wwqgtxx
0dc5e3051d
feat: add mTLS support for client & server
...
`certificate` and `private-key` for proxies
`client-auth-type` and `client-auth-cert` for listeners
2025-09-20 00:41:39 +08:00
wwqgtxx
57e14e5b62
chore: cleanup internal ca using
2025-09-13 14:13:01 +08:00
wwqgtxx
a1c7881229
chore: rebuild udp dns resolve
...
Test / test (1.20, macos-13) (push) Waiting to run
Test / test (1.20, macos-latest) (push) Waiting to run
Test / test (1.20, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.20, windows-latest) (push) Waiting to run
Test / test (1.21, macos-13) (push) Waiting to run
Test / test (1.21, macos-latest) (push) Waiting to run
Test / test (1.21, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.21, windows-latest) (push) Waiting to run
Test / test (1.22, macos-13) (push) Waiting to run
Test / test (1.22, macos-latest) (push) Waiting to run
Test / test (1.22, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.22, windows-latest) (push) Waiting to run
Test / test (1.23, macos-13) (push) Waiting to run
Test / test (1.23, macos-latest) (push) Waiting to run
Test / test (1.23, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.23, windows-latest) (push) Waiting to run
Test / test (1.24, macos-13) (push) Waiting to run
Test / test (1.24, macos-latest) (push) Waiting to run
Test / test (1.24, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.24, windows-latest) (push) Waiting to run
Test / test (1.20, ubuntu-latest) (push) Failing after 1s
Test / test (1.21, ubuntu-latest) (push) Failing after 1s
Test / test (1.22, ubuntu-latest) (push) Failing after 1s
Test / test (1.23, ubuntu-latest) (push) Failing after 1s
Test / test (1.24, ubuntu-latest) (push) Failing after 1s
Trigger CMFA Update / trigger-CMFA-update (push) Failing after 1s
The DNS resolution of the overall UDP part has been delayed to the connection initiation stage. During the rule matching process, it will only be triggered when the IP rule without no-resolve is matched.
For direct and wireguard outbound, the same logic as the TCP part will be followed, that is, when direct-nameserver (or DNS configured by wireguard) exists, the result of the matching process will be discarded and the domain name will be re-resolved. This re-resolution logic is only effective for fakeip.
For reject and DNS outbound, no resolution is required.
For other outbound, resolution will still be performed when the connection is initiated, and the domain name will not be sent directly to the remote server at present.
2025-05-27 10:45:26 +08:00
wwqgtxx
7e7016b567
chore: removed routing-mark and interface-name of the group, please set it directly on the proxy instead
Test / test (1.20, macos-13) (push) Waiting to run
Test / test (1.20, macos-latest) (push) Waiting to run
Test / test (1.20, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.20, windows-latest) (push) Waiting to run
Test / test (1.21, macos-13) (push) Waiting to run
Test / test (1.21, macos-latest) (push) Waiting to run
Test / test (1.21, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.21, windows-latest) (push) Waiting to run
Test / test (1.22, macos-13) (push) Waiting to run
Test / test (1.22, macos-latest) (push) Waiting to run
Test / test (1.22, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.22, windows-latest) (push) Waiting to run
Test / test (1.23, macos-13) (push) Waiting to run
Test / test (1.23, macos-latest) (push) Waiting to run
Test / test (1.23, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.23, windows-latest) (push) Waiting to run
Test / test (1.24, macos-13) (push) Waiting to run
Test / test (1.24, macos-latest) (push) Waiting to run
Test / test (1.24, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.24, windows-latest) (push) Waiting to run
Test / test (1.20, ubuntu-latest) (push) Failing after 1s
Test / test (1.21, ubuntu-latest) (push) Failing after 1s
Test / test (1.22, ubuntu-latest) (push) Failing after 1s
Test / test (1.23, ubuntu-latest) (push) Failing after 1s
Test / test (1.24, ubuntu-latest) (push) Failing after 1s
Trigger CMFA Update / trigger-CMFA-update (push) Failing after 1s
2025-05-01 02:13:35 +08:00
wwqgtxx
cedb36df5f
chore: using SetupContextForConn to reduce the DialContext cannot be cancelled
Trigger CMFA Update / trigger-CMFA-update (push) Failing after 1s
2025-04-12 11:19:03 +08:00
wwqgtxx
b2d2890866
chore: cleanup resolveUDPAddr code
2025-04-09 18:02:12 +08:00
wwqgtxx
f805a9f4c6
chore: cleaned up some weird code
2024-11-26 10:04:41 +08:00
xishang0128
eb985b002e
chore: restful api displays more information
Trigger CMFA Update / trigger-CMFA-update (push) Failing after 2s
2024-11-21 22:50:54 +08:00
wwqgtxx
a4e84f0479
chore: better apply tcp keepalive to listeners
2024-09-25 15:10:53 +08:00
wwqgtxx
17c9d507be
chore: hello mihomo
2023-11-03 21:58:21 +08:00
Dreamacro
1faad73381
fix: socks5 udp associate
2023-10-16 09:27:55 +08:00
wwqgtxx
bf619d8586
fix: socks5 udp not working on loopback
2023-09-22 23:33:24 +08:00
wwqgtxx
d48f9c2a6c
chore: rebuild ca parsing
2023-09-22 14:45:34 +08:00
Larvan2
73fa79bf3f
feat: configurable TCPKeepAlive interval
2023-09-02 16:45:16 +08:00
wwqgtxx
cc42d787d4
feat: add mptcp for all proxy
2023-08-09 16:57:39 +08:00
wwqgtxx
033f902ace
chore: more context passing in outbounds
2023-05-18 13:15:08 +08:00
wwqgtxx
92cc268209
chore: proxyDialer can limited support old dial function
2023-04-11 12:51:24 +08:00
wwqgtxx
9afcb7071f
feat: support dialer-proxy config for all outbound
2023-04-10 11:20:28 +08:00
wwqgtxx
7d524668e0
chore: support TFO for outbounds
2023-02-24 13:53:44 +08:00
Skyxim
b6b6413d04
refactor: replace experimental.fingerprints with custom-certificates and Change the fingerprint verification logic to SSL pinning
2023-01-14 21:08:06 +08:00
3andero
804cff8c55
fix: skip-cert-verify is true by default ( #333 )
...
* fix: skip-cert-verify is true by default
* fix: format
* fix: typo
Co-authored-by: 3andero <3andero@github.com>
Co-authored-by: Hellojack <106379370+H1JK@users.noreply.github.com>
2023-01-13 09:55:01 +08:00
wwqgtxx
22414ce399
chore: relay support tuic
2022-12-20 00:11:02 +08:00
wwqgtxx
7496d9c114
chore: rebuild relay
2022-12-19 21:34:07 +08:00
wwqgtxx
57592ee840
chore: better safeConnClose
2022-12-16 22:16:02 +08:00
wwqgtxx
bffb0573a6
fix: safeConnClose not working
2022-12-13 13:20:40 +08:00
wwqgtxx
88acf8e098
fix: fix bindIfaceToListenConfig() in windows force bind to an ipv4 address
2022-12-13 11:18:32 +08:00
wwqgtxx
dc3e144b6a
Merge branch 'dev' of https://github.com/Dreamacro/clash into Alpha
2022-11-12 20:43:48 +08:00
wwqgtxx
901a47318d
chore: always pass context when resolve dns
2022-11-12 13:18:36 +08:00
Skyxim
99effb051b
feat: add ip-version param
2022-08-28 13:41:43 +08:00
Dreamacro
5940f62794
Chore: http2 should use DialTLSContext and some tls handshake should with context
2022-08-13 12:35:39 +08:00
Skyxim
a8ce283727
feat: add fingerprint param
2022-07-11 13:42:28 +08:00
Skyxim
ab8e9e7d7a
fix: skip-cert-verify not work
2022-07-11 12:37:27 +08:00
Skyxim
fef9f95e65
feat: add fingerprint for tls verify
2022-07-10 20:44:24 +08:00
adlyq
de4341c8cd
Revert: "fix: proxy-groups filter logic"
...
This reverts commit 8a85c63b08
2022-04-22 18:56:35 +08:00
adlyq
8a85c63b08
fix: proxy-groups filter logic
2022-04-22 17:27:55 +08:00
risetechlab
f9cc1cc363
Fix: routing-mark option doesn't work on proxies ( #2028 )
2022-03-19 13:29:30 +08:00
bobo liu
bd2ea2b917
Feature: mark on socket ( #1705 )
2021-11-08 16:59:48 +08:00
Dreamacro
1a7830f18e
Feature: dial different NIC for all proxies ( #1714 )
2021-11-07 16:48:51 +08:00
Dreamacro
68753b4ae1
Chore: contexify ProxyAdapter ListenPacket
2021-10-15 21:44:53 +08:00
Dreamacro
4ce35870fe
Chore: remove deprecated ioutil
2021-10-09 20:35:06 +08:00
Kr328
a5b950a779
Feature: add dhcp type dns client ( #1509 )
2021-09-06 23:07:34 +08:00
Dreamacro
995aa7a8fc
Fix: remove ClientSessionCache and add NextProtos for vmess to fix #1468
2021-07-03 20:34:44 +08:00
Dreamacro
045edc188c
Style: code style
2021-06-10 14:05:56 +08:00
