0.9.0

What's Changed

• fix: socket leak in smol
• fix: chain proxy multiplexing in #39
• fix: gracefully handle invalid UDP packet in #41
• fix: DOMAIN-SUFFIX mismatch in plain rule
• fix: BLACKHOLE not work as intended
• feat: TLS fingerprint parroting
• feat: DNS hosts fixed mapping
• feat: adjust retained connection log limit

Full Changelog: 0.8.0...0.9.0

0.8.0

Breaking Changes

• Inbound configuration format

Features And Enhancements

Core

• Aggregrated MitM connections
• Support multiple HTTP/Socks5 inbound ports
• Enhanced inbound dispatching rules
• WireGuard-over-TCP (compatible with mullvad/udp-over-tcp)

CLI

• Support listing current temporary rules
• Submodule for DNS mapping and lookup

API

• Support real-time connection stream information
• Support DNS mapping and lookup

Bug Fixes

• WireGuard performance issue (20mpbs to over 200mpbs on WAN)
• Unexpected interruption on some WireGuard connections
• Socks5 address type compatibility for some problematic implementations

v0.7.0

In this new version, we introduce the following features and fixes:

Features

• Allow using JavaScript to modify http request & response
• Introduce new LOCAL-IP-CIDR rule
• Support IPv6 for WireGuard outbound
• Support dual-stack DNS resolution for global & WireGuard DNS resolvers
• CLI tool auto-completion for bash/zsh/fish

Bug Fixes

• Unable to transmit data over Trojan-with-WebSocket

v0.6.1

Enhancement

• More smooth installation and configuration process

Bug fixes

• Invalid localhost outbound
• Obsolete default path for cert subcommand

v0.6.0

In this version, we introduce many new features and bug fixes.

Features

• GEOIP, ASN and source port rules (#29)
• SUB-DISPATCH action for tree-style route (#30)
• Temporary rules (#31)

Enhancement

• Add inbound information to logs and RPC responses
• Redesign interception config format
• Merge boltadm into boltconn binary

Bug fixes

• File descriptor leaks (#32)
• WireGuard deadlock and re-connection
• Failure to receive UDP packets in macOS with TUN mode
• Failure to enable interception under specific configuration

v0.5.0-beta

After some testing and real-world use, we proudly announce our first beta version.

This version includes:

Features

• New external controller via unix domain socket (#27, #28)
• Add option to disable logs dump
• Web controller has CORS settings
• SRC-PORT, GEOIP, ASN rules (#29)
• Explicit resolve domain name in rule matching via ACTION-LOCAL-RESOLVE (#29)
• Able to identify QUIC payload
• Limit response size of interception

Enhancements

• Better console logs
• Appropriate file permissions on file write

Bugfixes

• Maximum opened files limit on macOS
• DNS now go through correct interface on reloading

v0.4.0-alpha

release: v0.4.0-alpha

v0.3.2-alpha

In this release, we introduce the following changes:

• Multiple bugfixs
• Support for UDP chaining
• Support new config format: module

v0.3.0-alpha

In this release, we introduce the following changes:

• websocket-based monitoring API
• designated outbound iface
• proxy chaining
• renaming some RESTful APIs
• change some configuration formats

We also fixed lots of bugs.

v0.2.1-alpha

This release includes lots of enhancements and new features, as well as serveral bugfixs.

Features

• Rewrite header part of MitM packets (both requests and responses)
• Allow HTTP and Socks5 proxies as inbound
• Enable logical rules for better flexibility

Enhancements

• Now MitM use rules instead of domain lists
• Split proxy providers from proxy groups
• Better logging output