--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2022-e1f1abea12
2022-09-23 00:42:03.472178
--------------------------------------------------------------------------------
Name : coturn
Product : Fedora EPEL 8
Version : 4.6.0
Release : 1.el8
URL :
https://github.com/coturn/coturn/
Summary : TURN/STUN & ICE Server
Description :
The Coturn TURN Server is a VoIP media traffic NAT traversal server and gateway.
It can be used as a general-purpose network traffic TURN server/gateway, too.
This implementation also includes some extra features. Supported RFCs:
TURN specs:
- RFC 5766 - base TURN specs
- RFC 6062 - TCP relaying TURN extension
- RFC 6156 - IPv6 extension for TURN
- Experimental DTLS support as client protocol.
STUN specs:
- RFC 3489 - "classic" STUN
- RFC 5389 - base "new" STUN specs
- RFC 5769 - test vectors for STUN protocol testing
- RFC 5780 - NAT behavior discovery support
The implementation fully supports the following client-to-TURN-server protocols:
- UDP (per RFC 5766)
- TCP (per RFC 5766 and RFC 6062)
- TLS (per RFC 5766 and RFC 6062); TLS1.0/TLS1.1/TLS1.2
- DTLS (experimental non-standard feature)
Supported relay protocols:
- UDP (per RFC 5766)
- TCP (per RFC 6062)
Supported user databases (for user repository, with passwords or keys, if
authentication is required):
- SQLite
- MySQL
- PostgreSQL
- Redis
Redis can also be used for status and statistics storage and notification.
Supported TURN authentication mechanisms:
- long-term
- TURN REST API (a modification of the long-term mechanism, for time-limited
secret-based authentication, for WebRTC applications)
The load balancing can be implemented with the following tools (either one or a
combination of them):
- network load-balancer server
- DNS-based load balancing
- built-in ALTERNATE-SERVER mechanism.
--------------------------------------------------------------------------------
Update Information:
# Coturn 4.6.0 * Fix small issues reported by `cppcheck` * Fix long log
line printing * Print `turnserver` version with `--version` * Do not write
outside of a buffer in admin interface * Fix uclient certificate loading bug
* Fix duplicate TCP flag in `run_tests.sh` script * Fix turn session leak *
Document dependency of new-log-timestamp-format on new-log-timestamp * Enable
compilation of coturn on Solaris 11.4 * First step to re-enable compilation
with OpenSSL 1.0.x * Fix cmake build on macOS * Disable SSL renegotiation
* Fix user quota release * Add more info to redis allocation status * Update
`turnserver.conf` comment * Fix performance regression * Add syslog facility
config * Add support for dual-stack prom listener * fix build with LibreSSL
3.4.0+ * Add CI tests workflow * Show error on invalid config * Add new
prom allocations metric * Don't link in libintl * Fix access to freed memory
* Configurable prom username labels * Configurable prometheus listener port
* Fix build MariaDB connector * Fix `README` typo * Correct doc typo * Fix
`sqlite3_shutdown` and `sqlite3_config` race * Prom server better * Define
`OPENSSL_VERSION_1_1_1` on systems where it doesn't (yet) exist * Regression
in 4.5.2 that cause issues in OpenSSL version < 1.1.1 * Typo fix in prometheus
* Add hash algorithm for hmackey value to redis userdb schema docs * Replace
`keep-address-family` with `allocation-default-address-family` (`keep-address-
family` is deprecated and will be removed) * Restore `no_stdout_log` behavior
* Support older MySQL client version in `configure` * Add to support cmake *
Fix typo in `turnserver.conf` * Packaging scripts can miss out on these errors
(exit code) * `Readme.turnserver`: how to run server as a daemon * SSL
reload has hidden bugs which cause crashes * Try to mitigate STUN
amplification attack * Add new option `--no-rfc5780` to force disable
RFC8750 * Add new option `--no-stun-backward-compatibility` Disable
handling old STUN binding requests and disable `MAPPED-ADDRESS` attribute in
binding response (use only the `XOR-MAPPED-ADDRESS`) * Add new option
`--response-origin-only-with-rfc5780` Add `RESPONSE_ORIGIN` attribute only
if RFC8750 is enabled * Don't send `SOFTWARE` attribute if `--no-software-
attribute set on` (breaking change) * Fix for `log_binding` (regression)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 14 2022 Robert Scheck <robert(a)fedoraproject.org> - 4.6.0-1
- Upgrade to 4.6.0 (#2126875)
* Wed Jul 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.5.2-11
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2126875 - coturn-4.6.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2126875
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update coturn' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7\
/html/System_Administrators_Guide/ch-yum.html
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------