Skip to main content

GURT Protocol

GURT (version 1.0.0) is a TCP-based application protocol designed as an HTTP-like alternative with built-in TLS 1.3 encryption. It serves as the foundation for the Gurted ecosystem, enabling secure communication between clients and servers using the gurt:// URL scheme.

Overview

GURT provides a familiar HTTP-like syntax while offering security through mandatory TLS 1.3 encryption. Unlike HTTP where encryption is optional (HTTPS), all GURT connections are encrypted by default.

Key Features

  • HTTP-like syntax with familiar methods (GET, POST, PUT, DELETE, etc.)
  • Built-in required TLS 1.3 encryption for all connections
  • Binary and text data support
  • Status codes compatible with HTTP semantics
  • Default port: 4878
  • ALPN identifier: GURT/1.0

URL Scheme

GURT uses the gurt:// URL scheme:

gurt://example.com/path
gurt://192.168.1.100:4878/api/data
gurt://localhost:4878/hello

The protocol automatically defaults to port 4878.

Communication Flow

Every GURT session must begin with a HANDSHAKE request:

HANDSHAKE / GURT/1.0.0\r\n
host: example.com\r\n
user-agent: GURT-Client/1.0.0\r\n
\r\n

Server responds with protocol confirmation:

GURT/1.0.0 101 SWITCHING_PROTOCOLS\r\n
gurt-version: 1.0.0\r\n
encryption: TLS/1.3\r\n
alpn: GURT/1.0\r\n
server: GURT/1.0.0\r\n
date: Wed, 01 Jan 2020 00:00:00 GMT\r\n
\r\n

Message Format

Request Structure

METHOD /path GURT/1.0.0\r\n
header-name: header-value\r\n
content-length: 123\r\n
user-agent: GURT-Client/1.0.0\r\n
\r\n
[message body]

Components:

  • Method line: METHOD /path GURT/1.0.0
  • Headers: Lowercase names, colon-separated values
  • Header terminator: \r\n\r\n
  • Body: Optional message content

Response Structure

GURT/1.0.0 200 OK\r\n
content-type: application/json\r\n
content-length: 123\r\n
server: GURT/1.0.0\r\n
date: Wed, 01 Jan 2020 00:00:00 GMT\r\n
\r\n
[response body]

Components:

  • Status line: GURT/1.0.0 <code> <message>
  • Headers: Lowercase names, required for responses
  • Body: Optional response content

HTTP Methods

GURT supports all standard HTTP methods:

MethodPurposeBody Allowed
GETRetrieve resourceNo
POSTCreate/submit dataYes
PUTUpdate/replace resourceYes
DELETERemove resourceNo
HEADGet headers onlyNo
OPTIONSGet allowed methodsNo
PATCHPartial updateYes
HANDSHAKEProtocol handshakeNo

Status Codes

GURT uses HTTP-compatible status codes:

Success (2xx)

  • 200 OK - Request successful
  • 201 CREATED - Resource created
  • 202 ACCEPTED - Request accepted for processing
  • 204 NO_CONTENT - Success with no response body

Protocol (1xx)

  • 101 SWITCHING_PROTOCOLS - Handshake successful

Client Error (4xx)

  • 400 BAD_REQUEST - Invalid request format
  • 401 UNAUTHORIZED - Authentication required
  • 403 FORBIDDEN - Access denied
  • 404 NOT_FOUND - Resource not found
  • 405 METHOD_NOT_ALLOWED - Method not supported
  • 408 TIMEOUT - Request timeout
  • 413 TOO_LARGE - Request too large
  • 415 UNSUPPORTED_MEDIA_TYPE - Unsupported content type

Server Error (5xx)

  • 500 INTERNAL_SERVER_ERROR - Server error
  • 501 NOT_IMPLEMENTED - Method not implemented
  • 502 BAD_GATEWAY - Gateway error
  • 503 SERVICE_UNAVAILABLE - Service unavailable
  • 504 GATEWAY_TIMEOUT - Gateway timeout

Security

All connections must use TLS 1.3 for encryption. This means you have to generate and use a valid TLS certificate for your GURT server.

Setup for Production

For production deployments, you'll need to install GurtCA from the Github repository for Gurted, and use it to request certificates for your domain.

  1. Generate production certificates with GurtCA:

    gurtca request yourdomain.real --output ./certs

  2. Deploy with production certificates:

    cargo run --release serve --cert ./certs/yourdomain.real.crt --key ./certs/yourdomain.real.key --host 0.0.0.0 --port 4878

Be careful, your .key file is the private key, do not share it with anyone!

Development Environment Setup

To set up a development environment for GURT, follow these steps:

  1. Install mkcert:

    # Windows (with Chocolatey)
    choco install mkcert

    # Or download from: https://github.com/FiloSottile/mkcert/releases

  2. Install local CA in system:

    mkcert -install

    This installs a local CA in your system certificate store.

  3. Generate localhost certificates:

    cd gurted/protocol/cli
    mkcert localhost 127.0.0.1 ::1

    This creates:

    • localhost+2.pem (certificate)
    • localhost+2-key.pem (private key)

  4. Start GURT server with certificates:

    gurty serve --cert localhost+2.pem --key localhost+2-key.pem

Install Gurty, the official GURT server tool, on the Gurted.com download page

Protocol Limits

ParameterLimit
Maximum message size10 MB
Default connection timeout10 seconds
Default request timeout30 seconds
Default handshake timeout5 seconds
Maximum connection pool size10 connections
Pool idle timeout300 seconds

Example Session

Complete GURT communication example:

# Client connects and sends handshake
HANDSHAKE / GURT/1.0.0\r\n
host: example.com\r\n
user-agent: GURT-Client/1.0.0\r\n
\r\n

# Server confirms protocol
GURT/1.0.0 101 SWITCHING_PROTOCOLS\r\n
gurt-version: 1.0.0\r\n
encryption: TLS/1.3\r\n
alpn: GURT/1.0\r\n
server: GURT/1.0.0\r\n
date: Wed, 14 Aug 2025 12:00:00 GMT\r\n
\r\n

# All further communication is encrypted
# Client sends JSON data
POST /api/data GURT/1.0.0\r\n
host: example.com\r\n
content-type: application/json\r\n
content-length: 17\r\n
user-agent: GURT-Client/1.0.0\r\n
\r\n
{"foo":"bar","x":1}

# Server responds with JSON
GURT/1.0.0 200 OK\r\n
content-type: application/json\r\n
content-length: 16\r\n
server: GURT/1.0.0\r\n
date: Wed, 14 Aug 2025 12:00:01 GMT\r\n
\r\n
{"result":"ok"}

Domain Resolution

GURT integrates with Gurted's custom DNS system:

Direct IP Access

gurt://192.168.1.100:4878/
gurt://localhost:4878/api

Domain Resolution

gurt://example.real/  # Resolves via Gurted DNS

The Gurted DNS server resolves domains in the format name.tld to IP addresses, enabling human-readable domain names for GURT services. This is done automatically by your GURT browser and is documented in the DNS System documentation.

Implementation

GURT is implemented in Rust with the following components:

  • Protocol Library: Core protocol implementation, reusable as a Rust crate
  • CLI Tool (Gurty): Server setup and management
  • Godot Extension: Browser integration for Flumi