speed-cli 1.0.0

Comprehensive multi-protocol network performance testing CLI (TCP, UDP, QUIC, HTTP/1.1, HTTP/2, h2c, HTTP/3)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227

# speed-cli

This tool provides **comprehensive network performance measurements** across **TCP, UDP, and HTTP** protocols. Built with Rust, the test suite optimizes for **maximum throughput** to measure the network's available bandwidth.

## Why Another Network Testing Tool?

It's difficult to have one tool that tests your network conditions between two devices in a way that is representative of real-world traffic. Most tools focus and excel at specific aspects (e.g. iperf3 with TCP/UDP, speed test cools for HTTP throughput/latency). However, applications use a mixture of protocols with various characteristics. This tool is a framework to create synthetic but realistic network loads between any two devices, on any platform using [Rust](https://www.rust-lang.org/).

## Features

- **Multi-protocol support**: TCP, UDP, raw QUIC, HTTP/1.1, HTTP/2, h2c, HTTP/3
- **High-performance**: Built with Rust, optimized for high throughput and efficient resource usage
- **Comprehensive metrics**: throughput (goodput/wire), latency percentiles, jitter, packet loss
- **WiFi / latency-under-load stress test**: probes latency while saturating the link, detects spikes, and graphs latency over time (terminal + HTML)
- **Exporting**: CBOR for re-importable data; HTML for self-contained rendered reports
- **Cross-platform**: Optimized for popular platforms (Linux, macOS, Windows) and architectures (x86_64, ARM)

## Installation

### Homebrew (macOS / Linux)

```sh
brew install justin13888/tap/speed-cli
```

### crates.io (`cargo install`)

Requires a Rust toolchain (install via [rustup](https://rustup.rs/)).

```sh
RUSTFLAGS="--cfg reqwest_unstable" cargo install speed-cli
```

> The `RUSTFLAGS` is required and not optional: speed-cli enables reqwest's
> HTTP/3 client, which reqwest gates behind the `reqwest_unstable` cfg. Without
> it the build fails fast with a message telling you to set exactly this flag.
> (When building from a clone the repo's `.cargo/config.toml` sets it for you —
> see [From source](#from-source) — but `cargo install` doesn't read that file.)

### Prebuilt binaries

No toolchain needed. Download a binary for your platform from the
[latest release](https://github.com/justin13888/speed-cli/releases/latest) —
Linux/macOS tarballs and Windows zips, each with a SHA-256 checksum. Extract it
and put `speed-cli` on your `PATH`.

### From source

```bash
# Prerequisite: Rust installed via rustup (https://rustup.rs/).
# Cloning and building from the repo picks up .cargo/config.toml automatically,
# so no RUSTFLAGS is needed here:
git clone https://github.com/justin13888/speed-cli
cd speed-cli
cargo install --path .

# Installing straight from git does NOT read that config, so set the cfg yourself:
RUSTFLAGS="--cfg reqwest_unstable" cargo install --git https://github.com/justin13888/speed-cli
```

The binary name is `speed-cli`. Note, for the HTTPS server, you may provide your own TLS certificate and key files via `--cert` and `--key`, or else a dummy cert will be used. A convenience script `./gen-cert.sh` is provided to generate self-signed certificates for testing purposes. This is not suitable for production use.

> Note on HTTPS measurements: the client always skips TLS certificate validation (`danger_accept_invalid_certs`) so that self-signed test servers work out of the box. Reported HTTPS throughput and latency therefore exclude the cost of certificate-chain verification, OCSP, and revocation checks. If you need numbers that reflect production TLS overhead, validate against a real cert with another tool.

## Quick Start

Note: If you're using HTTPS server, ensure you have `cert.pem` and `key.pem` files in the current directory or specify them with `--cert` and `--key` flags.

The server publishes a single JSON **control endpoint** (default port
`9000`). Every enabled protocol binds its own OS-assigned ephemeral
port; clients discover those ports — and verify wire-protocol
compatibility — by handshaking against the control port. The control
port is the only port you normally choose.

```sh
# Start server (control endpoint on 9000; every test listener ephemeral)
speed-cli server --all                                 # all protocols
speed-cli server --protocol tcp --protocol udp         # selected protocols only
speed-cli server --all --control-port 9100             # pick a different control port
speed-cli server --all -b 192.168.1.100                # bind a specific interface

# Run a single-protocol client test (only --server + --control-port needed)
speed-cli client --protocol tcp   -s <server-ip>       # raw TCP
speed-cli client --protocol udp   -s <server-ip>       # UDP blaster
speed-cli client --protocol quic  -s <server-ip>       # raw QUIC streams
speed-cli client --protocol http1 -s <server-ip>       # HTTP/1.1
speed-cli client --protocol http2 -s <server-ip>       # HTTP/2 (TLS)
speed-cli client --protocol h2c   -s <server-ip>       # HTTP/2 cleartext
speed-cli client --protocol http3 -s <server-ip>       # HTTP/3 (over QUIC)

# WiFi latency-under-load stress test (UDP): idle baseline + latency under saturation
speed-cli client --protocol udp --type latency-load -s <server-ip>

# Longer test, more connections, export to CBOR
speed-cli client --protocol http1 -s 192.168.1.100 -d 60 -c 4 -e results.cbor

# Run the full multi-protocol suite (drives every advertised protocol)
speed-cli suite -s <server-ip>
speed-cli suite -s <server-ip> --control-port 9100 -e suite.cbor

# Print a previously saved result
speed-cli report -f results.cbor
```

For more advanced usage, refer to help:

```sh
speed-cli -h
speed-cli client -h
speed-cli server -h

# Verbosity / color are global: -v (debug), -vv (trace), -q (quiet), --color never
# Shell completions and man pages:
speed-cli completions zsh > _speed-cli   # bash | zsh | fish | powershell | elvish
speed-cli man --out-dir ./man
```

### Exporting Results

Add a `-e` or `--export` flag to `client` commands to save results.
The data format is CBOR — there is no JSON export. HTML is available
as a rendered single-file report for visual inspection.

```bash
# Export raw data (re-importable)
speed-cli client --protocol <p> -s <server-ip> -e results.cbor

# Export rendered HTML report
speed-cli client --protocol <p> -s <server-ip> -e results.html

# No extension implies CBOR
speed-cli client --protocol <p> -s <server-ip> -e results
```

Other extensions (`.json`, `.txt`, …) are rejected with a clear error.

## WiFi / Latency-Under-Load Stress Test

WiFi cards and the AP on the other end produce their worst latency *under load* —
airtime contention, driver/AP queue buildup (bufferbloat), power-save wakeups,
background scans and rate adaptation all show up as latency spikes that an idle
ping never sees. The `latency-under-load` test (UDP only) exposes them:

```sh
# Captures a short idle baseline, then probes latency at ~200 Hz while
# saturating the link in both directions.
speed-cli client --protocol udp --type latency-load -s <server-ip>

# Aliases: --type wifi, --type latency-under-load
# Export an HTML report with the interactive-looking latency chart:
speed-cli client --protocol udp --type wifi -s <server-ip> -d 30 -e wifi.html
```

How to read the output:

- **Latency over time** — a time-vs-latency chart (Unicode sparkline in the
  terminal, an SVG in the HTML report) so spikes are visible at a glance. The
  HTML chart overlays the idle baseline against the under-load series.
- **Spikes** — a verdict (`Clean` / `Occasional` / `Frequent`) from adaptive
  spike detection: any probe exceeding `max(median × 3, median + 20 ms)` counts
  as a spike. Frequent or severe spikes point at a misbehaving card / AP.
- **Tail RTT (p95 / p99 / p99.9)** — the tail is where WiFi latency hides; the
  median can look healthy while the tail tells the real story.
- **Bufferbloat** — the median and p99 latency *inflation* from idle to under
  load. A large jump is the classic bufferbloat signature.

Loopback (`-s 127.0.0.1`) is useful for a smoke test but won't show real spikes —
point it across the actual WiFi link to a server on the wired side to see them.
Use `--target-rate-mbps <N>` to probe latency under a fixed load instead of full
saturation.

## Developer Notes

### HTTP Test Endpoints

When running server with HTTP, the following endpoints are available:

- `GET /download?size=<total_size>&chunk_size=<chunk_size>` - Download test data
- `POST /upload` - Upload test endpoint
- `GET /latency` - Minimal latency test
- `GET /info` - Server information
- `GET /health` - Server health check

### UDP Test Implementation

The UDP test uses a small, iperf3-u-style "blaster" protocol: a fixed-rate sender, no retransmissions, server-side counting of received / lost / out-of-order packets and RFC 3550 interarrival jitter. Use `--target-rate-mbps <N>` to pace at a specific rate, or leave it at the default `0` to saturate. Pacing uses `tokio::time::sleep` and is therefore approximate above ~100 Mbps; for higher rates either accept the bursting or shape externally with `tc fq`. A QUIC-based congestion-controlled UDP mode is on the roadmap.

## Future Improvements

*There are several features/improvements that are planned.*

- [ ] OCI Container images using all popular base images (necessary for representative performance testing)
- [ ] Kubernetes support (for server)
- [x] QUIC support (HTTP/3 and raw QUIC streams)
- [ ] gRPC support?
- [ ] Rich HTML report generation
- [ ] Support for more niche protocols (e.g. SFTP, SMB)
- [ ] Remove SSH server spin-up (remote SSH server downloads binary, or through client, and runs server based on what's specified by client)
- [ ] Mobile app support (iOS/Android)
- [ ] Firm up IPV6 support (which has different NAT characteristics)

## Development

This repo uses [mise](https://mise.jdx.dev) for tooling/tasks and [hk](https://hk.jdx.dev)
for git hooks. See [CONTRIBUTING.md](CONTRIBUTING.md) for details.

```bash
mise install && mise run setup   # install pinned tools + git hooks
mise run check                   # fmt, clippy -D warnings, typos, unused-deps
mise run test                    # nextest + doctests
mise run bench                   # criterion benchmarks
```

## Contributing

Contributions are welcome! This tool aims to be the most comprehensive network testing suite available. Areas for improvement:

- Improve internal overhead of HTTP tests (e.g. to test against 25+ Gbps links)
- Additional protocol support (QUIC, HTTP/3, SFTP, SMB)
- More advanced topology analysis
- Real-time monitoring capabilities
- Web interface for results visualization
- Integration with network monitoring systems

## License

This project is licensed under the [Apache License 2.0](LICENSE).