Replacement for Civetweb #46758
Comments
cfriedt
added
area: Networking
RFC
|
Just putting this out there for some early feedback, since we have a PR to remove civetweb already. @mbolivar, @beriberikix, @rlubos I'm not really sure which option is better, TBH. An HTTP server as a module has been problematic in the past, but a custom one could be a fair amount of work with all of the "nice to have" features. OTOH, an HTTP server that has been around for a long time has been vetted, but if a custom one were created it could be tuned to work with Zephyr quite well, tests could be added for everything from functionality to CVEs to performance. If there are alternatives that are better than Merecat, it would be great to have them added to the table. |
cfriedt
changed the title
|
Approximate state machine for single-threaded "select" model (really uses poll) |
|
Here's a use case that might help in scoping - browser-based device setup. Common for Wi-Fi consumer IoT product, the typical flow is the product tells the consumer to look for the device's local network, connect to an IP or DNS-SD address and enter their network credentials (loosely described here.) The requirements are fairly modest as the server tends to be simple, typically with minimal static HTML and CSS embedded into the webpage and some way to interact with the OS (ex. store credentials via the Settings subsystem.) Often times these pages are not encrypted but being able to serve them via HTTPS is recommended. |
|
Additional ideas: Would it make sense to support an optional FS or other way to serve binary assets? For developer convenience I can imagine someone wanting a way to upload assets like HTML, CSS, JS & images into a "directory" and simply point the server to it ala Adding a shell would be a nice-to-have, like the ability to start/stop/clear cache, etc. CBOR for the RESTful aspects would be a nice-to-have. Other typical RESTful API features, like authentication (OAuth, SASL) should be explicitly out of scope but noted somewhere in the RFC. CivetWeb also includes an HTTP client - is that in scope or needed? X.509 in scope? |
|
@beriberikix - generally agree with every point you have made, and ❤️ the idea of browser-based device setup / provisioning.
Absolutely - I'll elaborate on the FS option in the RFC.
Shell would be nice, but we could also use the browser for that. Mentioned already, but both of those options could be made available via Kconfig - i.e. either web, shell, or both.
OAuth for sure - thanks for mentioning that. I think there must be a library available that we could pull in.
Mentioned as well - I originally thought that was out of scope, because it isn't part of a sample application. However, an HTTP client would probably be smart even to just make the testsuite efficient, so I think there is a definite argument for it.
For sure - I used the term mutual authentication, but X.509 is better. Will adjust the RFC - thank you for the input! |
So far we have not included any Zephyr-specific code that is written in C++. I am not convinced this is a good idea and, in any case, it would require acceptance at the TSC level. While I completely understand how C++17 can help develop something like a web server, I'd rather see C++ bindings to a C-written server to avoid imposing C++ on anyone. |
Note that Zephyr already has a simple HTTP client library: https://github.com/zephyrproject-rtos/zephyr/blob/main/subsys/net/lib/http/http_client.c
Do you plan to use TLS sockets? Any concerns at this point? |
@carlescufi My main motivation for using C++ would just be for quick bring up (natively). Given that the lingua franca of Zephyr is C, the API bindings for a custom HTTP impl would also most certainly have to be in C. |
|
Why not just complete the POSIX networking API and let existing network libraries do the rest of the work? I've been trying to port a Boost.ASIO-based application to Zephyr and it's mostly just missing some POSIX APIs and defines. I wrote a hacky, not-for-production-use shim to paper over the missing APIs and it mostly works. Not saying everyone should do this, I was just trying to demo stuff. |
Perfect - would be great to leverage that :-)
I think it makes sense to use whatever TLS implementation the project intends to support, and there may have been talk of changing that IIRC. Edit: I checked and it was specifically talk about adopting the PSA Crypto API |
At the dev review (or what is the TSC meeting?) that was more or less the agreed direction. I.e. rather than go through the exercise of trying to integrate a 3rd-party server, simply tailor one precisely to Zephyr's needs and leverage existing code. |
|
Hi, I recently upgraded to zephyr 3.1 and noticed the deprecation warning on civetweb which we use in our product in a similar fashion as described here (first time setup, configuration, ...). I wanted to let you know that we have modified civetweb to support https. |
|
Are there any updates for the replacement of CivetWeb? @nvincent-vossloh I took a look onto your modified CivetWeb. Where / how do you handle TLS? |
|
Notes from Network Forum 2022-07-26:
This cannot be a free-time thing (HTTP is fairly critical for an IoT RTOS), and we would prefer to have some company support. |
|
Additional Notes from Network Forum 2022-07-26:
|
There are no updates yet. |
The civetweb modifications for TLS on zephyr are on our civetweb fork https://github.com/SiemaApplications/civetweb/commits/zephyr The instantiation of the server using TLS is in a private repository, so obviously I cannot give you the exact code. However the commit which introduced https instead of http is atomic and should be easily understandable : civetweb_tls_instance.diff.zip, I have removed the private key from the diff, even though they are for dev purposes only. |
|
Hello everyone, Thank you all for pointing on this topic. I was previously a maintainer for Civetweb and there was two major problems with it:
But! I've begun working on my own WebSocket Server Implementation for Zephyr. You can take a look at websocket_server branch in my Zephyr fork.
There are still many todo's also marked in code by me. There are s some great and some suboptimal SW architecture decisions. But! Everybody wanting to participate is welcome to pull request in my fork. At the end it will flow to zephyr under apache license anyway. Any feedback is welcome. |
@Nukersson - would you be interested in being a collaborator or perhaps maintainer for a purpose-built HTTP server? I cannot make this a priority with work atm, although I think it's quite important and have some interest in seeing it happen. I'll check out your |
Hello nad thank you. I am interested in collaboration to http server dev. But maintaining it will be for me currently too much due to private reasons. Thank you l. |
|
Hello.
With Zephyr v3.2 the support and maintenance of CivetWeb is stopped and there is currently no support for an alternative HTTP web server with similar functionality as CivetWeb: REST API, WebSockets, HTTPS / TLS / Secure WebSockets, ... |
|
Some additional notes from the Networking Forum 2022-10-04 https://bit.ly/3ruOUWX |
|
Was fairly disappointed to see Civetweb disappear in 3.2, as it is a requirement for the Kestrel BMC. Currently stuck on 2.x / 3.1.x until a Web stack is available again. We need HTTP and websockets for the BMC functionality. |
|
For anyone needing a temporary fix to get their Web applications running on Zephyr 3.2.x in the interim, this patch reenables the integration. Tested to work on ppc64el. 🎄 🎁 |
|
This seems like a decent starting point for HTTP/2 conformance. https://github.com/summerwind/h2spec There really are not a lot of freely available http conformance Test suites. |
|
Heh... just thought of something. This would make a great GSoC project 😁 |
|
Copying / pasting from Discord: GSoC Project Idea: Replacement for CivetWeb + Conformance / Test Suites The main benefit to the Zephyr community is that we would have a Designed-For-Zephyr (TM) scalable HTTP server that is maintained in-tree. Part of the challenge with CivetWeb is that it was maintained separately as a module that needed a lot of attention and integration work with the upstream CivetWeb. Designed-for-Zephyr has a lot of interesting implications:
Aside from transposing and subsequently passing conformance tests for HTTP, extra challenges would be
There are several resources that can be used - e.g. Zephyr's JSON, http client, and websocket client libraries, mvedTLS, ZIP implementation, etc. I would most likely provide the skeleton like what was done with Thrift. And it should go without saying, bragging rights would be pretty substantial, writing the HTTP server used on a 1st-class IoT RTOS like Zephyr. Mentor(s):
|
|
Added to the project wiki |
|
@cfriedt Can you provide a brief status update for this? Will it be ready for the 3.4 release? |
@jgl-meta - Judging by the wiki and by the GSoC timeline, it will not be ready. Please push it to 3.5 https://github.com/zephyrproject-rtos/zephyr/wiki/Release-Management |
|
Just to add to the list of considerations: gRPC. While not entirely on-topic, it does use HTTP/2 as a transport, so would presumably need at least some considerations from the HTTP server implementation. Link to specs: https://github.com/grpc/grpc/blob/master/doc/PROTOCOL-HTTP2.md |
Maybe? I would like to see if @Emna-Rekik would like to fix some of the integration issues. I have little to no bandwidth to do this in the immediate future. Given that 3.6.0 should be released in February, I could maybe try to find some time for it during the holidays, while I'm supposed to not work and spend more time with family. |
I am only asking since we keep listing this as one of the goals for a given release, but we keep missing it and pushing it to the next release. Another option could be to just remove the milestone altogether and just get it in once it is ready. |
I suggest that holidays are not used for this and we remove the milestone. It is ready when it is ready. |
|
Hi everyone, My team develops Mongoose for many years. As you could see from the Github repo, it is an active project, and we make efforts to keep it issue-free. We would be happy to maintain Mongoose for Zephyr, and guarantee almost-zero ongoing issues with it, like we do for the Mongoose project itself. We'd be happy to provide support for users, too. Mongoose has everything an IoT developer might need - including professional device dashboard with OTA support, etc. It is our bread and butter to provide a state of the art embedded web server starting from 2004. One of the upcoming features will be native built-in TLS 1.3 support, optimised for low RAM usage and quick handshake. However, Mongoose is dual licensed: GPLv2/commercial. It is not BSD/MIT/Apache. Is that a show stopper? Would it be possible to have Mongoose as an alternative for those who choose to use it and OK with the license? |
Introduction
This (previously an RFC) is intended to be discussed by network subsystem maintainers, the TSC, and existing users of the Civetweb module.
The replacement for Civetweb must be ready for LTSv3 (Civetweb was available in LTSv2, and we should have a suitable replacement for LTSv3). However, ideally, this would be completed as soon as v3.3.
Comments & corrections are welcome.
Problem description
Civetweb has been a bit of a pain point for a while due to lack of regular module maintainership. There is also a minor technical shortcoming in that it does not directly support TLS.
The module has been deprecated (#46061) and likely will be removed shortly (e.g. #46746).
However, HTTP is fairly important - some might even say it should be a first-class citizen - not simply for demo purposes, but also for production systems.
With that in mind, we may want to consider providing a suitable alternative to support the following sample applications:
In order to maintain feature parity with Civetweb (as supported within Zephyr) the requirements for a replacement HTTP server are:
CVE details and Additional "nice to have" features are discussed in
Detailed RFC.Proposed change
This RFC proposes to adopt one of the two following options:
Detailed RFC
Additional Details
Aside from the features required for parity, there are a number of "nice to have" features for a replacement HTTP server.
Previously discovered exploits in Civetweb that have affected Zephyr are listed below:
Comparisons with other Web Servers
There are some readily available comparisons of various HTTP servers. E.g. Wikipedia, thttpd site. Mongoose can probably be swapped with Civetweb for comparison purposes, and the same for
thttpdandMerecat.Tabular comparison
Note:
-should be interpreted as "not yet but eventually yes".TLDR / Summary
Proposed change (Detailed)
It does not make a lot of sense to go into detail about adding another HTTP module to Zephyr that simply tracks a third-party repository. We have done that before. It is an option.
Details of focus on proposal of purpose-built HTTP solution for Zephyr
General Design
std::string_viewstring_view: (pointer, size) for constant stringsunordered_map<string_view, string_view>unordered_map<string_view, resource_obj>CONFIG_POSIX_FSCompressed Resources in Memory (CRiMe)
CONFIG_HTTP_WEB_ROOT="/path/to/dir"xxd/pythonREST Support
Filesystem Support
CONFIG_POSIX_FS/wwwon an SD card and immediately serve them as resources/www) conflicts with a CRiMe object, which has priority?URI Priority
Ordering configurable? It may be desireable to have FS resources override CRiMe 🤷
Dependencies
Both options can be implemented in such a way that they do not have external dependencies.
Concerns and Unresolved Questions
Alternatives
See previous comparisons
Action Items
The text was updated successfully, but these errors were encountered: