Page MenuHomePhabricator
Create Task
Maniphest T238034

Enable HTTP/3 (QUIC) support on Wikimedia servers
Open, MediumPublic
Actions

Description

HTTP/3 is now standardized and shipped in all major browsers (partially enabled in Safari) [1]. Enabling it may help the servers in more efficiently using bandwidth and increase performance.

HAProxy has production-ready support of HTTP/3 as of version 2.8 [2].

One benefit of HTTP/3 is it may be more resistant to censorship, as initial packets of a connection (where SNI lies) are encrypted using well known keys.

Links

  1. https://caniuse.com/http3
  2. https://www.haproxy.org/
  3. https://en.wikipedia.org/wiki/HTTP/3
  4. https://www.cloudflare.com/learning/performance/what-is-http3/

Related Objects
Search...

Event Timeline

Morgankevinj created this task.Nov 12 2019, 3:26 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptNov 12 2019, 3:26 AM
Vgutierrez subscribed.Nov 12 2019, 4:27 AM

We should consider QUIC and HTTP/3 adoption carefully as it implies a switch from TCP to UDP, and that could open new (D)DoS vectors and render unusable some mitigation techniques.

Masumrezarock100 awarded a token.Nov 12 2019, 8:23 AM
Masumrezarock100 added a project: Wikimedia-Site-requests.
Masumrezarock100 subscribed.
Peachey88 removed a project: Wikimedia-Site-requests.Nov 12 2019, 8:30 AM
Peachey88 subscribed.

@Masumrezarock100 This is something that needs to be done on the operations side of thigs, so i've removed Site-Requests which is for local wiki config changes.

Masumrezarock100 added a comment.Nov 12 2019, 8:51 AM

Oh I see.

ema moved this task from Backlog to TLS on the Traffic board.Nov 12 2019, 2:46 PM
ema triaged this task as Medium priority.Nov 12 2019, 4:12 PM
Bugreporter merged a task: T241237: Add QUIC for ATS.Dec 20 2019, 5:07 PM
Bugreporter added a subscriber: Obiwan2208-2.
Krinkle added a project: Performance-Team (Radar).Dec 20 2019, 5:19 PM
Krinkle moved this task from Limbo to Watching on the Performance-Team (Radar) board.
taavi subscribed.Dec 24 2020, 2:01 PM
Bugreporter renamed this task from Enable QUIC support on Wikimedia servers to Enable HTTP/3 (QUIC) support on Wikimedia servers.May 3 2021, 12:04 AM
Bugreporter merged a task: T281172: Support HTTP/3.
Bugreporter added subscribers: RuleTheWiki, Reedy.
RhinosF1 subscribed.May 3 2021, 7:12 AM
RuleTheWiki added a comment.May 6 2021, 6:03 AM

Mozilla now supports HTTP/3 and the editor's draft has reached the final call, RFC should only be a short time away.

jbond subscribed.Jun 8 2021, 1:58 PM

RFC assigned rfc9000

hashar updated the task description. (Show Details)Jun 8 2021, 2:09 PM
cmooney subscribed.Jun 8 2021, 2:30 PM
ayounsi subscribed.Jun 11 2021, 2:32 PM
Izno subscribed.Sep 15 2021, 3:31 AM
BBlack moved this task from TLS to Icebox-Temp on the Traffic board.Oct 8 2021, 4:41 PM
BBlack edited projects, added Traffic-Icebox; removed Traffic.Oct 8 2021, 8:04 PM
BBlack subscribed.

The swap of Traffic for Traffic-Icebox in this ticket's set of tags was based on a bulk action for all tickets that aren't are neither part of our current planned work nor clearly a recent, higher-priority emergent issue. This is simply one step in a larger task cleanup effort. Further triage of these tickets (and especially, organizing future potential project ideas from them into a new medium) will occur afterwards! For more detail, have a look at the extended explanation on the main page of Traffic-Icebox . Thank you!

ReaperDawn subscribed.Mar 16 2022, 5:25 AM
BBlack moved this task from Backlog to Roadmap on the Traffic-Icebox board.Apr 7 2022, 9:13 PM
Diskdance subscribed.Jul 24 2022, 11:10 AM
Diskdance updated the task description. (Show Details)Jul 24 2022, 12:45 PM
Diskdance added a comment.EditedJul 24 2022, 12:49 PM

By the way, I want to emphasize that QUIC encrypts initial packets of a connection (where SNI lies). Even though its key is known, inspecting it would require more processing power, making QUIC harder to censor.

Frostly subscribed.Aug 25 2022, 3:54 AM
Rail subscribed.Sep 1 2022, 9:32 PM
Krinkle moved this task from Watching to Perf recommendation on the Performance-Team (Radar) board.Aug 18 2023, 8:03 PM
Krinkle edited projects, added Wikimedia-Performance-recommendation; removed Performance-Team (Radar).Aug 18 2023, 8:42 PM
Diskdance updated the task description. (Show Details)Oct 13 2023, 10:35 AM
TuukkaH subscribed.Oct 13 2023, 8:15 PM
TuukkaH mentioned this in T348599: Investigate why Toolforge www is slow.Oct 14 2023, 11:29 AM
Nullizer subscribed.Dec 4 2023, 3:31 PM
Diskdance mentioned this in T205378: Support ECH on Wikimedia servers.Jan 5 2024, 7:17 AM
Diskdance updated the task description. (Show Details)Jan 5 2024, 7:43 AM
TuukkaH added a comment.Mar 16 2025, 8:20 AM
In T238034#5655025, @Vgutierrez wrote:

We should consider QUIC and HTTP/3 adoption carefully as it implies a switch from TCP to UDP, and that could open new (D)DoS vectors and render unusable some mitigation techniques.

HTTP/3 will fall back to HTTP/2, so UDP could be disabled any time there's an issue (DDoS attack) with it.

Note that HTTP/3 would be a larger improvement for people in less well-connected countries and people with poorer connections, but also for everyone located further away from the US west coast (see e.g. T348599 for CloudVPS and Toolforge slowness in Europe).

ssingh added a parent task: T208242: Investigate using RFC 7838 Alternate Services to better optimize edge connections.May 26 2025, 3:49 PM
BCornwall subscribed.Oct 21 2025, 3:57 PM
SLyngshede-WMF subscribed.Oct 22 2025, 7:25 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits