Bump github.com/xtls/xray-core from 1.6.0 to 1.7.5

[dependabot[bot]]

Bumps github.com/xtls/xray-core from 1.6.0 to 1.7.5.

Release notes

Sourced from github.com/xtls/xray-core's releases.

Xray-core v1.7.5

More fingerprints & Share link standard

指纹列表：transport/internet/tls/tls.go @​yuhan6665 @​RPRX

• 现在 fingerprint 支持填写 uTLS 库的原生指纹名，详见 ModernFingerprints 和 OtherFingerprints，覆盖全部指纹。
• 添加更多预设指纹短名，详见 PresetFingerprints，建议 GUI 内置它们为预设选项，并允许手动填写指纹名。 random：从 ModernFingerprints 中随机选一个指纹，注意它与 randomized 是两个完全不同的选项。 randomized：随机生成一个 TLSv1.3、X25519 的指纹，符合 VLESS XTLS Vision、REALITY 的要求。
• 前段时间有 safari 指纹更稳的反馈，注意现在选 ios 才是前段时间的 safari，它与现在的 safari 不同。
• 若有 fingerprint，Xray-core 启动时会检查它是否存在，若不存在将报错。
• 更新分享链接标准：添加 fp 以支持分享指纹名，详见 https://github.com/XTLS/Xray-core/discussions/716 4.4.0 项。

VLESS XTLS Vision

• XTLS/Xray-core#1610 XTLS Vision inserts padding after single VLESS header (Client) @​yuhan6665 @​RPRX
• XTLS/Xray-core#1567 XTLS Vision rejects Mux except for XUDP (Server) @​yuhan6665 @​RPRX
• XTLS/Xray-core#1554 XTLS Vision checks outer TLS version (Both) @​yuhan6665 @​timi-owo

Features

• XTLS/Xray-core#1494 为 sockopt 添加 interface 项以指定出口网卡名称 @​aeeq
• XTLS/Xray-core#1556 uTLS 支持 PinnedPeerCertificateChainSha256 @​mra9776

Fixes

该版本修复了两个会导致服务端崩溃的问题，建议升级

• XTLS/Xray-core#1501 Make sure that 0 <= b.start <= b.end @​RPRX @​zerodwide
• XTLS/Xray-core#1515 Use buf.FromBytes(make([]byte, buf.Size)) to create first @​RPRX @​asiaqa
• XTLS/Xray-core#1611 Add callClose to UDP Dispatcher @​RPRX @​rurirei
• XTLS/Xray-core#1509 Refine the logic of security type auto @​H1JK
• XTLS/Xray-core#1542 Handle error raised by dispatcher @​pocketW

Chores

• Generate *.pb.go files with protoc v3.21.12，你可以按照该 commit message 中的步骤生成所有 *.pb.go 文件 @​RPRX
• 基于 Go 1.20，升级所有依赖（gvisor 除外），更新 workflows @​RPRX

Notices

• 经过一段时间的必要前期准备，Xray-core、VLESS XTLS Vision、uTLS 等均已达成发布 REALITY 的前置条件，现在开始重点转向 REALITY，相关代码、模板、文章、文档等会陆续发布，今天之内会公布 REALITY 服务端的代码
• Xray-core v1.8.0 会加入对 REALITY 的支持，并且可能会移除对旧版 XTLS 的支持，请尽快迁移到 XTLS Vision
• 该版本（Xray-core v1.7.5）的编译需要使用 Go 1.19+
• 恭喜 @​yuhan6665 贡献了 Xray-core 的第 500 个 commit！

Xray-core v1.7.3

已并入 https://github.com/XTLS/Xray-core/releases/tag/v1.7.5

Xray-core v1.7.2

... (truncated)

Commits

• 15999e5 v1.7.5
• 48ff0d9 Bump google.golang.org/grpc from 1.52.3 to 1.53.0 (#1625)
• 229e251 Bump golang.org/x/sys from 0.4.0 to 0.5.0 (#1626)
• 9046eda Add callClose to UDP Dispatcher
• f32921d Refine randomized
• c3faa8b Insert padding with empty content to camouflage VLESS header (#1610)
• 00c9576 Use go:linkname in qtls_go118.go
• fa7300e Add warning on using old version of XTLS
• b57d3fa 1.20 -> '1.20'
• 53833c2 Update workflows to use Go 1.20
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

Superseded by #169.