Xray-core

mirror of https://github.com/XTLS/Xray-core.git synced 2025-02-12 11:54:12 +00:00

Author	SHA1	Message	Date
RPRX	c6a31f457c	MITM: Allow using local received SNI in the outgoing `serverName` & `verifyPeerCertInNames` https://github.com/XTLS/Xray-core/issues/4348#issuecomment-2637370175 Local received SNI was sent by browser/app. In freedom RAW's `tlsSettings`, set `"serverName": "fromMitm"` to forward it to the real website. In freedom RAW's `tlsSettings`, set `"verifyPeerCertInNames": ["fromMitm"]` to use all possible names to verify the certificate.	2025-02-06 07:37:30 +00:00
RPRX	2522cfd7be	DNS DoH: Add h2c Remote mode (with TLS `serverNameToVerify`) https://github.com/XTLS/Xray-core/issues/4313#issuecomment-2609339864 Applies https://github.com/refraction-networking/utls/pull/161 Closes https://github.com/XTLS/Xray-core/issues/4313	2025-01-25 10:51:44 +00:00
风扇滑翔翼	571777483b	TLS: Add CurvePreferences (to enable kyber768) (#3991 ) Co-authored-by: RPRX <63339210+RPRX@users.noreply.github.com>	2024-11-11 04:21:28 +00:00
Kobe Arthur Scofield	57a41f3b4b	Config: Remove more legacy fields (#3817 )	2024-09-19 01:05:59 +00:00
lelemka0	4531a7e228	CertificateObject: Enable auto-reload for cacert & Add buildChain & Fixes (#3607 )	2024-07-29 06:58:58 +00:00
Allo	fbc56b88da	chore: remove the usage of some deprecated tls properties	2024-04-13 17:56:35 -04:00
yuhan6665	6f092bd212	Add "masterKeyLog" in TLS config (#2758 ) * Add "enableMasterKeyLog" in TLS config Turn on the debug option for Wireshark to decrypt traffic * Change to "masterKeyLog" to configure a path	2023-11-27 10:08:34 -05:00
Yue Yin	03b8c094de	Support SPKI Fingerprint Pinning Support SPKI Fingerprint Pinning for TLSObject	2023-02-24 11:47:00 -05:00
yuhan6665	acb81ebe3d	Verify peer cert function for better man in the middle prevention (#746 ) * verify peer cert function for better man in the middle prevention * publish cert chain hash generation algorithm * added calculation of certificate hash as separate command and tlsping, use base64 to represent fingerprint to align with jsonPb * apply coding style * added test case for pinned certificates * refactored cert pin * pinned cert test * added json loading of the PinnedPeerCertificateChainSha256 * removed tool to prepare for v5 * Add server cert pinning for Xtls Change command "xray tls certChainHash" to xray style Co-authored-by: Shelikhoo <xiaokangwang@outlook.com>	2021-10-22 12:38:40 +08:00
hmol233	53b99efe78	Add: reject unknown SNI Co-Authored-By: 玖柒Max <60207794+jiuqi9997@users.noreply.github.com>	2021-05-09 23:47:21 +08:00
RPRX	a9e11075d1	Add uTLS fingerprints support (#451 )	2021-03-29 10:08:29 +00:00
RPRX	8b9c0ae593	Enable (X)TLS hot reloading by default (#281 ) Super BiuBiu	2021-02-20 02:15:57 +00:00
eMeab	81d993158f	Support hot reloading of certificate and key files (#225 )	2021-02-12 15:33:19 +00:00
RPRX	7df135a5c4	Disable session resumption by default https://github.com/v2fly/v2ray-core/issues/557#issuecomment-751962569	2021-01-01 11:33:09 +00:00
RPRX	a78db47571	Adjust OCSP Stapling	2020-12-25 15:10:12 +00:00
eMeab	3d7e86efba	Add OCSP Stapling for TLS & XTLS (#92 )	2020-12-25 08:01:20 +00:00
RPRX	38faac5ffc	Adjust config loader of TLS & XTLS	2020-12-16 15:59:04 +00:00
eMeab	88dfed931b	Add cipherSuites setting for TLS & XTLS (#78 )	2020-12-16 12:53:55 +00:00
RPRX	ed0e9b12dc	Adjust ProtoBuf of TLS & XTLS	2020-12-16 08:50:18 +00:00
eMeab	dab978749c	Add minVersion setting for TLS & XTLS (#77 )	2020-12-16 05:20:24 +00:00
RPRX	16544c18ab	v1.1.0	2020-12-04 09:36:16 +08:00
RPRX	c7f7c08ead	v1.0.0	2020-11-25 19:01:53 +08:00

22 Commits