-------------------------------------------------------------------------------- Fedora EPEL Update Notification FEDORA-EPEL-2022-1f79d5d5e6 2022-09-23 00:31:33.629868 --------------------------------------------------------------------------------
Name : coturn Product : Fedora EPEL 9 Version : 4.6.0 Release : 1.el9 URL : https://github.com/coturn/coturn/ Summary : TURN/STUN & ICE Server Description : The Coturn TURN Server is a VoIP media traffic NAT traversal server and gateway. It can be used as a general-purpose network traffic TURN server/gateway, too.
This implementation also includes some extra features. Supported RFCs:
TURN specs: - RFC 5766 - base TURN specs - RFC 6062 - TCP relaying TURN extension - RFC 6156 - IPv6 extension for TURN - Experimental DTLS support as client protocol.
STUN specs: - RFC 3489 - "classic" STUN - RFC 5389 - base "new" STUN specs - RFC 5769 - test vectors for STUN protocol testing - RFC 5780 - NAT behavior discovery support
The implementation fully supports the following client-to-TURN-server protocols: - UDP (per RFC 5766) - TCP (per RFC 5766 and RFC 6062) - TLS (per RFC 5766 and RFC 6062); TLS1.0/TLS1.1/TLS1.2 - DTLS (experimental non-standard feature)
Supported relay protocols: - UDP (per RFC 5766) - TCP (per RFC 6062)
Supported user databases (for user repository, with passwords or keys, if authentication is required): - SQLite - MySQL - PostgreSQL - Redis
Redis can also be used for status and statistics storage and notification.
Supported TURN authentication mechanisms: - long-term - TURN REST API (a modification of the long-term mechanism, for time-limited secret-based authentication, for WebRTC applications)
The load balancing can be implemented with the following tools (either one or a combination of them): - network load-balancer server - DNS-based load balancing - built-in ALTERNATE-SERVER mechanism.
-------------------------------------------------------------------------------- Update Information:
# Coturn 4.6.0 * Fix small issues reported by `cppcheck` * Fix long log line printing * Print `turnserver` version with `--version` * Do not write outside of a buffer in admin interface * Fix uclient certificate loading bug * Fix duplicate TCP flag in `run_tests.sh` script * Fix turn session leak * Document dependency of new-log-timestamp-format on new-log-timestamp * Enable compilation of coturn on Solaris 11.4 * First step to re-enable compilation with OpenSSL 1.0.x * Fix cmake build on macOS * Disable SSL renegotiation * Fix user quota release * Add more info to redis allocation status * Update `turnserver.conf` comment * Fix performance regression * Add syslog facility config * Add support for dual-stack prom listener * fix build with LibreSSL 3.4.0+ * Add CI tests workflow * Show error on invalid config * Add new prom allocations metric * Don't link in libintl * Fix access to freed memory * Configurable prom username labels * Configurable prometheus listener port * Fix build MariaDB connector * Fix `README` typo * Correct doc typo * Fix `sqlite3_shutdown` and `sqlite3_config` race * Prom server better * Define `OPENSSL_VERSION_1_1_1` on systems where it doesn't (yet) exist * Regression in 4.5.2 that cause issues in OpenSSL version < 1.1.1 * Typo fix in prometheus * Add hash algorithm for hmackey value to redis userdb schema docs * Replace `keep-address-family` with `allocation-default-address-family` (`keep-address- family` is deprecated and will be removed) * Restore `no_stdout_log` behavior * Support older MySQL client version in `configure` * Add to support cmake * Fix typo in `turnserver.conf` * Packaging scripts can miss out on these errors (exit code) * `Readme.turnserver`: how to run server as a daemon * SSL reload has hidden bugs which cause crashes * Try to mitigate STUN amplification attack * Add new option `--no-rfc5780` to force disable RFC8750 * Add new option `--no-stun-backward-compatibility` Disable handling old STUN binding requests and disable `MAPPED-ADDRESS` attribute in binding response (use only the `XOR-MAPPED-ADDRESS`) * Add new option `--response-origin-only-with-rfc5780` Add `RESPONSE_ORIGIN` attribute only if RFC8750 is enabled * Don't send `SOFTWARE` attribute if `--no-software- attribute set on` (breaking change) * Fix for `log_binding` (regression) -------------------------------------------------------------------------------- ChangeLog:
* Wed Sep 14 2022 Robert Scheck robert@fedoraproject.org - 4.6.0-1 - Upgrade to 4.6.0 (#2126875) * Wed Jul 20 2022 Fedora Release Engineering releng@fedoraproject.org - 4.5.2-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2126875 - coturn-4.6.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2126875 --------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use su -c 'yum update coturn' at the command line. For more information, refer to "YUM", available at https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7%5C /html/System_Administrators_Guide/ch-yum.html
All packages are signed with the Fedora EPEL GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------