mirrors/uquic
1
0
Fork 0
mirror of https://github.com/refraction-networking/uquic.git synced 2025-04-03 04:07:35 +03:00
Code Issues Projects Releases Packages Wiki Activity
uquic/README.md
Gaukas Wang 9e1965d28b
bug: ci taking too long to run (#7) 
* breaking: separate CI build and test workflows

Separate CI build and test into individual workflows.
Add matrix-based CI build and test for better coverage.
Update build status badges.

* fix: ginko_test format and condition
2023-08-05 13:04:13 -06:00

3.9 KiB
Raw Blame History

uTLS drawing uQUIC

Go Build Status Ginkgo Test Status godoc

uQUIC is a fork of quic-go, which provides Initial Packet fingerprinting resistance and other features. While the handshake is still performed by quic-go, this library provides interface to customize the unencrypted Initial Packet which may reveal fingerprint-able information.

Golang 1.20+ is required.

If you have any questions, bug reports or contributions, you are welcome to publish those on GitHub. You may also reach out to one of the maintainers via gaukas.wang@colorado.edu.

Development is still in progress and we welcome any contributions adding new features or fixing extant bugs.

Development in Progress

Development Roadmap

  • Customize Initial Packet
    • QUIC Header
    • QUIC Frame (#3)
      • QUIC Crypto Frame
      • QUIC Padding Frame
      • QUIC Ping Frame
      • QUIC ACK Frame
    • TLS ClientHello Message (by uTLS)
      • QUIC Transport Parameters (in a uTLS extension)
  • Customize Initial ACK behavior (#1, quic-go#4007)
  • Customize Initial Retry behavior (#2)
  • Add preset QUIC parrots
    • Google Chrome parrot
    • Mozilla Firefox parrot
    • Apple Safari parrot
    • Microsoft Edge parrot

Features

Initial Packet fingerprinting resistance

uQUIC provides a mechanism to customize the Initial Packet, which is unencrypted and is almost unique to every QUIC client implementation. We provide an interface to customize the Initial Packet and makes the fingerprinting of QUIC clients harder.

Build a QUIC Spec

A QUIC Spec sets parameters and policies for uQUIC in establishing a QUIC connection.

func getQUICSpec() *uquic.QUICSpec {
	return &uquic.QUICSpec{
		InitialPacketSpec: uquic.InitialPacketSpec{
			SrcConnIDLength:        3,
			DestConnIDLength:       8,
			InitPacketNumberLength: 1,
			InitPacketNumber:       1,
			ClientTokenLength:      0,
			FrameOrder: uquic.QUICFrames{
				&uquic.QUICFrameCrypto{
					Offset: 0,
					Length: 0,
				},
			},
		},
		ClientHelloSpec: getClientHelloSpec(),
        UDPDatagramMinSize: 1357,
	}
}

func getClientHelloSpec() *utls.ClientHelloSpec {
	return &utls.ClientHelloSpec{
        // skipped a few mandatory fields, see uTLS for details
		Extensions: []utls.TLSExtension{
			// skipped a few mandatory extensions, see uTLS for details
			&utls.QUICTransportParametersExtension{
				TransportParameters: utls.TransportParameters{
					utls.InitialMaxStreamDataBidiRemote(0x100000),
					utls.InitialMaxStreamsBidi(16),
					utls.MaxDatagramFrameSize(1200),
					utls.MaxIdleTimeout(30000),
					utls.ActiveConnectionIDLimit(8),
					&utls.GREASEQUICBit{},
					&utls.VersionInformation{
						ChoosenVersion: utls.VERSION_1,
						AvailableVersions: []uint32{
							utls.VERSION_GREASE,
							utls.VERSION_1,
						},
						LegacyID: true,
					},
					utls.InitialMaxStreamsUni(16),
					&utls.GREASE{},
					utls.InitialMaxStreamDataBidiLocal(0xc00000),
					utls.InitialMaxStreamDataUni(0x100000),
					utls.InitialSourceConnectionID([]byte{}),
					utls.MaxAckDelay(20),
					utls.InitialMaxData(0x1800000),
					&utls.DisableActiveMigration{},
				},
			},
		},
	}
}