Update documentation

Fix shadowtls in go versiojns below 1.20
Update QUIC v2 version number and initial salt
2026-04-11 17:47:20 +10:00 · 2023-02-19 17:49:05 +08:00 · 2023-02-19 12:02:11 +08:00 · 2023-02-18 23:51:55 +08:00 · 2023-02-18 21:14:17 +08:00 · 2023-02-18 19:33:35 +08:00
10 changed files with 23 additions and 15 deletions
--- a/.github/workflows/mkdocs.yml
+++ b/.github/workflows/mkdocs.yml
@@ -14,5 +14,7 @@ jobs:
      - uses: actions/setup-python@v4
        with:
          python-version: 3.x
-      - run: pip install mkdocs-material mkdocs-static-i18n
-      - run: mkdocs gh-deploy -m "{sha}" --force --ignore-version --no-history
+      - run: |
+          pip install mkdocs-material=="9.*" mkdocs-static-i18n=="0.53"
+      - run: |
+          mkdocs gh-deploy -m "{sha}" --force --ignore-version --no-history
--- a/common/sniff/internal/qtls/qtls.go
+++ b/common/sniff/internal/qtls/qtls.go
@@ -13,13 +13,13 @@ import (
 const (
 	VersionDraft29 = 0xff00001d
 	Version1       = 0x1
-	Version2       = 0x709a50c4
+	Version2       = 0x6b3343cf
 )

 var (
 	SaltOld = []byte{0xaf, 0xbf, 0xec, 0x28, 0x99, 0x93, 0xd2, 0x4c, 0x9e, 0x97, 0x86, 0xf1, 0x9c, 0x61, 0x11, 0xe0, 0x43, 0x90, 0xa8, 0x99}
 	SaltV1  = []byte{0x38, 0x76, 0x2c, 0xf7, 0xf5, 0x59, 0x34, 0xb3, 0x4d, 0x17, 0x9a, 0xe6, 0xa4, 0xc8, 0x0c, 0xad, 0xcc, 0xbb, 0x7f, 0x0a}
-	SaltV2  = []byte{0xa7, 0x07, 0xc2, 0x03, 0xa5, 0x9b, 0x47, 0x18, 0x4a, 0x1d, 0x62, 0xca, 0x57, 0x04, 0x06, 0xea, 0x7a, 0xe3, 0xe5, 0xd3}
+	SaltV2  = []byte{0x0d, 0xed, 0xe3, 0xde, 0xf7, 0x00, 0xa6, 0xdb, 0x81, 0x93, 0x81, 0xbe, 0x6e, 0x26, 0x9d, 0xcb, 0xf9, 0xbd, 0x2e, 0xd9}
 )

 const (
--- a/constant/version.go
+++ b/constant/version.go
@@ -1,3 +1,3 @@
 package constant

-var Version = "1.2-beta2"
+var Version = "1.2-beta3"
--- a/docs/changelog.md
+++ b/docs/changelog.md
@@ -1,3 +1,8 @@
+#### 1.2-beta3
+
+* Update QUIC v2 version number and initial salt
+* Fix shadowtls v3 implementation
+
 #### 1.2-beta2

 * Add [ShadowTLS protocol v3](https://github.com/ihciah/shadow-tls/blob/master/docs/protocol-v3-en.md)
--- a/docs/configuration/inbound/shadowtls.md
+++ b/docs/configuration/inbound/shadowtls.md
@@ -7,7 +7,7 @@

  ... // Listen Fields

-  "version": 2,
+  "version": 3,
  "password": "fuck me till the daylight",
  "handshake": {
    "server": "google.com",
@@ -32,12 +32,13 @@ ShadowTLS protocol version.
 |---------------|-----------------------------------------------------------------------------------------|
 | `1` (default) | [ShadowTLS v1](https://github.com/ihciah/shadow-tls/blob/master/docs/protocol-en.md#v1) |
 | `2`           | [ShadowTLS v2](https://github.com/ihciah/shadow-tls/blob/master/docs/protocol-en.md#v2) |
+| `3`           | [ShadowTLS v3](https://github.com/ihciah/shadow-tls/blob/master/docs/protocol-v3-en.md) |

 #### password

 Set password.

-Only available in the ShadowTLS v2 protocol.
+Only available in the ShadowTLS v2/v3 protocol.

 #### handshake

--- a/docs/configuration/inbound/shadowtls.zh.md
+++ b/docs/configuration/inbound/shadowtls.zh.md
@@ -7,7 +7,7 @@

  ... // 监听字段

-  "version": 2,
+  "version": 3,
  "password": "fuck me till the daylight",
  "handshake": {
    "server": "google.com",
@@ -32,12 +32,13 @@ ShadowTLS 协议版本。
 |---------------|-----------------------------------------------------------------------------------------|
 | `1` (default) | [ShadowTLS v1](https://github.com/ihciah/shadow-tls/blob/master/docs/protocol-en.md#v1) |
 | `2`           | [ShadowTLS v2](https://github.com/ihciah/shadow-tls/blob/master/docs/protocol-en.md#v2) |
+| `3`           | [ShadowTLS v3](https://github.com/ihciah/shadow-tls/blob/master/docs/protocol-v3-en.md) |

 #### password

 设置密码。

-仅在 ShadowTLS v2 协议中可用。
+仅在 ShadowTLS v2/v3 协议中可用。

 #### handshake

--- a/docs/examples/shadowtls.md
+++ b/docs/examples/shadowtls.md
@@ -7,7 +7,7 @@
      "type": "shadowtls",
      "listen": "::",
      "listen_port": 4443,
-      "version": 2,
+      "version": 3,
      "password": "fuck me till the daylight",
      "handshake": {
        "server": "google.com",
@@ -47,7 +47,7 @@
      "tag": "shadowtls-out",
      "server": "127.0.0.1",
      "server_port": 4443,
-      "version": 2,
+      "version": 3,
      "password": "fuck me till the daylight",
      "tls": {
        "enabled": true,
--- a/outbound/shadowtls.go
+++ b/outbound/shadowtls.go
@@ -56,8 +56,6 @@ func NewShadowTLS(ctx context.Context, router adapter.Router, logger log.Context
 		options.TLS.MaxVersion = "1.2"
 	case 2:
 	case 3:
-		options.TLS.MinVersion = "1.3"
-		options.TLS.MaxVersion = "1.3"
 	default:
 		return nil, E.New("unknown shadowtls protocol version: ", options.Version)
 	}
--- a/release/local/install_go.sh
+++ b/release/local/install_go.sh
@@ -1,7 +1,7 @@
 #!/usr/bin/env bash

 set -e -o pipefail
-curl -Lo go.tar.gz https://go.dev/dl/go1.20.linux-amd64.tar.gz
+curl -Lo go.tar.gz https://go.dev/dl/go1.20.1.linux-amd64.tar.gz
 sudo rm -rf /usr/local/go
 sudo tar -C /usr/local -xzf go.tar.gz
-rm go.tar.gz
+rm go.tar.gz
--- a/transport/shadowtls/tls_go119/handshake_client.go
+++ b/transport/shadowtls/tls_go119/handshake_client.go
@@ -145,6 +145,7 @@ func (c *Conn) makeClientHello() (*clientHelloMsg, ecdheParameters, error) {
 		if err := config.SessionIDGenerator(hello.marshal(), hello.sessionId); err != nil {
 			return nil, nil, errors.New("tls: generate session id failed: " + err.Error())
 		}
+		hello.raw = nil
 	} else {
 		if _, err := io.ReadFull(config.rand(), hello.sessionId); err != nil {
 			return nil, nil, errors.New("tls: short read from Rand: " + err.Error())
Author	SHA1	Message	Date
世界	73c068b96f	Update documentation	2023-02-19 17:49:05 +08:00
世界	f516026540	Fix shadowtls in go versiojns below 1.20	2023-02-19 12:02:11 +08:00
dyhkwong	3c5bc842ed	Update QUIC v2 version number and initial salt	2023-02-18 23:51:55 +08:00
世界	d8270a66f4	Update release script	2023-02-18 21:14:17 +08:00
世界	123c383eae	Fix documentation	2023-02-18 19:33:35 +08:00
世界	67814faf92	Remove TLS min version for shadowtls v3	2023-02-18 19:26:05 +08:00