github
/
Xray-core
mirror of https://github.com/XTLS/Xray-core
1
0
Fork 0
Code Issues Releases Wiki Activity
1,538 Commits
36 Branches
102 Tags
30 MiB
Commit Graph

291 Commits (main)

Author SHA1 Message Date
patterniha 9f5dcb1591
MUX: Prevent goroutine leak (#5110) 2025-09-10 00:33:19 +00:00
RPRX 845010b535
VLESS protocol: Add Reverse Proxy (4) Command and extremely simple config (#5101) 
https://github.com/XTLS/Xray-core/issues/5088#issuecomment-3263093341
 2025-09-09 14:19:12 +00:00
风扇滑翔翼 a0c63ba1cf
VMess: Returns clearer error in AuthIDDecoderHolder (#5090) 2025-09-08 14:19:17 +00:00
patterniha 197b319f9a DNS outbound: Fix some issues (#5081) 2025-09-05 08:15:16 +00:00
RPRX cbade89ab1
VLESS Encryption: Improve server-side tickets' expiration mechanism 
https://github.com/XTLS/Xray-core/pull/5067#issuecomment-3253717319
 2025-09-04 14:03:55 +00:00
RPRX d20397c15d
DispatchLink(): Fix user stats 
Fixes https://github.com/XTLS/Xray-core/pull/5076#issuecomment-3243431593
 2025-09-03 23:25:17 +00:00
RPRX 19f8907296
VLESS Encryption: Randomize seconds in ticket and simplify expiration mechanism 
https://github.com/XTLS/Xray-core/pull/5067#issuecomment-3246925902
 2025-09-02 23:37:14 +00:00
RPRX e943de5300
proxy/proxy.go: IsRAWTransport() -> IsRAWTransportWithoutSecurity() 2025-09-02 18:15:08 +00:00
yuhan6665 4064f8dd80
XTLS Vision: Refactor code to use DispatchLink() in VLESS inbound (#5076) 
* Xtls: code refactor

- Move more logic to VisionReader/Writer
- Remove XtlsWrite()
- XtlsRead now only handle splice at the outbound
- This helps VLESS inbound to have simple buf.copy() so that we can remove pipe next

* Add bufferFlushNext; Use DispatchLink() in VLESS inbound

* Use TimeoutWrapperReader; clean up timer/buffer
 2025-09-01 15:15:32 +00:00
yuhan6665 2acd206821 Direct/Freedom outbound: Use proxy.IsRAWTransport(conn) (#5074) 2025-09-01 15:03:01 +00:00
RPRX 4c6fd94d97 VLESS Encryption: Server checks one specific zero-bit in the peer-sent X25519 public key in relays 
https://github.com/XTLS/Xray-core/pull/5067#issuecomment-3240198336
 2025-09-01 15:01:54 +00:00
RPRX 6768a22f67
VLESS Encryption: Switch to "probability-from-to" format for customizable 1-RTT padding parameters 
See https://github.com/XTLS/Xray-core/pull/5067#issue-3361308276 for details
 2025-08-31 11:35:38 +00:00
RPRX e8b02cd664
VLESS Encryption: Add customizable 1-RTT padding parameters; Decrease memory using; Chores 
Completes https://github.com/XTLS/Xray-core/pull/5067

---------

Co-authored-by: wwqgtxx <wwqgtxx@gmail.com>
 2025-08-31 04:09:28 +00:00
patterniha ea1a3ae8f1
Trojan UoT: Fix memory/goroutine leak (#5064) 2025-08-29 14:32:13 +00:00
patterniha 593ededd3e
Trojan-UoT & UDP-nameserver: Fix forgotten release buffer; UDP dispatcher: Simplified and optimized (#5050) 2025-08-29 14:31:46 +00:00
RPRX 82ea7a3cc5
VLESS Encryption: Re-add automatically ChaCha20-Poly1305 
https://github.com/XTLS/Xray-core/pull/5067#issuecomment-3234892060

Fixes https://github.com/XTLS/Xray-core/pull/4952#issuecomment-3234083367 for cheap routers
 2025-08-29 14:05:39 +00:00
RPRX 56a45ad578
First step of upcoming refactor for Xray-core: Add TimeoutWrapperReader; Use DispatchLink() in Tunnel/Socks/HTTP inbounds 
https://github.com/XTLS/Xray-core/pull/5067#issuecomment-3236833240

Fixes https://github.com/XTLS/Xray-core/pull/4952#issuecomment-3229878125 for client's Xray-core
 2025-08-29 12:35:56 +00:00
风扇滑翔翼 4976085ddb
Socks/HTTP inbound: Fix unexpected rawConn copy (#5041) 
Fixes https://github.com/XTLS/Xray-core/issues/5040
 2025-08-28 13:41:44 +00:00
RPRX 7951a5c4bf VLESS protocol: Add lightweight, Post-Quantum ML-KEM-768-based PFS 1-RTT / anti-replay 0-RTT AEAD Encryption (#5067) 
https://opensea.io/collection/vless
 2025-08-28 10:40:48 +00:00
风扇滑翔翼 5fa5f3fbb9
WireGuard outbound: Fix close closed (#5054) 
Fixes https://github.com/XTLS/Xray-core/issues/5053
 2025-08-27 09:33:09 +00:00
patterniha 6d1695a686 Some refines related to direct/freedom and `targetStrategy`; More intelligent "useIP"/"ForceIP", enhance "origin" functionality (#5030) 
https://github.com/XTLS/Xray-core/pull/5009#issuecomment-3194264277
 2025-08-20 01:19:13 +03:30
RPRX 7f300dbf0c
VLESS practice: Use user-sent VLESS UUID's 7th<<8 | 8th bytes as `vlessRoute` instead 
https://github.com/XTLS/Xray-core/pull/5009#issuecomment-3195718690

Replaces 105b306d07
 2025-08-18 08:50:43 +00:00
RPRX 5464862ee6 XTLS Vision inbound: Use user-sent VLESS UUID for NewTrafficState() 
Fixes https://github.com/XTLS/Xray-core/pull/5009#issuecomment-3194523018
 2025-08-17 18:13:56 +00:00
yuhan6665 337b4b814e
Wireguard inbound: Fix context sharing problem (#4988) 
* Try fix Wireguard inbound context sharing problem

* Shallow copy inbound and content

* Fix context passing

* Add notes for source address
 2025-08-17 10:56:48 -04:00
RPRX 105b306d07 VLESS practice: Use user-sent VLESS UUID's last byte as `vlessRoute` for `routing` `rules` 
https://github.com/XTLS/Xray-core/pull/5009#issuecomment-3194262087
 2025-08-17 13:55:18 +00:00
RPRX de23e51077 DNS outbound: Set "reject" as the default value for `nonIPQuery` 
https://github.com/XTLS/Xray-core/pull/4903#issuecomment-3091367130
 2025-08-16 19:12:59 +00:00
Jesus aac0d6a6a5
VLESS inbound: Add option to set default `flow` (#5023) 
Closes https://github.com/XTLS/Xray-core/issues/4994
 2025-08-15 23:07:33 +00:00
风扇滑翔翼 b1107b9810
Refine must2 and apply NewAesGcm() to all usage (#5011) 
* Refine must2 and apply NewAesGcm() to all usage

* Remove unused package

* Fix test
 2025-08-10 21:37:46 -04:00
patterniha cde6e33ec9
Freedom: Add `maxSplit` fragment option; Add `applyTo` noises option (#4998) 2025-08-07 23:56:09 +00:00
RPRX 146b14ab55
Tunnel inbound: Add `portMap` config (local listening port -> remote specified address/port) 
Completes https://github.com/XTLS/Xray-core/pull/4968
 2025-08-02 14:58:56 +00:00
RPRX 116cd70a3a
Dokodemo-door: Add simple `tunnel` config (alias and default values) (#4968) 
dokodemo-door -> tunnel
freedom -> direct
blackhole -> block

https://github.com/XTLS/Xray-core/discussions/4966#discussioncomment-13948546
https://github.com/XTLS/Xray-core/pull/4967#issuecomment-3143951306
 2025-08-01 11:20:53 +00:00
patterniha 10376f5b4d
Freedom UDP: Fix some cone uses like STUN,... when address is domain (#4942) 
https://github.com/XTLS/Xray-core/issues/2962#issuecomment-3120472154
 2025-07-26 01:59:15 +00:00
patterniha 4e826abebf
Chore: Three small fixes (#4922) 2025-07-23 12:53:37 +00:00
patterniha 050f596e8f
Freedom: Fix UDP reply mismatch-address (#4816) 2025-07-23 10:07:24 +00:00
风扇滑翔翼 3b47d0846e
Freedom: Cache UDP resolve result (#4804) 2025-07-23 10:02:27 +00:00
风扇滑翔翼 83686ebfaa DNS outbound: Prevent panic from rejecting invalid domain (#4903) 
Fixes https://github.com/XTLS/Xray-core/pull/4824#issuecomment-3078811352
 2025-07-19 01:52:26 +00:00
风扇滑翔翼 38ed2cc387
DNS: Add new nonIPQuery "reject" (#4824) 2025-06-22 22:48:24 -04:00
fL1pSt3r b043db8260
API: Fix issue with inbounduser not finding emails with uppercase letters (#4818) 2025-06-22 21:57:02 -04:00
patterniha aa4134f4a6
DNS: Fix some bugs; Refactors; Optimizations (#4659) 2025-04-29 08:39:57 +00:00
Cl-He-O 7a2f42f8d5
Fix issues related to android client (#4616) 
* WireGuard: Fix tunnel not closed

* Dialer: Apply controllers in lc.Control
 2025-04-14 11:08:26 -04:00
Ilya Gulya 17207fc5e4 WireGuard: Improve config error handling; Prevent panic in case of errors during server initialization (#4566) 
https://github.com/XTLS/Xray-core/pull/4566#issuecomment-2764779273
 2025-03-30 22:55:21 +00:00
风扇滑翔翼 29e37e8a82
HTTP inbound: Directly forward plain HTTP 1xx response header (#4547) 
Fixes https://github.com/XTLS/Xray-core/issues/4545
 2025-03-26 12:30:48 +00:00
Meo597 4afe2d0cff
DNS: Support returning upstream TTL to clients (#4526) 
Closes https://github.com/XTLS/Xray-core/issues/4527
 2025-03-24 13:33:56 +00:00
RPRX e466b0497c
DNS DoH: Use Chrome's fingerprint & keepAlivePeriod, Add header padding by default 
https://github.com/XTLS/Xray-core/discussions/4430#discussioncomment-12374292
 2025-03-03 14:45:12 +00:00
风扇滑翔翼 b38a53e629
UDS: Use UnixListenerWrapper & UnixConnWrapper (#4413) 
Fixes https://github.com/XTLS/Xray-core/issues/4411

---------

Co-authored-by: RPRX <63339210+RPRX@users.noreply.github.com>
 2025-02-19 11:31:29 +00:00
RPRX 8cb63db6c0
XHTTP server: Set remoteAddr & localAddr correctly 
Completes 22c50a70c6
 2025-02-18 10:50:50 +00:00
yuhan6665 eef74b2c7d
XTLS: More separate uplink/downlink flags for splice copy (#4407) 
- In 03131c72db new flags were added for uplink/downlink, but that was not suffcient
- Now that the traffic state contains all possible info
- Each inbound and outbound is responsible to set their own CanSpliceCopy flag. Note that this also open up more splice usage. E.g. socks in -> freedom out
- Fixes https://github.com/XTLS/Xray-core/issues/4033
 2025-02-18 08:37:52 +00:00
RPRX 117de1fd3c
MITM freedom RAW TLS: Report website with unexpected Negotiated Protocol / invalid Domain Fronting certificate 
https://github.com/XTLS/Xray-core/issues/4348#issuecomment-2639965524

Needs `"alpn": ["fromMitm"]` / `"verifyPeerCertInNames": ["fromMitm", ...]`.
 2025-02-07 08:15:40 +00:00
RPRX c6a31f457c
MITM: Allow using local received SNI in the outgoing `serverName` & `verifyPeerCertInNames` 
https://github.com/XTLS/Xray-core/issues/4348#issuecomment-2637370175

Local received SNI was sent by browser/app.

In freedom RAW's `tlsSettings`, set `"serverName": "fromMitm"` to forward it to the real website.

In freedom RAW's `tlsSettings`, set `"verifyPeerCertInNames": ["fromMitm"]` to use all possible names to verify the certificate.
 2025-02-06 07:37:30 +00:00
RPRX 9b7841178a
MITM: Allow forwarding local negotiated ALPN http/1.1 to the real website 
https://github.com/XTLS/Xray-core/issues/4348#issuecomment-2633656408

https://github.com/XTLS/Xray-core/issues/4348#issuecomment-2633865039

Local negotiated ALPN http/1.1 was sent by browser/app or is written in dokodemo-door RAW's `tlsSettings`.

Set `"alpn": ["fromMitm"]` in freedom RAW's `tlsSettings` to forward it to the real website.
 2025-02-04 15:10:08 +00:00