v5.16.0

Chore

• Add Keep-Alive to removed headers in RemoveHopByHopHeaders in #2983
• Chore: bump github.com/miekg/dns from 1.1.58 to 1.1.59 by @dependabot in #2980
• Chore: bump github.com/refraction-networking/utls from 1.6.3 to 1.6.4 by @dependabot in #2969
• Chore: bump github.com/jhump/protoreflect from 1.15.6 to 1.16.0 by @dependabot in #2968
• Chore: bump google.golang.org/grpc from 1.62.1 to 1.63.2 by @dependabot in #2967
• Chore: bump golang.org/x/net from 0.22.0 to 0.24.0 by @dependabot in #2964
• Chore: bump lukechampine.com/blake3 from 1.2.1 to 1.2.2 by @dependabot in #2963
• Chore: bump github.com/go-playground/validator/v10 from 10.19.0 to 10.20.0 by @dependabot in #2991
• Chore: bump google.golang.org/protobuf from 1.33.1-0.20240408130810-98873a205002 to 1.34.0 by @dependabot in #2990
• Chore: bump github.com/quic-go/quic-go from 0.42.0 to 0.43.0 by @dependabot in #2989
• Chore: bump github.com/refraction-networking/utls from 1.6.4 to 1.6.5 by @dependabot in #2993
• Chore: bump lukechampine.com/blake3 from 1.2.2 to 1.3.0 by @dependabot in #2992
• Chore: bump github.com/pion/transport/v2 from 2.2.4 to 2.2.5 by @dependabot in #2988
• Chore: bump golang.org/x/sync from 0.6.0 to 0.7.0 by @dependabot in #2962

Full Changelog: v5.15.3...v5.16.0

v5.15.3

New Features

• feat: RandomStrategy AliveOnly by @mkmark in #2850
• Improve container image tags and timestamp by @Qusic in #2757
• Add delay_auth_write to Socks5 Client Advanced Config in #2933
• Add MaxMin TLS version support in TLS Setting by in #2925

Fixes

• fix(conf): add Windows support for Unix Domain Socket by @yin1999 in #2826
• Add GeoDomain to DNS Nameserver in JSONv5 by @karelrooted in #2711
• fix multiarch buildah command by @Qusic in #2943

Chore

• Chore: bump golang.org/x/crypto from 0.17.0 to 0.21.0 by @dependabot in #2914
• Allow setting permission on CopyFile helper in #2921
• Fix unsafe math rand usage in #2926
• Chore: bump github.com/miekg/dns from 1.1.57 to 1.1.58 by @dependabot in #2916
• Chore: bump github.com/golang/protobuf from 1.5.3 to 1.5.4 by @dependabot in #2928
• Chore: bump github.com/go-playground/validator/v10 from 10.16.0 to 10.19.0 by @dependabot in #2927
• Chore: bump google.golang.org/grpc from 1.59.0 to 1.62.1 by @dependabot in #2917
• Chore: bump golang.org/x/net from 0.19.0 to 0.22.0 by @dependabot in #2915
• Chore: bump github.com/refraction-networking/utls from 1.5.4 to 1.6.3 by @dependabot in #2899
• Chore: bump github.com/go-chi/chi/v5 from 5.0.10 to 5.0.12 by @dependabot in #2894
• Chore: bump github.com/jhump/protoreflect from 1.15.3 to 1.15.6 by @dependabot in #2871
• Add support to allow tls=0 in vmess:// subscription in #2930
• Chore: bump github.com/quic-go/quic-go from 0.41.0 to 0.42.0 by @dependabot in #2938

New Contributors

• @mkmark made their first contribution in #2850
• @karelrooted made their first contribution in #2711
• @Qusic made their first contribution in #2757

Full Changelog: v5.14.1...v5.15.3

v5.15.1

New Features

• feat: RandomStrategy AliveOnly by @mkmark in #2850
• Improve container image tags and timestamp by @Qusic in #2757
• Add delay_auth_write to Socks5 Client Advanced Config in #2933
• Add MaxMin TLS version support in TLS Setting by in #2925

Fixes

• fix(conf): add Windows support for Unix Domain Socket by @yin1999 in #2826
• Add GeoDomain to DNS Nameserver in JSONv5 by @karelrooted in #2711

Chore

• Chore: bump golang.org/x/crypto from 0.17.0 to 0.21.0 by @dependabot in #2914
• Allow setting permission on CopyFile helper in #2921
• Fix unsafe math rand usage in #2926
• Chore: bump github.com/miekg/dns from 1.1.57 to 1.1.58 by @dependabot in #2916
• Chore: bump github.com/golang/protobuf from 1.5.3 to 1.5.4 by @dependabot in #2928
• Chore: bump github.com/go-playground/validator/v10 from 10.16.0 to 10.19.0 by @dependabot in #2927
• Chore: bump google.golang.org/grpc from 1.59.0 to 1.62.1 by @dependabot in #2917
• Chore: bump golang.org/x/net from 0.19.0 to 0.22.0 by @dependabot in #2915
• Chore: bump github.com/refraction-networking/utls from 1.5.4 to 1.6.3 by @dependabot in #2899
• Chore: bump github.com/go-chi/chi/v5 from 5.0.10 to 5.0.12 by @dependabot in #2894
• Chore: bump github.com/jhump/protoreflect from 1.15.3 to 1.15.6 by @dependabot in #2871
• Add support to allow tls=0 in vmess:// subscription in #2930

New Contributors

• @mkmark made their first contribution in #2850
• @karelrooted made their first contribution in #2711
• @Qusic made their first contribution in #2757

Full Changelog: v5.14.1...v5.15.1

v5.15.0

New Features

• feat: RandomStrategy AliveOnly by @mkmark in #2850
• Improve container image tags and timestamp by @Qusic in #2757

Fixes

• fix(conf): add Windows support for Unix Domain Socket by @yin1999 in #2826
• Add GeoDomain to DNS Nameserver in JSONv5 by @karelrooted in #2711

Chore

• Chore: bump golang.org/x/crypto from 0.17.0 to 0.21.0 by @dependabot in #2914
• Allow setting permission on CopyFile helper in #2921
• Add MaxMin TLS version support in TLS Setting by in #2925
• Fix unsafe math rand usage in #2926
• Chore: bump github.com/miekg/dns from 1.1.57 to 1.1.58 by @dependabot in #2916
• Chore: bump github.com/golang/protobuf from 1.5.3 to 1.5.4 by @dependabot in #2928
• Chore: bump github.com/go-playground/validator/v10 from 10.16.0 to 10.19.0 by @dependabot in #2927
• Chore: bump google.golang.org/grpc from 1.59.0 to 1.62.1 by @dependabot in #2917
• Chore: bump golang.org/x/net from 0.19.0 to 0.22.0 by @dependabot in #2915
• Chore: bump github.com/refraction-networking/utls from 1.5.4 to 1.6.3 by @dependabot in #2899
• Chore: bump github.com/go-chi/chi/v5 from 5.0.10 to 5.0.12 by @dependabot in #2894
• Chore: bump github.com/jhump/protoreflect from 1.15.3 to 1.15.6 by @dependabot in #2871
• Add support to allow tls=0 in vmess:// subscription in #2930

New Contributors

• @mkmark made their first contribution in #2850
• @karelrooted made their first contribution in #2711
• @Qusic made their first contribution in #2757

Full Changelog: v5.14.1...v5.15.0

v5.14.1

Security Update

• Fixed an encrypted traffic's malleable vulnerability that allow integrity corruption by an attacker with a privileged network position to silently drop segments of traffic from an encrypted traffic stream. Thanks Ellis Fenske for reporting this vulnerability.

-----> ⚠️ Important Message ⚠️<-----

This update includes security fix recommended for all users.

-----> ⚠️ 重要消息 ⚠️<-----

本更新含适用于所有用户的安全更新。

Chore

• Chore: bump github.com/cloudflare/circl from 1.3.3 to 1.3.7 by @dependabot in #2847
• Chore: bump github.com/quic-go/quic-go from 0.40.0 to 0.41.0 by @dependabot in #2856

v5.14.0 User Preview

Security Update

• Fixed an encrypted traffic's malleable vulnerability that allow integrity corruption by an attacker with a privileged network position to silently drop segments of traffic from an encrypted traffic stream. Thanks Ellis Fenske for reporting this vulnerability.

-----> ⚠️ Important Message ⚠️<-----

This update includes security fix recommended for all users.

-----> ⚠️ 重要消息 ⚠️<-----

本更新含适用于所有用户的安全更新。

v5.13.0 User Preview

New Features

• Subscription Manager Add Subscription Support in #2778
  • CN EN Documents have been updated.
  • It currently have a limited support for different subscription documents. Contributions are welcome.

Chores

• Chore: bump github.com/pion/transport/v2 from 2.2.1 to 2.2.4 by @dependabot in #2784
• Chore: bump golang.org/x/sys from 0.14.0 to 0.15.0 by @dependabot in #2789
• Chore: bump golang.org/x/crypto from 0.15.0 to 0.16.0 by @dependabot in #2790
• Chore: bump golang.org/x/net from 0.18.0 to 0.19.0 by @dependabot in #2791

Full Changelog: v5.12.1...v5.13.0

v5.12.1

New Features

• Shadowsocks2022 Client Support in #2767
  • CN EN Documents have been updated.
  • Updated protocol implemention after v5.12.0 release: Shadowsocks2022 Client Implementation Improvements in #2770
• Apply DomainStrategy to outbound target by @Vigilans in #2553
• Add DomainStrategy to JSONv5 outbound by @57a4c324e742 in #2550

Fixes

• Fix: empty usage message with undefined flag (reopen) by @heimoshuiyu in #2761
• fix: unexpected path in httpugprade by @ghosx in #2773

Chores

• Chore: bump golang.org/x/sys from 0.13.0 to 0.14.0 by @dependabot in #2741
• Chore: bump github.com/miekg/dns from 1.1.56 to 1.1.57 by @dependabot in #2760
• Chore: bump golang.org/x/net from 0.17.0 to 0.18.0 by @dependabot in #2751
• Chore: bump golang.org/x/sync from 0.4.0 to 0.5.0 by @dependabot in #2744
• Chore: bump github.com/gorilla/websocket from 1.5.0 to 1.5.1 by @dependabot in #2742
• Chore: bump github.com/go-playground/validator/v10 from 10.15.5 to 10.16.0 by @dependabot in #2743

New Contributors

• @57a4c324e742 made their first contribution in #2550
• @ghosx made their first contribution in #2773

Full Changelog: v5.12.0...v5.12.1

v5.12.0 User Preview

New Features

• Shadowsocks2022 Client Support in #2767
  • CN EN Documents have been updated.
• Apply DomainStrategy to outbound target by @Vigilans in #2553
• Add DomainStrategy to JSONv5 outbound by @57a4c324e742 in #2550

Fixes

• Fix: empty usage message with undefined flag (reopen) by @heimoshuiyu in #2761

Chores

• Chore: bump golang.org/x/sys from 0.13.0 to 0.14.0 by @dependabot in #2741
• Chore: bump github.com/miekg/dns from 1.1.56 to 1.1.57 by @dependabot in #2760
• Chore: bump golang.org/x/net from 0.17.0 to 0.18.0 by @dependabot in #2751
• Chore: bump golang.org/x/sync from 0.4.0 to 0.5.0 by @dependabot in #2744
• Chore: bump github.com/gorilla/websocket from 1.5.0 to 1.5.1 by @dependabot in #2742
• Chore: bump github.com/go-playground/validator/v10 from 10.15.5 to 10.16.0 by @dependabot in #2743

New Contributors

• @57a4c324e742 made their first contribution in #2550

Full Changelog: v5.11.0...v5.12.0

v5.11.0 User Preview

New Features

• Tun Feat: add sniffing for TUN by @AkinoKaede in #2733
  • CN EN Documents have been updated.

Fixes

• fix: set TTL for incoming UDP IP packets from TUN with PacketAddr dispatcher by @EHfive in #2732

Chore

• Chore: bump github.com/quic-go/quic-go from 0.39.3 to 0.40.0 by @dependabot in #2735

Full Changelog: v5.10.1...v5.11.0