Releases: shadowsocks/shadowsocks-rust
Releases · shadowsocks/shadowsocks-rust
v1.9.0
Complete refactored the whole implementation and splits into 3 different crates:
shadowsocks
- Core feature of shadowsocksshadowsocks-service
- Service library for implementing Local Server, Remote Server, Manager Servershadowsocks-rust
- Binary crate for release
Replaced libsodium
and libcrypto
with crypto2
.
Features
- Support setting
SO_MARK
,SO_BINDTODEVICE
on Linux - Support setting
SO_SNDBUF
andSO_RCVBUF
for TCP sockets - Support SIP008 extend server fields
server
,server_port
,remarks
- Local DNS Relay
- Support sending TCP and UDP queries simutaneously
- Support connection reusability
- Remove mostly TCP
timeout
setting for tunnels, connections will only be killed if clients or servers close - Auto-reload DNS resolver configuration from
/etc/resolv.conf
on *NIX platforms. - #379 Allow customizing number of worker-threads for multi-threaded scheduler.
- #401 Support field disabled in extended server configuration
- Ping Balancer
- Treat timeouts as failures, so requests that receive no response count as failures.
- Increase check timeout from 2s to 5s to avoid penalties on slow servers.
- Increase check interval from 6s to 10s.
--outbound-bind-interface
is now supported in both Linux and macOS- #352 Support customizing inbound and outbound sockets'
SO_SNDBUF
andSO_RCVBUF
by command line options
Library Update
Optimization
- UDP Relays sending respond packets directly to
UdpSocket
instead ofchannel
, which will significantly improve respond latency - #408 Enable std features for the spin crate to enable yielding threads when spinning on waiting.
BUG Fixes
- For BSD systems, set
IPV6_BINDANY
andSO_BINDANY
onSOL_SOCKET
properly trust-dns-resolver
requires explicit enables featuredns-over-https-rustls
for DoH #367- ACL domain rules should be case insensitive. Domain names are case insensitive.
- shadowsocks/shadowsocks-android#2667 set timeout for protect() call to Android's VpnService
Miscellaneous
- Disable HTTPS outbound connection for local HTTP proxy by default. For most use cases, HTTPS should be proxied with
CONNECT
method. - Unified UDP relay association implementation for less duplicated code.
- Deprecated
single-threaded
build feature, replaced bymulti-threaded
. - Disable stream ciphers by default. Could be enabled with feature
stream-cipher
. - Enable IPv6 dual stack mode by default when listening on
::
.
Releases
Releases are built with ISA that are supported by Modern CPUs, see comments in .cargo/config.toml
. If you see any related messages like Illegal Instruction
, then you must be running on a very old CPU, so you can:
- Delete
.cargo/config.toml
and build your own release- NOTE: This may lead to no hardware accleration for cryptographic operations
- Change your CPU to some more advanced model
v1.9.0-alpha.6
Features
- #408 Enable
std
features for thespin
crate to enable yielding threads when spinning on waiting. - #401 Support field
disabled
in extended server configuration - Ping Balancer
- Treat timeouts as failures, so requests that receive no response count as failures.
- Increase check timeout from 2s to 5s to avoid penalties on slow servers.
- Increase check interval from 6s to 10s.
--outbound-bind-interface
is now supported in both Linux and macOS
Bug Fixes
- shadowsocks/shadowsocks-android#2665 socks5 UDP association should return fake UDP bind addr if tcp only
- shadowsocks/shadowsocks-android#2667 set timeout for
protect()
call to Android'sVpnService
v1.9.0-alpha.5
Features
- Auto-reload DNS resolver configuration from
/etc/resolv.conf
on *NIX platforms. - #379 Allow customizing worker-threads for multi-threaded scheduler.
v1.9.0-alpha.4
BUG Fixed
- ACL domain rules should be case insensitive. Domain names are case insensitive.
Miscellaneous
- Deprecated
single-threaded
build feature, replaced bymulti-threaded
. - Revert deprecation of Unix Domain Socket based Local DNS
- Disable stream ciphers by default. Could be enabled with feature
stream-cipher
.
v1.9.0-alpha.3
Miscelleneous
- Removed
avx2
,fma
,adx
features forx86_64
target CPU
v1.9.0-alpha.2
BUG Fixes
- Check UDP packet's data length before
decrypt_packet
shadowsocks/crypto2#8 trust-dns-resolver
requires explicit enables featuredns-over-https-rustls
for DoH #367
Miscellaneous
- Disable HTTPS outbound connection for local HTTP proxy by default. For most use cases, HTTPS should be proxied with
CONNECT
method. - Unified UDP relay association implementation for less duplicated code.
v1.9.0-alpha.1
Features
- Splits library into separate crates
shadowsocks
- Core feature of shadowsocksshadowsocks-service
- Service library for implementing Local Server, Remote Server, Manager Servershadowsocks-rust
- Binary crate for release
- Support setting
SO_MARK
,SO_BINDTODEVICE
on Linux - Support setting
SO_SNDBUF
andSO_RCVBUF
for TCP sockets - Support SIP008 extend server fields
server
,server_port
,remarks
- Local DNS Relay
- Support sending TCP and UDP queries simutaneously
- Support connection reusability
- Remove mostly TCP
timeout
setting for tunnels, connections will only be killed if clients or servers close
Library Update
Optimization
- UDP Relays sending respond packets directly to
UdpSocket
instead ofchannel
, which will significantly improve respond latency
BUG Fixes
- For BSD systems, set
IPV6_BINDANY
andSO_BINDANY
onSOL_SOCKET
properly
v1.8.23
BUG Fixed
- Fixed REDIR client
setsockopt
options, IPv6 should useIPV6_TRANSPARENT
on levelSOL_IPV6
orIPPROTO_IPV6
v1.8.22
Features
- Load balancer uses Firefox's network detection address: http://detectportal.firefox.com/success.txt
- The original http://dl.google.com/generate_204 is not always available all over the world
BUG Fixed
- ARMv6 release target (
arm-unknown-linux-gnueabihf
) shouldn't enable output AES instructions - Moves many connection ERROR logs to DEBUG level
v1.8.21
Features
- Support SIP008 multi-server configuration keys:
server
,server_port
andremarks
:{ "servers": [ { "server": "your.shadowsocks.server", "server_port": 8388, "method": "aes-256-gcm", "password": "password", "remarks": "My Shadowsocks Server" } ] }
- #308 Supports daemonize with command line option (
-d
,--daemonize
) on *nix platforms - Switched logging facility to log4rs for more extensible configurations