1.12.1

• Add sha256sums.txt to the release

1.12.0

• Add builds for MIPS/MIPSle softfloat as well as split out ARM-5 ARM-6 ARM-7
• Add ARM64 builds for Windows

1.11.0

Server:

• Add --tls-client-ca for mTLS authentication (if used together with --authenticator, it verifies the username matches the CN)

Client:

• Add --tls-client-key and --tls-client-cert for mTLS authentication

1.10.4

Tweak client-side warnings on usages that are not advised. They are now single-line with WARNING prefixed

1.10.2

This release is only internal changes, no user-facing changes have been made!

• Added abstraction layer between connections and VPN sockets (currently implemented only a WebSocket adapter, could support future adapters such as WebTransport)

1.9.2

• Allow running server on Windows in TAP mode (as opposed to not at all before)
• Rename arguments for "do not config TAP interfaces" (both of them) and "Allow client to client" to tap-remote-noconf, tap-local-noconf and allow-client-to-client to make it clear from their name what they affect

1.8.0

• Add ability to specify network interface name on the client with --interface-name
• Add ability to specify a TUN name pattern to use on the Linux server with --tun-naming-prefix

1.7.1

• Fix typo

1.7.0

• Move authenticators into their own file into their own sub-package
• Added --authenticator-config to specify a filename for the specified authenticator to load config/users from (htpasswd authenticator expects an htpasswd formatted file)

1.6.0

Add version and protocol version constants