                     fragment: HttpRouteFragment {
                         host_header: "front-host-1".into(),
                         path_prefix: "/prefix-1".into(),
+                        http_version: Some(HttpVersion::Http1_1),
                         front_name: Some("front-1")
                     },
                     inner: TlsRoute {
@@ -317,6 +332,7 @@ mod test {
                     fragment: HttpRouteFragment {
                         host_header: "front-host-2".into(),
                         path_prefix: "/prefix-2".into(),
+                        http_version: Some(HttpVersion::Http1_1),
                         front_name: Some("front-2")
                     },
                     inner: TlsRoute {
diff --git a/rust/net/infra/src/route/resolve.rs b/rust/net/infra/src/route/resolve.rs
@@ -677,6 +677,7 @@ mod test {
         let http_fragment = HttpRouteFragment {
             host_header: "target-domain".into(),
             path_prefix: "".into(),
+            http_version: None,
             front_name: None,
         };
 
diff --git a/rust/net/infra/src/ws.rs b/rust/net/infra/src/ws.rs
@@ -13,7 +13,7 @@ use tungstenite::{Message, Utf8Bytes, http};
 
 use crate::AsyncDuplexStream;
 use crate::errors::LogSafeDisplay;
-use crate::route::{Connector, HttpRouteFragment, WebSocketRouteFragment};
+use crate::route::{Connector, HttpRouteFragment, HttpVersion, WebSocketRouteFragment};
 use crate::ws::error::{HttpFormatError, ProtocolError, SpaceError};
 
 pub mod error;
@@ -136,10 +136,15 @@ where
             HttpRouteFragment {
                 host_header,
                 path_prefix,
+                http_version,
                 front_name: _,
             },
         ) = route;
 
+        if !matches!(http_version, None | Some(HttpVersion::Http1_1)) {
+            unimplemented!("can only connect over HTTP/1.1 right now");
+        }
+
         let uri_path = if path_prefix.is_empty() {
             Ok(endpoint)
         } else {
@@ -323,6 +328,7 @@ pub mod testutil {
                 HttpRouteFragment {
                     host_header: "localhost".into(),
                     path_prefix: "".into(),
+                    http_version: Some(HttpVersion::Http1_1),
                     front_name: None,
                 },
             ),
diff --git a/rust/net/src/chat.rs b/rust/net/src/chat.rs
@@ -519,7 +519,7 @@ pub(crate) mod test {
     use libsignal_net_infra::host::Host;
     use libsignal_net_infra::route::testutils::ConnectFn;
     use libsignal_net_infra::route::{
-        DEFAULT_HTTPS_PORT, DirectOrProxyRoute, HttpRouteFragment, HttpsTlsRoute,
+        DEFAULT_HTTPS_PORT, DirectOrProxyRoute, HttpRouteFragment, HttpVersion, HttpsTlsRoute,
         PreconnectingFactory, TcpRoute, TlsRoute, TlsRouteFragment, UnresolvedHost,
     };
     use libsignal_net_infra::utils::no_network_change_events;
@@ -735,6 +735,7 @@ pub(crate) mod test {
                 fragment: HttpRouteFragment {
                     host_header: CHAT_DOMAIN.into(),
                     path_prefix: "".into(),
+                    http_version: Some(HttpVersion::Http1_1),
                     front_name: None,
                 },
                 inner: TlsRoute {
@@ -799,6 +800,7 @@ pub(crate) mod test {
             fragment: HttpRouteFragment {
                 host_header: CHAT_DOMAIN.into(),
                 path_prefix: "".into(),
+                http_version: Some(HttpVersion::Http1_1),
                 front_name: None,
             },
             inner: TlsRoute {
diff --git a/rust/net/src/connect_state.rs b/rust/net/src/connect_state.rs
@@ -795,9 +795,9 @@ mod test {
     use libsignal_net_infra::host::Host;
     use libsignal_net_infra::route::testutils::ConnectFn;
     use libsignal_net_infra::route::{
-        AttemptOutcome, DirectOrProxyRoute, HAPPY_EYEBALLS_DELAY, HttpsTlsRoute, TcpRoute,
-        TlsRoute, TlsRouteFragment, UnresolvedHost, UnresolvedTransportRoute, UnsuccessfulOutcome,
-        WebSocketRoute,
+        AttemptOutcome, DirectOrProxyRoute, HAPPY_EYEBALLS_DELAY, HttpVersion, HttpsTlsRoute,
+        TcpRoute, TlsRoute, TlsRouteFragment, UnresolvedHost, UnresolvedTransportRoute,
+        UnsuccessfulOutcome, WebSocketRoute,
     };
     use libsignal_net_infra::utils::no_network_change_events;
     use libsignal_net_infra::{Alpn, RouteType};
@@ -832,6 +832,7 @@ mod test {
                         fragment: HttpRouteFragment {
                             host_header: "first-host".into(),
                             path_prefix: "".into(),
+                            http_version: Some(HttpVersion::Http1_1),
                             front_name: None,
                         },
                         inner: (*FAKE_TRANSPORT_ROUTE).clone(),
@@ -847,6 +848,7 @@ mod test {
                         fragment: HttpRouteFragment {
                             host_header: "second-host".into(),
                             path_prefix: "".into(),
+                            http_version: Some(HttpVersion::Http1_1),
                             front_name: Some(RouteType::ProxyF.into()),
                         },
                         inner: (*FAKE_TRANSPORT_ROUTE).clone(),
@@ -1394,6 +1396,7 @@ mod test {
                             fragment: HttpRouteFragment {
                                 host_header: "host".into(),
                                 path_prefix: "".into(),
+                                http_version: Some(HttpVersion::Http1_1),
                                 front_name: None,
                             },
                             inner: route,
diff --git a/rust/net/src/env.rs b/rust/net/src/env.rs
diff --git a/rust/net/tests/fake_transport/mod.rs b/rust/net/tests/fake_transport/mod.rs
