版本介绍

在这个版本中，我们将trojan-go客户端的使用的uTLS从v1.1.5升级到了v1.2.0。

我作为一名用户需要做什么？

• 您需要根据自己的操作系统，选择对应的客户端下载并更新。
• 您不需要更新你的服务器。因为这次更新只对客户端做了改变。
• 您应该考虑将配置文件中的sni设置为服务器的域名。因为如果不配置SNI，客户端发送的Clienthello的指纹还是很特殊。
• 您不必在配置文件中特意设置fingerprint。因为默认值(Chrome)已经是最流行的指纹了。

为什么我使用了最新版本的客户端但是服务器还是被封锁了？

您是否在用这里提供的客户端的同时还通过其他客户端（比如手机上的软件）连接了相同的服务器？如果是的话，那就不能排除端口被封锁的是其他客户端的指纹或行为导致的。

我们现在缺少用户的使用情况汇报，如果您可以肯定在一段时间内只用了我们提供的客户端，我们非常欢迎您汇报您的使用情况（被封锁或是没被封锁对我们来说同样重要）。

配置文件示例

{
    "run_type": "client",
    "local_addr": "127.0.0.1",
    "local_port": 1080,
    "remote_addr": "your-domain-name.com",
    "remote_port": 443,
    "password": [
        "your_awesome_password"
    ],
    "ssl": {
        "sni": "your-domain-name.com",
	"fingerprint": "Chrome"
    }
}

感谢

我们感谢uTLS的开发者@gaukas 和 @jmwample。

Release notes

In this release, we upgrade trojan-go client's uTLS library from v1.1.5 to v1.2.0.

What do I need to do as a user?

• You need to update your client by downloading the corresponding binaries below.
• You don't need to update your server because all changes are made from the client side.
• You may want to set the sni value to your domain name in configuration file, because, your TLS Clienthello can still look very unique without the SNI extension.
• You don't have to specify the fingerprint value, because the default fingerprint (Chrome) is already the most popular one.

Why my server still got blocked when I used the latest trojan-go client?

Did you use any other trojan clients (eg. on your phone) to connect to the same server? If so, it cannot be determine whether the blocking is caused by this trojan-go client or other client's fingerprint and behaviors anymore.

We really want more users to report the status of their servers. If you are sure that you have been exclusively using the trojan-go clients we provided, please consider to report the status of your server (reporting not being blocked is as important as reporting blocking).

Example configuration file

{
    "run_type": "client",
    "local_addr": "127.0.0.1",
    "local_port": 1080,
    "remote_addr": "your-domain-name.com",
    "remote_port": 443,
    "password": [
        "your_awesome_password"
    ],
    "ssl": {
        "sni": "your-domain-name.com",
	"fingerprint": "Chrome"
    }
}

Credits

We thanks uTLS developers @gaukas and @jmwample for their time and efforts.

版本介绍

在这个版本中，我们将trojan-go客户端的使用的uTLS从v1.1.3升级到了v1.1.5。

我作为一名用户需要做什么？

• 您需要根据自己的操作系统，选择对应的客户端下载并更新。
• 您不需要更新你的服务器。因为这次更新只对客户端做了改变。
• 您应该考虑将配置文件中的sni设置为服务器的域名。因为如果不配置SNI，客户端发送的Clienthello的指纹还是很特殊。
• 您不必在配置文件中特意设置fingerprint。因为默认值(Chrome)已经是最流行的指纹了。

为什么我使用了最新版本的客户端但是服务器还是被封锁了？

您是否在用这里提供的客户端的同时还通过其他客户端（比如手机上的软件）连接了相同的服务器？如果是的话，那就不能排除端口被封锁的是其他客户端的指纹或行为导致的。

我们现在缺少用户的使用情况汇报，如果您可以肯定在一段时间内只用了我们提供的客户端，我们非常欢迎您汇报您的使用情况（被封锁或是没被封锁对我们来说同样重要）。

配置文件示例

{
    "run_type": "client",
    "local_addr": "127.0.0.1",
    "local_port": 1080,
    "remote_addr": "your-domain-name.com",
    "remote_port": 443,
    "password": [
        "your_awesome_password"
    ],
    "ssl": {
        "sni": "your-domain-name.com",
	"fingerprint": "Chrome"
    }
}

感谢

我们感谢uTLS的开发者@gaukas 和 @cheungxi。

Release notes

In this release, we upgrade trojan-go client's uTLS library from v1.1.3 to v1.1.5.

What do I need to do as a user?

• You need to update your client by downloading the corresponding binaries below.
• You don't need to update your server because all changes are made from the client side.
• You may want to set the sni value to your domain name in configuration file, because, your TLS Clienthello can still look very unique without the SNI extension.
• You don't have to specify the fingerprint value, because the default fingerprint (Chrome) is already the most popular one.

Why my server still got blocked when I used the latest trojan-go client?

Did you use any other trojan clients (eg. on your phone) to connect to the same server? If so, it cannot be determine whether the blocking is caused by this trojan-go client or other client's fingerprint and behaviors anymore.

We really want more users to report the status of their servers. If you are sure that you have been exclusively using the trojan-go clients we provided, please consider to report the status of your server (reporting not being blocked is as important as reporting blocking).

Example configuration file

{
    "run_type": "client",
    "local_addr": "127.0.0.1",
    "local_port": 1080,
    "remote_addr": "your-domain-name.com",
    "remote_port": 443,
    "password": [
        "your_awesome_password"
    ],
    "ssl": {
        "sni": "your-domain-name.com",
	"fingerprint": "Chrome"
    }
}

Credits

We thanks uTLS developers @gaukas and @cheungxi for their time and efforts.

版本介绍

在这个版本中，我们将trojan-go客户端的使用的uTLS从v1.1.2升级到了v1.1.3。

新的版本的fingerprint支持新添加的Edge，Safari，360Browser和QQBrowser选项；还更新了原本已经支持的Chrome, Firefox，和iOS选项的TLS指纹。

我作为一名用户需要做什么？

• 您需要根据自己的操作系统，选择对应的客户端下载并更新。
• 您应该考虑将配置文件中的sni设置为服务器的域名。因为如果不配置SNI，客户端发送的Clienthello的指纹还是很特殊。
• 您不需要更新你的服务器。因为这次更新只对客户端做了改变。
• 您不必在配置文件中特意设置fingerprint。因为默认值(Chrome)已经是最流行的指纹了。

为什么我使用了最新版本的客户端但是服务器还是被封锁了？

您是否在用这里提供的客户端的同时还通过其他客户端（比如手机上的软件）连接了相同的服务器？如果是的话，那就不能排除端口被封锁的是其他客户端的指纹或行为导致的。

如果您可以肯定在一段时间内只用了我们提供的客户端，我们欢迎您汇报您的使用情况（被封锁或是没被封锁对我们来说同样重要）。

配置文件示例

{
    "run_type": "client",
    "local_addr": "127.0.0.1",
    "local_port": 1080,
    "remote_addr": "your-domain-name.com",
    "remote_port": 443,
    "password": [
        "your_awesome_password"
    ],
    "ssl": {
        "sni": "your-domain-name.com",
	"fingerprint": "Chrome"
    }
}

感谢

我们感谢uTLS的开发者@gaukas 和 @hwh33。

Release notes

In this release, we upgrade trojan-go client's uTLS library from v1.1.2 to v1.1.3.

In particular, the new version

• supports more fingerprint options: Edge, Safari, 360Browser, and QQBrowser;
• updates the TLS fingerprint of existing fingerprint options: Chome, Firefox, and iOS.

What do I need to do as a user?

• You need to update your client by downloading the corresponding binaries below.
• You may want to set the sni value to your domain name in configuration file, because, your TLS Clienthello can still look very unique without the SNI extension.
• You don't need to update your server because all changes are made from the client side.
• You don't have to specify the fingerprint value, because the default fingerprint (Chrome) is already the most popular one.

Why my server still got blocked when I used the latest trojan-go client?

Did you use any other trojan clients (eg. on your phone) to connect to the same server? If so, it cannot be determine whether the blocking is caused by this trojan-go client or other client's fingerprint and behaviors anymore.

If you are sure that you exclusively used client in this release, please consider to report the status of your server (reporting not being blocked is as important as reporting blocking).

Example configuration file

{
    "run_type": "client",
    "local_addr": "127.0.0.1",
    "local_port": 1080,
    "remote_addr": "your-domain-name.com",
    "remote_port": 443,
    "password": [
        "your_awesome_password"
    ],
    "ssl": {
        "sni": "your-domain-name.com",
	"fingerprint": "Chrome"
    }
}

Credits

We thanks uTLS developers @gaukas and @hwh33 for their time and efforts.

在这个发布的版本中，我们更新了trojan-go客户端的TLS指纹，使其与一些当下最流行的TLS指纹一致。我们希望这次更新可以缓解2022年10月3日以来的针对基于TLS翻墙软件的大规模封锁。具体来讲：

• 将trojan-go客户端使用的Go标准库cryto/tls完全替换为uTLS。
• 将依赖的uTLS升级到最新版本v1.1.2。

根据配置的不同，这个版本的trojan-go客户端会发送以下一种流行的Clienthello指纹。这些指纹已经不同于之前版本用Go的标准库发送的TLS指纹)：

我作为一名用户需要做什么？

• 您需要根据自己的操作系统，选择对应的客户端下载并更新。
• 您应该考虑将配置文件中的sni设置为服务器的域名。因为正如上表总结的，如果不配置SNI，客户端发送的Clienthello的指纹还是很特殊。
• 您不需要更新你的服务器。因为这次更新只对客户端做了改变。
• 您不必在配置文件中特意设置fingerprint。因为默认值(Chrome)已经是最流行的指纹了。

配置文件示例

{
    "run_type": "client",
    "local_addr": "127.0.0.1",
    "local_port": 1080,
    "remote_addr": "your-domain-name.com",
    "remote_port": 443,
    "password": [
        "your_awesome_password"
    ],
    "ssl": {
        "sni": "your-domain-name.com",
	"fingerprint": "Chrome"
    }
}

致trojan-go开发者

我们无意另起炉灶维护一个分支版本的trojan-go。我们之所以发布这个release是为了用户能够立即下载使用编译后的客户端。一旦我们的pull request请求被采纳，我们将归档这个仓库。

感谢

我们感谢uTLS的开发者，因为没有他们持续不断的努力，我们不可能轻松地将trojan-go升级到使用最流行的TLS指纹。我们感谢Eric Wustrow帮助我们理解uTLS库。

In this release, we upgrade trojan-go client's TLS fingerprint to some of the most popular ones. We hope such change will mitigate the large-scale blocking of TLS-based censorship circumvention protocols since October 3, 2022. In particular,

• Replace Go's standard cryto/tls with uTLS in trojan-go client.
• Upagrade uTLS to the latest version v1.1.2.

Depending on one's configuration, the Clienthello sent by trojan-go client will now look like one of the following popular fingerprints (rather than the Go's TLS fingerprint in previous versions):

What do I need to do as a user?

• You need to update your client by downloading the corresponding binaries below.
• You may want to set the sni value to your domain name in configuration file, because, as summarized in the table above, your TLS Clienthello can still look very unique without the SNI extension.
• You don't need to update your server because all changes are made from the client side.
• You don't have to specify the fingerprint value, because the default fingerprint (Chrome) is already the most popular one.

Example configuration file

{
    "run_type": "client",
    "local_addr": "127.0.0.1",
    "local_port": 1080,
    "remote_addr": "your-domain-name.com",
    "remote_port": 443,
    "password": [
        "your_awesome_password"
    ],
    "ssl": {
        "sni": "your-domain-name.com",
	"fingerprint": "Chrome"
    }
}

To trojan-go developers

We do not intend to maintain a fork of trojan-go as a separate project. We made this release so that users can have compiled binaries to use immediately. We will archive our repo as soon as our pull request is merged to upstream.

Credits

We thanks uTLS developers, because without their continuous efforts, we wouldn't be able to upgrade trojan-go to the most popular TLS fingerprints effortlessly. We thank Eric Wustrow for helping us understand uTLS library.