v0.49.0

Notes

We have thoroughly refactored xtcp in this version to improve its penetration rate and stability.

In this version, different penetration strategies can be attempted by retrying connections multiple times. Once a hole is successfully punched, the strategy will be recorded in the server cache for future reuse. When new users connect, the successfully penetrated tunnel can be reused instead of punching a new hole.

Due to a significant refactor of xtcp, this version is not compatible with previous versions of xtcp.

To use features related to xtcp, both frpc and frps need to be updated to the latest version.

New

• The frpc has added the nathole discover command for testing the NAT type of the current network.
• XTCP has been refactored, resulting in a significant improvement in the success rate of penetration.
• When verifying passwords, use subtle.ConstantTimeCompare and introduce a certain delay when the password is incorrect.

Fix

• Fix the problem of lagging when opening multiple table entries in the frps dashboard.

v0.48.0

New

• The httpconnect type in tcpmux now supports authentication through the parameters http_user and http_pwd.

Improved

• The web framework has been upgraded to vue3 + element-plus, and the dashboard has added some information display and supports dark mode.
• The e2e testing has been switched to ginkgo v2.

v0.47.0

New

• Added config bandwidth_limit_mode in frpc, default value is client which is current behavior. Optional value is server, to enable bandwidth limit in server. The major aim is to let server plugin has the ability to modify bandwidth limit for each proxy.

Improve

• dns_server supports ipv6.
• frpc supports graceful shutdown for protocol quic.

v0.46.1

Fix

• Server Plugin sends incorrect op name for NewWorkConn.
• QUIC stream leak.

v0.46.0

New

• Add oidc_scope parameter to frpc when authentication_method = oidc.
• Support quic protocol between frpc and frps.

Improve

• Upgrade oidc and oauth2 package which is forward compatible.

v0.45.0

Improve

• Adjust http group load balancing to forward requests to each frpc proxy round robin. Previous behavior is always forwarding requests to a single proxy in the case of single concurrency.

v0.44.0

New

• Use auto generated certificates if plugin_key_path and plugin_crt_path are empty for plugin https2https and https2http.
• Server dashboard supports TLS configs.

Fix

• xtcp error with IPv6 address.

v0.43.0

New

• Added route_by_http_user in http and tcpmux proxy to support routing to different clients by HTTP basic auth user.
• CONNECT method can be forwarded in http type proxy.
• Added tcpmux_passthrough in tcpmux proxy. If true, CONNECT request will be forwarded to frpc.

v0.42.0

New

• Added new parameter config_dir in frpc to run multiple client instances in one process. (Not all features can be supported in this mode)

Fix

• Equal sign in environment variables causes parsing error.

v0.41.0

New

• Support go http pprof.

Improve

• Change underlying TCP connection keepalive interval to 2 hours.
• Create new connection to server for sudp visitor when needed, to avoid frequent reconnections.