a7581770ff
* chore: Guard testing functions properly We have a bunch of functions that in their doc comments say that they are for testing purposes only. This commit adds guards to those functions to make sure they are not used in production code. * More |
||
---|---|---|
.config | ||
.github | ||
fuzz | ||
hooks | ||
neqo-bin | ||
neqo-common | ||
neqo-crypto | ||
neqo-http3 | ||
neqo-qpack | ||
neqo-transport | ||
neqo-udp | ||
qns | ||
taskcluster | ||
test | ||
test-fixture | ||
.clippy.toml | ||
.codecov.yml | ||
.dockerignore | ||
.gitattributes | ||
.gitignore | ||
.pre-commit-config.yaml | ||
.rustfmt.toml | ||
.taskcluster.yml.disabled | ||
CODE_OF_CONDUCT.md | ||
Cargo.lock | ||
Cargo.toml | ||
LICENSE-APACHE | ||
LICENSE-MIT | ||
README.md | ||
SECURITY.md | ||
neqo.png | ||
neqo.svg |
README.md
Neqo, an Implementation of QUIC in Rust
To build Neqo:
cargo build
This will use a system-installed NSS library if it is new enough. (See "Build with Separate NSS/NSPR" below if NSS is not installed or it is deemed too old.)
To run test HTTP/3 programs (neqo-client
and neqo-server
):
./target/debug/neqo-server '[::]:12345'
./target/debug/neqo-client 'https://[::]:12345/'
Build with separate NSS/NSPR
You can clone NSS and NSPR into the same directory and export an
environment variable called NSS_DIR
pointing to NSS. This causes the build to
use the existing NSS checkout. However, in order to run anything that depends
on NSS, you need to set an environment as follows:
Linux
export LD_LIBRARY_PATH="$(dirname "$(find . -name libssl3.so -print | head -1)")"
macOS
export DYLD_LIBRARY_PATH="$(dirname "$(find . -name libssl3.dylib -print | head -1)")"
Note: If you did not already compile NSS separately, you need to have Mercurial (hg), installed. NSS builds require GYP and Ninja to be installed.
Debugging Neqo
QUIC logging
Enable generation of QLOG logs with:
target/debug/neqo-server '[::]:12345' --qlog-dir .
target/debug/neqo-client 'https://[::]:12345/' --qlog-dir .
You can of course specify a different directory for the QLOG files. You can upload QLOG files to qvis to visualize the flows.
Using SSLKEYLOGFILE
to decrypt Wireshark logs
You can export TLS keys by setting the SSLKEYLOGFILE
environment variable
to a filename to instruct NSS to dump keys in the
standard format
to enable decryption by Wireshark and other tools.
Using RUST_LOG effectively
As documented in the env_logger documentation,
the RUST_LOG
environment variable can be used to selectively enable log messages
from Rust code. This works for Neqo's command line tools, as well as for when Neqo is
incorporated into Gecko, although Gecko needs to be built in debug mode.
Some examples:
-
RUST_LOG=neqo_transport::dump ./mach run
lists sent and received QUIC packets and their frames' contents only.
-
RUST_LOG=neqo_transport=debug,neqo_http3=trace,info ./mach run
sets a
debug
log level fortransport
,trace
level forhttp3
, andinfo
log level for all other Rust crates, both Neqo and others used by Gecko. -
RUST_LOG=neqo=trace,error ./mach run
sets
trace
level for all modules starting withneqo
, and setserror
as minimum log level for other unrelated Rust log messages.
Trying in-development Neqo code in Gecko
In a checked-out copy of Gecko source, set [patches.*]
values for the four
Neqo crates to local versions in the root Cargo.toml
. For example, if Neqo
was checked out to /home/alice/git/neqo
, add the following lines to the root
Cargo.toml
.
[patch."https://github.com/mozilla/neqo"]
neqo-bin = { path = "/home/alice/git/neqo/neqo-bin" }
neqo-common = { path = "/home/alice/git/neqo/neqo-common" }
neqo-crypto = { path = "/home/alice/git/neqo/neqo-crypto" }
neqo-http3 = { path = "/home/alice/git/neqo/neqo-http3" }
neqo-qpack = { path = "/home/alice/git/neqo/neqo-qpack" }
neqo-transport = { path = "/home/alice/git/neqo/neqo-transport" }
neqo-udp = { path = "/home/alice/git/neqo/neqo-udp" }
Then run the following:
./mach vendor rust
Compile Gecko as usual with
./mach build
Note: Using newer Neqo code with Gecko may also require changes (likely to neqo_glue
) if
something has changed.
Connect with Firefox to local neqo-server
- Run
neqo-server
viacargo run --bin neqo-server -- 'localhost:12345' --db ./test-fixture/db
. - On Firefox, set
about:config
preferencenetwork.http.http3.alt-svc-mapping-for-testing
tolocalhost;h3=":12345"
. - Optionally enable logging via
about:logging
or profiling via https://profiler.firefox.com/. - Navigate to https://localhost:12345 and accept self-signed certificate.