In v2.6.3 hysteria2 added mTLS support, I tried the same mTLS configuration from my mTLS+SOCKS5 in Surge, it's not working.
- tried server.crt with ecparam "prime256v1", works with mTLS+SOCKS5, self-signed server.crt doesn't work with hysteria2, got error "ERR_DRAINING" even without clientCA configured.
- swith to normal rsa2048 server.crt, works with mTLS+SOCKS5, self-signed server.crt works with hysteria2. clientCA is not working, got error "ERR_DRAINING"
2.6.3
- Added mTLS support for client certificate authentication
- Fixed a memory leak issue in tun mode
- Fixed an issue where DNS resolution failed in tun mode on Linux systems using systemd-resolved
- Fixed a bug in the ACL cache that caused rules with different ports or protocols to be applied to irrelevant connections
- Removed the license-conflicted DoH library and replaced it with an in-house implementation
- Fixed a race condition in UDP session handling