v5.48.0

New Features

• Wireguard Add TCP Listener support for wireguard outbound in #3651
  • Document for EN has been updated.
• Stun Nat Type Testing in #3646
• Better server failure detection and PreserveSourceIPPortWhenDestNATMa… in #3648
• Improve API instance support in #3643
• feat: grpc: allow configurable keepalive and initial windows size by @leo9800 in #3654

Fixes

• Fix HTTP/1.1 CONNECT response close by @dyhkwong in #3652
• Fix shadowsocks2022 concurrent map read and map write by @dyhkwong in #3653

Chores

• Chore: bump github.com/pion/dtls/v3 from 3.0.10 to 3.0.11 by @dependabot[bot] in #3647
• Chore: bump golang.org/x/sys from 0.41.0 to 0.42.0 by @dependabot[bot] in #3644
• Chore: bump golang.org/x/sync from 0.19.0 to 0.20.0 by @dependabot[bot] in #3645
• Chore: bump golang.org/x/crypto from 0.48.0 to 0.49.0 by @dependabot[bot] in #3649
• Chore: bump golang.org/x/net from 0.51.0 to 0.52.0 by @dependabot[bot] in #3650
• Chore: bump google.golang.org/grpc from 1.79.2 to 1.79.3 by @dependabot[bot] in #3655

Full Changelog: v5.47.0...v5.48.0

v5.47.0

Fixes

• Generalize IP address parsing in TUN stack options by @urugang in #3641

Chores

• Chore: bump actions/download-artifact from 7 to 8 by @dependabot[bot] in #3629
• Chore: bump actions/upload-artifact from 6 to 7 by @dependabot[bot] in #3628
• Chore: bump google.golang.org/grpc from 1.79.1 to 1.79.2 by @dependabot[bot] in #3639
• Chore: bump golang.org/x/net from 0.50.0 to 0.51.0 by @dependabot[bot] in #3627

New Contributors

• @urugang made their first contribution in #3641

Full Changelog: v5.46.0...v5.47.0

v5.46.0

New Features

• Add support for enrollment links in tlsmirror in #3623
• Add Wireguard Outbound (unreleased) in #3624

Fixes

• update hysteria2 by @JimmyHuang454 in #3625

Full Changelog: v5.45.1...v5.46.0

v5.45.1

New Features

• Add sticky choice option for leastping in #3621

Fixes

• Fix stuck in httpupgrade by @Fangliding in #3617

Chores

• Chore: bump github.com/go-chi/chi/v5 from 5.2.4 to 5.2.5 by @dependabot[bot] in #3611
• Chore: bump github.com/pires/go-proxyproto from 0.8.1 to 0.11.0 by @dependabot[bot] in #3616
• Chore: bump golang.org/x/crypto from 0.47.0 to 0.48.0 by @dependabot[bot] in #3615
• Chore: bump google.golang.org/grpc from 1.78.0 to 1.79.1 by @dependabot[bot] in #3619
• Chore: bump golang.org/x/net from 0.49.0 to 0.50.0 by @dependabot[bot] in #3613
• Chore: bump github.com/miekg/dns from 1.1.70 to 1.1.72 by @dependabot[bot] in #3605
• Chore: bump github.com/jhump/protoreflect from 1.17.0 to 1.18.0 by @dependabot[bot] in #3601

Full Changelog: v5.44.1...v5.45.1

v5.45.0

New Features

• Add sticky choice option for leastping in #3621

Fixes

• Fix stuck in httpupgrade by @Fangliding in #3617

Chores

• Chore: bump github.com/go-chi/chi/v5 from 5.2.4 to 5.2.5 by @dependabot[bot] in #3611
• Chore: bump github.com/pires/go-proxyproto from 0.8.1 to 0.11.0 by @dependabot[bot] in #3616
• Chore: bump golang.org/x/crypto from 0.47.0 to 0.48.0 by @dependabot[bot] in #3615
• Chore: bump google.golang.org/grpc from 1.78.0 to 1.79.1 by @dependabot[bot] in #3619
• Chore: bump golang.org/x/net from 0.49.0 to 0.50.0 by @dependabot[bot] in #3613
• Chore: bump github.com/miekg/dns from 1.1.70 to 1.1.72 by @dependabot[bot] in #3605
• Chore: bump github.com/jhump/protoreflect from 1.17.0 to 1.18.0 by @dependabot[bot] in #3601

Full Changelog: v5.44.1...v5.45.0

v5.44.1

Security Updates

• uTLS: bundled library updated to v1.8.2 for Chrome120 imitation profile identification.
• Golang: Update golang toolchain to v1.25.6, which fixed an vulnerable (tls.Config).Clone function.

Fixes

• avoid DNS leakage with gRPC transports by @leo9800 in #3587
• Dynamic address length calculation in shadowsocks udp encoding in #3588

Chores

• Chore: bump golang.org/x/crypto from 0.46.0 to 0.47.0 by @dependabot[bot] in #3595
• Chore: bump golang.org/x/net from 0.48.0 to 0.49.0 by @dependabot[bot] in #3594
• Chore: bump github.com/miekg/dns from 1.1.69 to 1.1.70 by @dependabot[bot] in #3592
• Chore: bump github.com/go-chi/chi/v5 from 5.2.3 to 5.2.4 by @dependabot[bot] in #3596

Full Changelog: v5.44.0...v5.44.1

v5.44.0

Security Update

• uTLS: bundled library updated to v1.8.2 for Chrome120 imitation profile identification.

Fixes

• avoid DNS leakage with gRPC transports by @leo9800 in #3587
• Dynamic address length calculation in shadowsocks udp encoding in #3588

Chores

• Chore: bump golang.org/x/crypto from 0.46.0 to 0.47.0 by @dependabot[bot] in #3595
• Chore: bump golang.org/x/net from 0.48.0 to 0.49.0 by @dependabot[bot] in #3594
• Chore: bump github.com/miekg/dns from 1.1.69 to 1.1.70 by @dependabot[bot] in #3592

New Contributors

• @leo9800 made their first contribution in #3587

Full Changelog: v5.43.0...v5.44.0

v5.43.0

Fixes

• fix issue #3563: There is a buffer overflow bug in Shadowsocks UDP packet encoding by @fengweiyuan in #3564
• Fix custom tls setting for tlsmirror roundtripper enrollment in #3584

##Chores

• Chore: bump actions/download-artifact from 6 to 7 by @dependabot[bot] in #3576
• Chore: bump actions/upload-artifact from 5 to 6 by @dependabot[bot] in #3574
• Chore: bump golang.org/x/net from 0.47.0 to 0.48.0 by @dependabot[bot] in #3567
• Chore: bump github.com/miekg/dns from 1.1.68 to 1.1.69 by @dependabot[bot] in #3572
• Chore: bump google.golang.org/protobuf from 1.36.10 to 1.36.11 by @dependabot[bot] in #3575
• Chore: bump google.golang.org/grpc from 1.77.0 to 1.78.0 by @dependabot[bot] in #3581
• Chore: bump github.com/go-playground/validator/v10 from 10.28.0 to 10.30.1 by @dependabot[bot] in #3582

New Contributors

• @fengweiyuan made their first contribution in #3564

Full Changelog: v5.42.0...v5.43.0

v5.42.0

New Features

• Add TLSMirror bootstrap enrollment and self enrollment feature in #3541
• TLSMirror Inverse Role Request Tripper Enrollment Server Support by #3551

Chores

• Chore: bump github/codeql-action from 3 to 4 by @dependabot[bot] in #3535
• Chore: bump actions/download-artifact from 5 to 6 by @dependabot[bot] in #3543
• Chore: bump actions/upload-artifact from 4 to 5 by @dependabot[bot] in #3542
• Chore: bump golangci/golangci-lint-action from 8 to 9 by @dependabot[bot] in #3550
• Chore: bump golang.org/x/crypto from 0.43.0 to 0.45.0 by @dependabot[bot] in #3552
• Chore: bump actions/checkout from 5 to 6 by @dependabot[bot] in #3553
• Chore: bump google.golang.org/grpc from 1.76.0 to 1.77.0 by @dependabot[bot] in #3554

Full Changelog: v5.41.0...v5.42.0

v5.41.0

This is a maintenance release.

This release includes an important fix for utls, update are recommended for all users.

Chores

• Chore: bump github.com/refraction-networking/utls from 1.8.0 to 1.8.1 by @dependabot[bot] in #3540
• Chore: bump golang.org/x/net from 0.44.0 to 0.46.0 by @dependabot[bot] in #3539
• Chore: bump github.com/quic-go/quic-go from 0.54.1 to 0.55.0 by @dependabot[bot] in #3531
• Chore: bump google.golang.org/grpc from 1.75.1 to 1.76.0 by @dependabot[bot] in #3533
• Chore: bump github.com/go-playground/validator/v10 from 10.27.0 to 10.28.0 by @dependabot[bot] in #3534

Full Changelog: v5.40.0...v5.41.0