wwqgtxx
0dc5e3051d
feat: add mTLS support for client & server
...
`certificate` and `private-key` for proxies
`client-auth-type` and `client-auth-cert` for listeners
2025-09-20 00:41:39 +08:00
wwqgtxx
57e14e5b62
chore: cleanup internal ca using
2025-09-13 14:13:01 +08:00
eWloYW8
d2395fb43a
fix: allow disabling ALPN by setting an empty array ( #2225 )
2025-08-25 11:31:21 +08:00
wwqgtxx
a1c7881229
chore: rebuild udp dns resolve
...
Test / test (1.20, macos-13) (push) Waiting to run
Test / test (1.20, macos-latest) (push) Waiting to run
Test / test (1.20, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.20, windows-latest) (push) Waiting to run
Test / test (1.21, macos-13) (push) Waiting to run
Test / test (1.21, macos-latest) (push) Waiting to run
Test / test (1.21, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.21, windows-latest) (push) Waiting to run
Test / test (1.22, macos-13) (push) Waiting to run
Test / test (1.22, macos-latest) (push) Waiting to run
Test / test (1.22, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.22, windows-latest) (push) Waiting to run
Test / test (1.23, macos-13) (push) Waiting to run
Test / test (1.23, macos-latest) (push) Waiting to run
Test / test (1.23, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.23, windows-latest) (push) Waiting to run
Test / test (1.24, macos-13) (push) Waiting to run
Test / test (1.24, macos-latest) (push) Waiting to run
Test / test (1.24, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.24, windows-latest) (push) Waiting to run
Test / test (1.20, ubuntu-latest) (push) Failing after 1s
Test / test (1.21, ubuntu-latest) (push) Failing after 1s
Test / test (1.22, ubuntu-latest) (push) Failing after 1s
Test / test (1.23, ubuntu-latest) (push) Failing after 1s
Test / test (1.24, ubuntu-latest) (push) Failing after 1s
Trigger CMFA Update / trigger-CMFA-update (push) Failing after 1s
The DNS resolution of the overall UDP part has been delayed to the connection initiation stage. During the rule matching process, it will only be triggered when the IP rule without no-resolve is matched.
For direct and wireguard outbound, the same logic as the TCP part will be followed, that is, when direct-nameserver (or DNS configured by wireguard) exists, the result of the matching process will be discarded and the domain name will be re-resolved. This re-resolution logic is only effective for fakeip.
For reject and DNS outbound, no resolution is required.
For other outbound, resolution will still be performed when the connection is initiated, and the domain name will not be sent directly to the remote server at present.
2025-05-27 10:45:26 +08:00
wwqgtxx
c6d7ef8cb8
feat: add ech-opts for anytls/shadowsocks/trojan/vmess/vless outbound
2025-05-17 13:53:21 +08:00
wwqgtxx
7e7016b567
chore: removed routing-mark and interface-name of the group, please set it directly on the proxy instead
Test / test (1.20, macos-13) (push) Waiting to run
Test / test (1.20, macos-latest) (push) Waiting to run
Test / test (1.20, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.20, windows-latest) (push) Waiting to run
Test / test (1.21, macos-13) (push) Waiting to run
Test / test (1.21, macos-latest) (push) Waiting to run
Test / test (1.21, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.21, windows-latest) (push) Waiting to run
Test / test (1.22, macos-13) (push) Waiting to run
Test / test (1.22, macos-latest) (push) Waiting to run
Test / test (1.22, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.22, windows-latest) (push) Waiting to run
Test / test (1.23, macos-13) (push) Waiting to run
Test / test (1.23, macos-latest) (push) Waiting to run
Test / test (1.23, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.23, windows-latest) (push) Waiting to run
Test / test (1.24, macos-13) (push) Waiting to run
Test / test (1.24, macos-latest) (push) Waiting to run
Test / test (1.24, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.24, windows-latest) (push) Waiting to run
Test / test (1.20, ubuntu-latest) (push) Failing after 1s
Test / test (1.21, ubuntu-latest) (push) Failing after 1s
Test / test (1.22, ubuntu-latest) (push) Failing after 1s
Test / test (1.23, ubuntu-latest) (push) Failing after 1s
Test / test (1.24, ubuntu-latest) (push) Failing after 1s
Trigger CMFA Update / trigger-CMFA-update (push) Failing after 1s
2025-05-01 02:13:35 +08:00
WeidiDeng
468cfc3cc4
fix: set sni to servername if not specified for trojan outbound ( #1991 )
Test / test (1.20, macos-13) (push) Waiting to run
Test / test (1.20, macos-latest) (push) Waiting to run
Test / test (1.20, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.20, windows-latest) (push) Waiting to run
Test / test (1.21, macos-13) (push) Waiting to run
Test / test (1.21, macos-latest) (push) Waiting to run
Test / test (1.21, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.21, windows-latest) (push) Waiting to run
Test / test (1.22, macos-13) (push) Waiting to run
Test / test (1.22, macos-latest) (push) Waiting to run
Test / test (1.22, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.22, windows-latest) (push) Waiting to run
Test / test (1.23, macos-13) (push) Waiting to run
Test / test (1.23, macos-latest) (push) Waiting to run
Test / test (1.23, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.23, windows-latest) (push) Waiting to run
Test / test (1.24, macos-13) (push) Waiting to run
Test / test (1.24, macos-latest) (push) Waiting to run
Test / test (1.24, ubuntu-24.04-arm) (push) Waiting to run
Test / test (1.24, windows-latest) (push) Waiting to run
Test / test (1.20, ubuntu-latest) (push) Failing after 1s
Test / test (1.21, ubuntu-latest) (push) Failing after 1s
Test / test (1.22, ubuntu-latest) (push) Failing after 1s
Test / test (1.23, ubuntu-latest) (push) Failing after 1s
Test / test (1.24, ubuntu-latest) (push) Failing after 1s
Trigger CMFA Update / trigger-CMFA-update (push) Failing after 1s
2025-04-24 19:50:16 +08:00
wwqgtxx
d5243adf89
chore: better global-client-fingerprint handle
Test / test (1.20, ubuntu-latest) (push) Failing after 1s
Test / test (1.21, ubuntu-latest) (push) Failing after 1s
Test / test (1.22, ubuntu-latest) (push) Failing after 1s
Test / test (1.23, ubuntu-latest) (push) Failing after 1s
Test / test (1.24, ubuntu-latest) (push) Failing after 1s
Trigger CMFA Update / trigger-CMFA-update (push) Failing after 1s
Test / test (1.20, macos-13) (push) Has been cancelled
Test / test (1.20, macos-latest) (push) Has been cancelled
Test / test (1.20, ubuntu-24.04-arm) (push) Has been cancelled
Test / test (1.20, windows-latest) (push) Has been cancelled
Test / test (1.21, macos-13) (push) Has been cancelled
Test / test (1.21, macos-latest) (push) Has been cancelled
Test / test (1.21, ubuntu-24.04-arm) (push) Has been cancelled
Test / test (1.21, windows-latest) (push) Has been cancelled
Test / test (1.22, macos-13) (push) Has been cancelled
Test / test (1.22, macos-latest) (push) Has been cancelled
Test / test (1.22, ubuntu-24.04-arm) (push) Has been cancelled
Test / test (1.22, windows-latest) (push) Has been cancelled
Test / test (1.23, macos-13) (push) Has been cancelled
Test / test (1.23, macos-latest) (push) Has been cancelled
Test / test (1.23, ubuntu-24.04-arm) (push) Has been cancelled
Test / test (1.23, windows-latest) (push) Has been cancelled
Test / test (1.24, macos-13) (push) Has been cancelled
Test / test (1.24, macos-latest) (push) Has been cancelled
Test / test (1.24, ubuntu-24.04-arm) (push) Has been cancelled
Test / test (1.24, windows-latest) (push) Has been cancelled
2025-04-19 02:04:09 +08:00
wwqgtxx
6236cb1cf0
chore: cleanup trojan code
2025-04-19 01:32:55 +08:00
wwqgtxx
63e66f49ca
chore: cleanup trojan code
2025-04-18 16:59:28 +08:00
wwqgtxx
30d90d49f0
chore: update option checks to use IsZeroOptions
2025-04-17 21:06:55 +08:00
wwqgtxx
76052b5b26
fix: grpc in trojan not apply client-fingerprint
2025-04-17 12:54:36 +08:00
wwqgtxx
cedb36df5f
chore: using SetupContextForConn to reduce the DialContext cannot be cancelled
Trigger CMFA Update / trigger-CMFA-update (push) Failing after 1s
2025-04-12 11:19:03 +08:00
wwqgtxx
7de24e26b4
fix: StreamGunWithConn not synchronously close the incoming net.Conn
2025-04-03 23:41:24 +08:00
wwqgtxx
622d99d000
chore: rebuild outdated proxy auto close mechanism
2025-04-03 22:42:32 +08:00
wwqgtxx
f805a9f4c6
chore: cleaned up some weird code
2024-11-26 10:04:41 +08:00
xishang0128
eb985b002e
chore: restful api displays more information
Trigger CMFA Update / trigger-CMFA-update (push) Failing after 2s
2024-11-21 22:50:54 +08:00
wwqgtxx
a4e84f0479
chore: better apply tcp keepalive to listeners
2024-09-25 15:10:53 +08:00
wwqgtxx
0b6ae6ffb8
feat: add ss-opts for trojan outbound like trojan-go's shadowsocks config
...
https://github.com/MetaCubeX/mihomo/issues/1269
2024-05-22 09:00:59 +08:00
H1JK
5f7053c519
feat: Add v2ray httpupgrade fast open support
2023-11-24 13:02:00 +08:00
H1JK
bb9ad6cac0
fix: Trojan websocket header panic
2023-11-20 23:36:22 +08:00
wwqgtxx
17c9d507be
chore: hello mihomo
2023-11-03 21:58:21 +08:00
wwqgtxx
ceac5bfaa4
feat: add v2ray-http-upgrade support
2023-11-02 11:11:35 +08:00
wwqgtxx
d48f9c2a6c
chore: rebuild ca parsing
2023-09-22 14:45:34 +08:00
Larvan2
73fa79bf3f
feat: configurable TCPKeepAlive interval
2023-09-02 16:45:16 +08:00
wwqgtxx
cc42d787d4
feat: add mptcp for all proxy
2023-08-09 16:57:39 +08:00
Hellojack
a82745f544
chore: Remove legacy XTLS support ( #645 )
...
* chore: Remove legacy XTLS support
* chore: Rename function
2023-07-16 23:26:07 +08:00
wwqgtxx
033f902ace
chore: more context passing in outbounds
2023-05-18 13:15:08 +08:00
wwqgtxx
92cc268209
chore: proxyDialer can limited support old dial function
2023-04-11 12:51:24 +08:00
wwqgtxx
9afcb7071f
feat: support dialer-proxy config for all outbound
2023-04-10 11:20:28 +08:00
wwqgtxx
99f84b8a66
chore: make all net.Conn wrapper can pass through N.ExtendedConn
2023-04-02 22:24:46 +08:00
H1JK
dca98b7aa1
fix: REALITY with gRPC transport
2023-03-10 10:01:05 +08:00
H1JK
76a8fe3839
feat: Support REALITY protocol
2023-03-08 17:18:46 +08:00
wwqgtxx
7d524668e0
chore: support TFO for outbounds
2023-02-24 13:53:44 +08:00
Larvan2
967254d9ca
chore: move global-utls-client snippets to components\tls
2023-02-07 17:24:14 +08:00
Larvan2
05ca819823
feat: add global-client-fingerprint.
...
* Available: "chrome","firefox","safari","ios","random","none".
* global-client-fingerprint will NOT overwrite the proxy's client-fingerprint setting when "client-fingerprint: none".
2023-02-07 01:26:56 +08:00
Larvan2
2ee0f634e6
feat: Add utls for modifying client's fingerprint.
...
Currently only support TLS transport in TCP/GRPC/WS/HTTP for VLESS/Vmess and trojan-grpc.
2023-02-01 22:36:05 +08:00
wwqgtxx
50832aab47
chore: decrease direct depend on the sing package
2023-01-16 10:50:31 +08:00
H1JK
d1565bb46f
refactor: Implement extended IO
2023-01-16 09:42:03 +08:00
Skyxim
b6b6413d04
refactor: replace experimental.fingerprints with custom-certificates and Change the fingerprint verification logic to SSL pinning
2023-01-14 21:08:06 +08:00
3andero
804cff8c55
fix: skip-cert-verify is true by default ( #333 )
...
* fix: skip-cert-verify is true by default
* fix: format
* fix: typo
Co-authored-by: 3andero <3andero@github.com>
Co-authored-by: Hellojack <106379370+H1JK@users.noreply.github.com>
2023-01-13 09:55:01 +08:00
Hellojack
be6142aa43
feat: VLESS support packet encodings ( #334 )
...
* adjust: Do not use XTLS on H2 connections
* feat: VLESS support XUDP fullcone NAT
* fix: VLESS with PacketAddr does not work
* fix: VLESS XUDP crash
2023-01-11 22:01:15 +08:00
wwqgtxx
daf0b23805
fix: some safeConnClose forget using original
2022-12-22 12:31:45 +08:00
wwqgtxx
22414ce399
chore: relay support tuic
2022-12-20 00:11:02 +08:00
wwqgtxx
7496d9c114
chore: rebuild relay
2022-12-19 21:34:07 +08:00
wwqgtxx
57592ee840
chore: better safeConnClose
2022-12-16 22:16:02 +08:00
wwqgtxx
bffb0573a6
fix: safeConnClose not working
2022-12-13 13:20:40 +08:00
Skyxim
99effb051b
feat: add ip-version param
2022-08-28 13:41:43 +08:00
Skyxim
a8ce283727
feat: add fingerprint param
2022-07-11 13:42:28 +08:00
Skyxim
ab8e9e7d7a
fix: skip-cert-verify not work
2022-07-11 12:37:27 +08:00
