Astral VPN v2.2.32 - Kanit kimligi ve DNS guvenligi hotfix
Astral VPN v2.2.32 - Kanit kimligi ve DNS guvenligi hotfix
v2.2.32, v2.2.31 uzerine gelen guvenlik ve dogrulama sikilastirma surumudur. Bagli durumu icin web hedeflerinde yalniz hedef sayisi degil, dogrulanan hedef ID listesi de tanilamaya yazilir ve UI/smoke kapilari bu listeyi kontrol eder.
Degisenler
- Scoped WebProxy kaniti artik
webProxyProof.verifiedTargetIdsalanini yazar. - Hedef testi, controller tarafinda dogrulanan hedef ID listesinde ilgili hedef yoksa cached kaniti basarili saymaz.
- Live smoke scripti web-only hedeflerde hedef testi sonucunu tek basina yeterli gormez; controller
webProxyProof.verifiedTargetIdslistesinin secili web hedeflerini kapsamasini ister. Astral.WebProxypublic DNS fallback'i varsayilan olarak kapatildi. Sistem DNS basarisiz olursa Cloudflare/Google resolver'a otomatik dusmez.- Public DNS fallback yalniz
ASTRAL_WEBPROXY_ALLOW_PUBLIC_DNS_FALLBACK=1/true/yesile acilabilir. - Hedef testi health ciktilari controller kanit detaylarini da tasir; release smoke artifactlerinde WebProxy proof alanlari bos kalmaz.
Guvenlik
- Varsayilan davranis sistem DNS sinirini korur.
- Genel tarayici surecleri WireSock
AllowedAppsicine alinmaz. - Web hedefleri yine PAC +
Astral.WebProxy.exeuzerinden secili domainlerle sinirlidir. - HTTPS icerigi cozulmez, sertifika kurulmaz, MITM yapilmaz.
Dogrulama
Release oncesi su kapilar alinmalidir:
dotnet build Astral.sln --configuration Release
dotnet run --project tests\Astral.Core.Tests --configuration Release
dotnet run --project tests\Astral.Windows.Tests --configuration Release
powershell.exe -NoProfile -ExecutionPolicy Bypass -File .\scripts\verify.ps1 -ArtifactsPath artifacts\verify-2.2.32
powershell.exe -NoProfile -ExecutionPolicy Bypass -File .\scripts\build-release.ps1
gitleaks detect --redact --no-banner --verbose
gitleaks dir . --redact --no-banner --verboseElevated live smoke kapilari:
powershell.exe -NoProfile -ExecutionPolicy Bypass -File .\scripts\smoke-live-connect.ps1 -ExePath .\artifacts\publish\win-x64\Astral.exe -TargetIds discord -RequireTargetActionRecheck -ManualTargetActionTimeoutSeconds 120 -OutputPath .\artifacts\app-live-connect-smoke-v2.2.32-discord-target-proof.txt
powershell.exe -NoProfile -ExecutionPolicy Bypass -File .\scripts\smoke-live-connect.ps1 -ExePath .\artifacts\publish\win-x64\Astral.exe -TargetIds discord,wattpad -RequireTargetActionRecheck -ManualTargetActionTimeoutSeconds 120 -OutputPath .\artifacts\app-live-connect-smoke-v2.2.32-mixed-target-proof.txt
powershell.exe -NoProfile -ExecutionPolicy Bypass -File .\scripts\smoke-live-connect.ps1 -ExePath .\artifacts\publish\win-x64\Astral.exe -TargetIds wattpad,bigo-live,blogspot,radio-garden,deutsche-welle,voice-of-america,eksi-sozluk,grok,imgur,pastebin -OutputPath .\artifacts\app-live-connect-smoke-v2.2.32-web-bulk.txtRelease assetleri
Astral-2.2.32-win-x64.zipAstral-2.2.32-win-x64.sha256.txtAstral-win-x64.zipAstral-win-x64.sha256.txt
Son GitHub Actions Yayın workflow'u ile yayınlanan Astral-2.2.32-win-x64.zip SHA-256: 10B149EED4672E135CCF7B76B6F8C1934B894EDD3C2B2827C6D8AEE7387B1F5A.