src: gate all quic behind disabled-by-default compile flag #57142

jasnell · 2025-02-19T21:52:44Z

Due to quictls/openssl@93ae85b it is clear that we will need to revert back to using OpenSSL's official releases. This means we will be forced to re-implement at least part of the underlying QUIC implementation to use different crypto APIs. For that reason, this PR disables building any of the QUIC support by default and introduces a new compile time flag.

/cc @mhdawson @ljharb @mcollina @anonrig @Qard @richardlau

nodejs-github-bot · 2025-02-19T21:52:49Z

Review requested:

@nodejs/gyp

ljharb

can not review the contents, but rubberstamping based on the intentions (please ensure someone has reviewed the contents before landing tho)

mhdawson

LGTM

github-actions · 2025-02-19T23:04:18Z

Fast-track has been requested by @anonrig. Please 👍 to approve.

jasnell · 2025-02-19T23:48:14Z

Needed to push one additional change to handle the --experimental-quic CLI flag correctly. Without the compile flag it is allowed but a non-op. With the flag it becomes functional.

Due to quictls/openssl@93ae85b it is clear that we will need to revert back to using OpenSSL's official releases. This means we will be forced to re-implement at least part of the underlying QUIC implementation to use different crypto APIs. For that reason, this PR disables building any of the QUIC support by default and introduces a new compile time flag.

nodejs-github-bot · 2025-02-20T00:21:12Z

CI: https://ci.nodejs.org/job/node-test-pull-request/65335/

codecov · 2025-02-20T02:30:30Z

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 90.37%. Comparing base (f6ce486) to head (029f974).
Report is 7 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main   #57142      +/-   ##
==========================================
+ Coverage   88.54%   90.37%   +1.83%     
==========================================
  Files         665      628      -37     
  Lines      193408   184007    -9401     
  Branches    36961    35952    -1009     
==========================================
- Hits       171250   166304    -4946     
+ Misses      14795    10869    -3926     
+ Partials     7363     6834     -529

Files with missing lines	Coverage Δ
src/node_options.cc	`87.37% <ø> (ø)`
src/node_options.h	`98.32% <ø> (-0.01%)`	⬇️

... and 146 files with indirect coverage changes

joyeecheung · 2025-02-20T13:03:01Z

test/common/index.js

@@ -54,7 +54,7 @@ const noop = () => {};
 const hasCrypto = Boolean(process.versions.openssl) &&
                  !process.env.NODE_SKIP_CRYPTO;

-const hasQuic = hasCrypto && !!process.config.variables.openssl_quic;
+const hasQuic = hasCrypto && !!process.config.variables.node_quic;


Looks like something we should add to process.features when we bring it back…

Due to quictls/openssl@93ae85b it is clear that we will need to revert back to using OpenSSL's official releases. This means we will be forced to re-implement at least part of the underlying QUIC implementation to use different crypto APIs. For that reason, this PR disables building any of the QUIC support by default and introduces a new compile time flag. PR-URL: #57142 Reviewed-By: Yagiz Nizipli <[email protected]> Reviewed-By: Jordan Harband <[email protected]> Reviewed-By: Marco Ippolito <[email protected]> Reviewed-By: Michael Dawson <[email protected]> Reviewed-By: Chengzhong Wu <[email protected]> Reviewed-By: Richard Lau <[email protected]> Reviewed-By: Trivikram Kamat <[email protected]> Reviewed-By: Stephen Belanger <[email protected]> Reviewed-By: Matteo Collina <[email protected]> Reviewed-By: Joyee Cheung <[email protected]>

jasnell · 2025-02-20T14:12:38Z

Landed in 3b0fce1

Due to quictls/openssl@93ae85b it is clear that we will need to revert back to using OpenSSL's official releases. This means we will be forced to re-implement at least part of the underlying QUIC implementation to use different crypto APIs. For that reason, this PR disables building any of the QUIC support by default and introduces a new compile time flag. PR-URL: nodejs#57142 Reviewed-By: Yagiz Nizipli <[email protected]> Reviewed-By: Jordan Harband <[email protected]> Reviewed-By: Marco Ippolito <[email protected]> Reviewed-By: Michael Dawson <[email protected]> Reviewed-By: Chengzhong Wu <[email protected]> Reviewed-By: Richard Lau <[email protected]> Reviewed-By: Trivikram Kamat <[email protected]> Reviewed-By: Stephen Belanger <[email protected]> Reviewed-By: Matteo Collina <[email protected]> Reviewed-By: Joyee Cheung <[email protected]>

Due to quictls/openssl@93ae85b it is clear that we will need to revert back to using OpenSSL's official releases. This means we will be forced to re-implement at least part of the underlying QUIC implementation to use different crypto APIs. For that reason, this PR disables building any of the QUIC support by default and introduces a new compile time flag. PR-URL: #57142 Reviewed-By: Yagiz Nizipli <[email protected]> Reviewed-By: Jordan Harband <[email protected]> Reviewed-By: Marco Ippolito <[email protected]> Reviewed-By: Michael Dawson <[email protected]> Reviewed-By: Chengzhong Wu <[email protected]> Reviewed-By: Richard Lau <[email protected]> Reviewed-By: Trivikram Kamat <[email protected]> Reviewed-By: Stephen Belanger <[email protected]> Reviewed-By: Matteo Collina <[email protected]> Reviewed-By: Joyee Cheung <[email protected]>

`parallel/test-config-json-schema` compares to a generated fixture that assumes that Node.js was built with default configuration settings. Skip the test if non-default quic is enabled (`configure --with-quic`). Refs: nodejs#57016 Refs: nodejs#57142

`parallel/test-config-json-schema` compares to a generated fixture that assumes that Node.js was built with default configuration settings. Skip the test if non-default quic is enabled (`configure --with-quic`). Refs: #57016 Refs: #57142 PR-URL: #57225 Reviewed-By: Luigi Pinca <[email protected]> Reviewed-By: James M Snell <[email protected]> Reviewed-By: Colin Ihrig <[email protected]> Reviewed-By: Yagiz Nizipli <[email protected]>

Change `tools/dep_updaters/update-openssl.sh` to fetch updates from official OpenSSL. PR-URL: #57301 Refs: #57142 Reviewed-By: Yagiz Nizipli <[email protected]> Reviewed-By: Marco Ippolito <[email protected]> Reviewed-By: James M Snell <[email protected]> Reviewed-By: Joyee Cheung <[email protected]> Reviewed-By: Trivikram Kamat <[email protected]> Reviewed-By: Michael Dawson <[email protected]>

`parallel/test-config-json-schema` compares to a generated fixture that assumes that Node.js was built with default configuration settings. Skip the test if non-default quic is enabled (`configure --with-quic`). Refs: #57016 Refs: #57142 PR-URL: #57225 Reviewed-By: Luigi Pinca <[email protected]> Reviewed-By: James M Snell <[email protected]> Reviewed-By: Colin Ihrig <[email protected]> Reviewed-By: Yagiz Nizipli <[email protected]>

Update the instructions for maintaining OpenSSL in the Node.js source tree to reflect switching back from the quictls fork of OpenSSL back to official OpenSSL. PR-URL: #57413 Refs: #57301 Refs: #57142 Reviewed-By: Luigi Pinca <[email protected]> Reviewed-By: Rafael Gonzaga <[email protected]> Reviewed-By: Marco Ippolito <[email protected]> Reviewed-By: Michael Dawson <[email protected]>

`parallel/test-config-json-schema` compares to a generated fixture that assumes that Node.js was built with default configuration settings. Skip the test if non-default quic is enabled (`configure --with-quic`). Refs: #57016 Refs: #57142 PR-URL: #57225 Reviewed-By: Luigi Pinca <[email protected]> Reviewed-By: James M Snell <[email protected]> Reviewed-By: Colin Ihrig <[email protected]> Reviewed-By: Yagiz Nizipli <[email protected]>

Change `tools/dep_updaters/update-openssl.sh` to fetch updates from official OpenSSL. PR-URL: #57301 Refs: #57142 Reviewed-By: Yagiz Nizipli <[email protected]> Reviewed-By: Marco Ippolito <[email protected]> Reviewed-By: James M Snell <[email protected]> Reviewed-By: Joyee Cheung <[email protected]> Reviewed-By: Trivikram Kamat <[email protected]> Reviewed-By: Michael Dawson <[email protected]>

Update the instructions for maintaining OpenSSL in the Node.js source tree to reflect switching back from the quictls fork of OpenSSL back to official OpenSSL. PR-URL: #57413 Refs: #57301 Refs: #57142 Reviewed-By: Luigi Pinca <[email protected]> Reviewed-By: Rafael Gonzaga <[email protected]> Reviewed-By: Marco Ippolito <[email protected]> Reviewed-By: Michael Dawson <[email protected]>

`parallel/test-config-json-schema` compares to a generated fixture that assumes that Node.js was built with default configuration settings. Skip the test if non-default quic is enabled (`configure --with-quic`). Refs: #57016 Refs: #57142 PR-URL: #57225 Reviewed-By: Luigi Pinca <[email protected]> Reviewed-By: James M Snell <[email protected]> Reviewed-By: Colin Ihrig <[email protected]> Reviewed-By: Yagiz Nizipli <[email protected]>

Change `tools/dep_updaters/update-openssl.sh` to fetch updates from official OpenSSL. PR-URL: #57301 Refs: #57142 Reviewed-By: Yagiz Nizipli <[email protected]> Reviewed-By: Marco Ippolito <[email protected]> Reviewed-By: James M Snell <[email protected]> Reviewed-By: Joyee Cheung <[email protected]> Reviewed-By: Trivikram Kamat <[email protected]> Reviewed-By: Michael Dawson <[email protected]>

Update the instructions for maintaining OpenSSL in the Node.js source tree to reflect switching back from the quictls fork of OpenSSL back to official OpenSSL. PR-URL: #57413 Refs: #57301 Refs: #57142 Reviewed-By: Luigi Pinca <[email protected]> Reviewed-By: Rafael Gonzaga <[email protected]> Reviewed-By: Marco Ippolito <[email protected]> Reviewed-By: Michael Dawson <[email protected]>

Change `tools/dep_updaters/update-openssl.sh` to fetch updates from official OpenSSL. PR-URL: #57301 Refs: #57142 Reviewed-By: Yagiz Nizipli <[email protected]> Reviewed-By: Marco Ippolito <[email protected]> Reviewed-By: James M Snell <[email protected]> Reviewed-By: Joyee Cheung <[email protected]> Reviewed-By: Trivikram Kamat <[email protected]> Reviewed-By: Michael Dawson <[email protected]>

nodejs-github-bot added build Issues and PRs related to build files or the CI. needs-ci PRs that need a full CI run. tools Issues and PRs related to the tools directory. labels Feb 19, 2025

This comment was marked as outdated.

Sign in to view

anonrig approved these changes Feb 19, 2025

View reviewed changes

jasnell force-pushed the jasnell/quic-sad-face branch from fb75531 to ea2bf13 Compare February 19, 2025 22:02

This comment was marked as outdated.

Sign in to view

ljharb approved these changes Feb 19, 2025

View reviewed changes

marco-ippolito approved these changes Feb 19, 2025

View reviewed changes

mhdawson approved these changes Feb 19, 2025

View reviewed changes

mhdawson added the request-ci Add this label to start a Jenkins CI on a PR. label Feb 19, 2025

github-actions bot removed the request-ci Add this label to start a Jenkins CI on a PR. label Feb 19, 2025

This comment was marked as duplicate.

Sign in to view

anonrig added the fast-track PRs that do not need to wait for 48 hours to land. label Feb 19, 2025

legendecas approved these changes Feb 19, 2025

View reviewed changes

jasnell added author ready PRs that have at least one approval, no pending requests for changes, and a CI started. and removed author ready PRs that have at least one approval, no pending requests for changes, and a CI started. labels Feb 19, 2025

jasnell force-pushed the jasnell/quic-sad-face branch 2 times, most recently from fa8cf59 to 95bd1c3 Compare February 19, 2025 23:47

This comment was marked as outdated.

Sign in to view

jasnell added the author ready PRs that have at least one approval, no pending requests for changes, and a CI started. label Feb 19, 2025

richardlau approved these changes Feb 19, 2025

View reviewed changes

anonrig approved these changes Feb 20, 2025

View reviewed changes

jasnell force-pushed the jasnell/quic-sad-face branch from 95bd1c3 to 029f974 Compare February 20, 2025 00:20

joyeecheung approved these changes Feb 20, 2025

View reviewed changes

jasnell closed this Feb 20, 2025

marco-ippolito mentioned this pull request Feb 20, 2025

src: add config file support #57016

Closed

github-actions bot mentioned this pull request Feb 25, 2025

2025-02-26, Version 23.9.0 (Current) #57207

Merged

richardlau mentioned this pull request Feb 27, 2025

Fix --with-quic builds #57225

Closed

richardlau mentioned this pull request Mar 3, 2025

tools: switch back to official OpenSSL #57301

Merged

richardlau mentioned this pull request Mar 11, 2025

doc: update maintaining-openssl.md for openssl #57413

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

src: gate all quic behind disabled-by-default compile flag #57142

src: gate all quic behind disabled-by-default compile flag #57142

jasnell commented Feb 19, 2025 •

edited

Loading

nodejs-github-bot commented Feb 19, 2025

This comment was marked as outdated.

This comment was marked as outdated.

ljharb left a comment

mhdawson left a comment

This comment was marked as duplicate.

github-actions bot commented Feb 19, 2025

jasnell commented Feb 19, 2025

This comment was marked as outdated.

nodejs-github-bot commented Feb 20, 2025

codecov bot commented Feb 20, 2025 •

edited

Loading

joyeecheung Feb 20, 2025

jasnell commented Feb 20, 2025

src: gate all quic behind disabled-by-default compile flag #57142

src: gate all quic behind disabled-by-default compile flag #57142

Conversation

jasnell commented Feb 19, 2025 • edited Loading

nodejs-github-bot commented Feb 19, 2025

This comment was marked as outdated.

This comment was marked as outdated.

ljharb left a comment

Choose a reason for hiding this comment

mhdawson left a comment

Choose a reason for hiding this comment

This comment was marked as duplicate.

github-actions bot commented Feb 19, 2025

jasnell commented Feb 19, 2025

This comment was marked as outdated.

nodejs-github-bot commented Feb 20, 2025

codecov bot commented Feb 20, 2025 • edited Loading

Codecov Report

joyeecheung Feb 20, 2025

Choose a reason for hiding this comment

jasnell commented Feb 20, 2025

jasnell commented Feb 19, 2025 •

edited

Loading

codecov bot commented Feb 20, 2025 •

edited

Loading