Commit graph

19 commits

Author SHA1 Message Date
matthewcroughan 5df1e9d93d coturn: add test for static-auth-secret-file
Adds passthru.tests.coturn = nixosTests.coturn;
2021-07-03 08:33:39 +01:00
0x4A6F bf89c491bb
coturn: 4.5.1.3 -> 4.5.2
Version 4.5.2 'dan Eider':
	- fix null pointer dereference in case of out of memory. (thanks to Thomas Moeller for the report)
	- merge PR 517 (by wolmi)
		* add prometheus metrics
	- merge PR 637 (by David Florness)
	    * Delete trailing whitespace in example configuration files
	- merge PR 631 (by Debabrata Deka)
	    * Add architecture ppc64le to travis build
	- merge PR 627 (by Samuel)
		* Fix misleading option in doc (prometheus)
	- merge PR 643 (by tupelo-schneck)
		* Allow RFC6062 TCP relay data to look like TLS
	- merge PR 655 (by plinss)
		* Add support for proxy protocol V1
	- merge PR 618 (by Paul Wayper)
		* Print full date and time in logs
		* Add new options: "new-log-timestamp" and "new-log-timestamp-format"
	- merge PR 599 (by Cédric Krier)
		* Do not use FIPS and remove hardcode OPENSSL_VERSION_NUMBER with LibreSSL
	- update Docker mongoDB and fix with workaround the missing systemctl
	- merge PR 660 (by Camden Narzt)
		* fix compilation on macOS Big Sur
	- merge PR 546 (by jelmd)
		* Add ACME redirect url
	- merge PR 551 (by jelmd)
		* support of --acme-redirect <URL>
	- merge PR 672 further acme fixes (by jemld)
		* fix acme security, redundancy, consistency
	- Disable binding request logging to avoid DoS attacks. (Breaking change!)
		* Add new --log-binding option to enable binding request logging
	- Fix stale-nonce documentation. Resolves 604
	- Version number is changed to semver 2.0
	- Merge PR 288 (by Hristo Venev)
		* pkg-config, and various cleanups in configure file
	- Add systemd notification for better systemd integration
	- Fix Issue 621 (by ycaibb)
		* Fix: Null pointer dereference on tcp_client_input_handler_rfc6062data function
	- Fix Issue 600 (by ycaibb)
		* Fix: use-after-free vulnerability on write_to_peerchannel function
	- Fix Issue 601 (by ycaibb)
		* Fix: use-after-free vulnerability on write_client_connection function
	- Little refactoring prometheus
		* Fix c++ support
		* Simplify (as agreed in Issue 666)
			* Remove session id/allocation labels
			* Remove per session metrics. We should later add more counters.
	- Fix CVE-2020-26262 (credits: Enable-Security)
		* Fix ipv6 ::1 loopback check
		* Not allow allocate peer address 0.0.0.0/8 and ::/128
		* For more details see the github security advisory:
			https://github.com/coturn/coturn/security/advisories/GHSA-6g6j-r9rf-cm7p
2021-01-11 19:25:09 +00:00
Profpatsch 4a7f99d55d treewide: with stdenv.lib; in meta -> with lib;
Part of: https://github.com/NixOS/nixpkgs/issues/108938

meta = with stdenv.lib;

is a widely used pattern. We want to slowly remove
the `stdenv.lib` indirection and encourage people
to use `lib` directly. Thus let’s start with the meta
field.

This used a rewriting script to mostly automatically
replace all occurances of this pattern, and add the
`lib` argument to the package header if it doesn’t
exist yet.

The script in its current form is available at
https://cs.tvl.fyi/depot@2f807d7f141068d2d60676a89213eaa5353ca6e0/-/blob/users/Profpatsch/nixpkgs-rewriter/default.nix
2021-01-11 10:38:22 +01:00
R. RyanTM 5c67b5ef94 coturn: 4.5.1.2 -> 4.5.1.3 2020-06-30 03:46:31 +00:00
Franz Pletz 52b2fa943a
coturn: 4.5.1.1 -> 4.5.1.2 2020-05-04 15:02:38 +02:00
Martin Weinelt 704a018aae
coturn: apply patch for CVE-2020-6061/6062
Fixes: CVE-2020-6061, CVE-2020-6062

An exploitable heap overflow vulnerability exists in the way CoTURN
4.5.1.1 web server parses POST requests. A specially crafted HTTP
POST request can lead to information leaks and other misbehavior.
An attacker needs to send an HTTPS request to trigger this vulnerability.

An exploitable denial-of-service vulnerability exists in the way
CoTURN 4.5.1.1 web server parses POST requests. A specially crafted
HTTP POST request can lead to server crash and denial of service.
An attacker needs to send an HTTP request to trigger this vulnerability.
2020-04-29 12:53:16 +02:00
Michael Reilly 84cf00f980
treewide: Per RFC45, remove all unquoted URLs 2020-04-10 17:54:53 +01:00
volth 7b8fb5c06c treewide: remove redundant quotes 2019-09-08 23:38:31 +00:00
volth 46420bbaa3 treewide: name -> pname (easy cases) (#66585)
treewide replacement of

stdenv.mkDerivation rec {
  name = "*-${version}";
  version = "*";

to pname
2019-08-15 13:41:18 +01:00
Matthew Bauer 290a5d916e treewide: update homepages to https where available
Based on "problems" from repology:

https://repology.org/repository/nix_unstable/problems

Mostly simple changes to reflect redirects.
2019-04-15 10:10:05 -04:00
R. RyanTM 416a965692 coturn: 4.5.1.0 -> 4.5.1.1
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/coturn/versions
2019-03-10 13:17:16 +01:00
R. RyanTM 168be7c506 coturn: 4.5.0.8 -> 4.5.1.0
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/coturn/versions
2019-02-06 03:28:23 -08:00
Uli Baum cd82d267b9 coturn: mark broken on darwin 2018-10-21 22:29:02 +02:00
R. RyanTM 1b545a9f46 coturn: 4.5.0.7 -> 4.5.0.8
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/coturn/versions
2018-10-15 23:24:58 -07:00
volth 6d2857a311 [bot] treewide: remove unused 'inherit' in let blocks 2018-07-20 19:38:19 +00:00
Ryan Mulligan b79911a70e coturn: 4.5.0.6 -> 4.5.0.7
Semi-automatic update. These checks were performed:

- built on NixOS
- ran `/nix/store/70pa0xb505v9glp792ldfq66ifjbrk5i-coturn-4.5.0.7/bin/turnserver -h` got 0 exit code
- ran `/nix/store/70pa0xb505v9glp792ldfq66ifjbrk5i-coturn-4.5.0.7/bin/turnserver -h` and found version 4.5.0.7
- ran `/nix/store/70pa0xb505v9glp792ldfq66ifjbrk5i-coturn-4.5.0.7/bin/turnadmin -h` got 0 exit code
- ran `/nix/store/70pa0xb505v9glp792ldfq66ifjbrk5i-coturn-4.5.0.7/bin/turnadmin --help` got 0 exit code
- ran `/nix/store/70pa0xb505v9glp792ldfq66ifjbrk5i-coturn-4.5.0.7/bin/turnutils_natdiscovery help` got 0 exit code
- found 4.5.0.7 with grep in /nix/store/70pa0xb505v9glp792ldfq66ifjbrk5i-coturn-4.5.0.7
- found 4.5.0.7 in filename of file in /nix/store/70pa0xb505v9glp792ldfq66ifjbrk5i-coturn-4.5.0.7
2018-02-25 17:43:10 -08:00
Robin Gloster 2944ca8f6a
coturn: 4.5.0.3 -> 4.5.0.6
fixes build with openssl 1.1
2017-05-20 13:22:46 +02:00
John Ericson 4c0d7da183 Get rid of all with { inherit... } and just used let inherit...
The old forms presumably predates, or were made in ignorance of,
`let inherit`. This way is better style as the scoping as more lexical,
something which Nix can (or might already!) take advantage of.
2017-03-30 03:05:05 -04:00
Benjamin Saunders 8e47786c0e coturn: init at 4.5.0.3 (#16284) 2016-06-21 12:59:29 +02:00