chore(deps): update module github.com/refraction-networking/utls to v1.5.3 - autoclosed
This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| github.com/refraction-networking/utls | require | minor |
v1.3.2 -> v1.5.3
|
Release Notes
refraction-networking/utls (github.com/refraction-networking/utls)
v1.5.3: Hotfix: secondary key share
What's Changed
- fix: secondary keyshares may be lost after overriding
keySharesParamsby @gaukas in https://github.com/refraction-networking/utls/pull/238
Full Changelog: https://github.com/refraction-networking/utls/compare/v1.5.2...v1.5.3
v1.5.2: bugfix
What's Changed
- Fix removing session state by @own2pwn in https://github.com/refraction-networking/utls/pull/236
- sync: Go 1.21.0 breaking change by @gaukas in https://github.com/refraction-networking/utls/commit/fc79497d3f1c0f25f1ceb6672c3772b79b99c30f
New Contributors
- @own2pwn made their first contribution in https://github.com/refraction-networking/utls/pull/236
Full Changelog: https://github.com/refraction-networking/utls/compare/v1.5.0...v1.5.2
v1.5.1
v1.5.0: Post-Quantum and Session Resumption
What's Changed
- uTLS: X25519Kyber768Draft00 hybrid post-quantum key agreement by @gaukas in https://github.com/refraction-networking/utls/pull/223
- new: Support TLS-PSK (TLS 1.3) by @gaukas, @zeeker999 and @3andne in https://github.com/refraction-networking/utls/pull/231
A big shout out to @3andne for spending time on major refactoring/revision in the Session Resumption for both TLS 1.2 (SessionTicket-based) and TLS 1.3 (PreSharedKey-based)!
New API
type ISessionTicketExtension interface {
TLSExtension
// If false is returned, utls will invoke `InitializeByUtls()` for the necessary initialization.
Initializable
// InitializeByUtls is invoked when IsInitialized() returns false.
// It initializes the extension using a real and valid TLS 1.2 session.
InitializeByUtls(session *SessionState, ticket []byte)
GetSession() *SessionState
GetTicket() []byte
}
// SetSessionTicket sets the session ticket extension.
// If extension is nil, this will be a no-op.
func (uconn *UConn) SetSessionTicketExtension(sessionTicketExt ISessionTicketExtension)
type PreSharedKeyExtension interface {
// TLSExtension must be implemented by all PreSharedKeyExtension implementations.
TLSExtension
// If false is returned, utls will invoke `InitializeByUtls()` for the necessary initialization.
Initializable
SetOmitEmptyPsk(val bool)
// InitializeByUtls is invoked when IsInitialized() returns false.
// It initializes the extension using a real and valid TLS 1.3 session.
InitializeByUtls(session *SessionState, earlySecret []byte, binderKey []byte, identities []PskIdentity)
// GetPreSharedKeyCommon retrieves the final PreSharedKey-related states as defined in PreSharedKeyCommon.
GetPreSharedKeyCommon() PreSharedKeyCommon
// PatchBuiltHello is called once the hello message is fully applied and marshaled.
// Its purpose is to update the binders of PSK (Pre-Shared Key) identities.
PatchBuiltHello(hello *PubClientHelloMsg) error
mustEmbedUnimplementedPreSharedKeyExtension() // this works like a type guard
}
// SetPskExtension sets the psk extension for tls 1.3 resumption. This is a no-op if the psk is nil.
func (uconn *UConn) SetPskExtension(pskExt PreSharedKeyExtension) errorFull Changelog: https://github.com/refraction-networking/utls/compare/v1.4.3...v1.5.0
v1.4.3: Buggy versions retracted
Retract v1.4.0, v1.4.1 for a breaking change made by crypto/tls in client handshake. This tag contains no code change from v1.4.2 since v1.4.2 patches the exact bug in the retracted versions.
What's Changed
- retract v1.4.1 panic by @trungdlp-wolffun in https://github.com/refraction-networking/utls/pull/220
New Contributors
- @trungdlp-wolffun made their first contribution in https://github.com/refraction-networking/utls/pull/220
Full Changelog: https://github.com/refraction-networking/utls/compare/v1.4.2...v1.4.3
v1.4.2: Hotfix: ClientSessionCache
Provide a dirty fix for a bug(?) triggered when Config.ClientSessionCache is nil and session_ticket is received from a server.
v1.4.1: Go above and beyond
Security Fix
- Fixes CVE-2023-29409 in #208
What's New
- Feature: QUIC Transport from Go 1.21
- Oldest supported Go version:
1.191.20- Go 1.19 is retiring :( sorry children
What's Changed
- workflow: add more version build/test actions by @gaukas in https://github.com/refraction-networking/utls/pull/203
- fix: workflow naming convention by @gaukas in https://github.com/refraction-networking/utls/pull/204
- Fix zlib cert decompression by ignoring EOF by @hwh33 in https://github.com/refraction-networking/utls/pull/206
- sync: Go 1.21 with QUIC support by @gaukas in https://github.com/refraction-networking/utls/pull/208
- ci: update names and badges for CI actions by @gaukas in https://github.com/refraction-networking/utls/pull/211
- fix: don't deref nil ptr by @3andne in https://github.com/refraction-networking/utls/pull/214
- fix: poorly named qtps by @gaukas in https://github.com/refraction-networking/utls/pull/215
- RELEASE: Go 1.21 by @gaukas in https://github.com/refraction-networking/utls/pull/216
New Contributors
- @3andne made their first contribution in https://github.com/refraction-networking/utls/pull/214
Full Changelog: https://github.com/refraction-networking/utls/compare/v1.3.3...v1.4.1
v1.4.0
v1.3.3: Compatibility and Optimization
What's Changed
- import: use remote cpu package by @gaukas in https://github.com/refraction-networking/utls/pull/195
- fix: allow TLS 1.3 as min TLS version by @gaukas in https://github.com/refraction-networking/utls/pull/194
- fix: removed redundant assignment by @gaukas in https://github.com/refraction-networking/utls/pull/184
Full Changelog: https://github.com/refraction-networking/utls/compare/v1.3.2...v1.3.3
Configuration
-
If you want to rebase/retry this MR, check this box
This MR has been generated by Renovate Bot.