HTTP/2
HTTP/2 and CONTINUATION Flood
·2348 words·12 mins
network
security vulnerability
HTTP/2
This article mainly introduces the HTTP/2 protocol and its CONTINUATION Flood problem. The article shows how to parse the Frame structure in Http2-related code through the golang.org/x/net source code, and analyzes in detail the three security risks of the CONTINUATION Flood attack and the corresponding solutions.