Commit Graph

28 Commits

Author SHA1 Message Date
Artturin
f9fdf2d402 treewide: move NIX_CFLAGS_COMPILE to the env attrset
with structuredAttrs lists will be bash arrays which cannot be exported
which will be a issue with some patches and some wrappers like cc-wrapper

this makes it clearer that NIX_CFLAGS_COMPILE must be a string as lists
in env cause a eval failure
2023-02-22 21:23:04 +02:00
ajs124
c8528b82d2 coturn: don't build against openssl_1_1 anymore 2022-12-14 22:31:37 +01:00
ajs124
6f6dbe2dcd coturn: override libevent openssl
libevent propagates openssl
coturn crashes when it has two different versions of openssl
2022-12-14 22:30:55 +01:00
Fabian Affolter
2c16d64efd
coturn: fix typo 2022-12-05 09:18:14 +01:00
Fabian Affolter
3ee2983103
coturn: add changelog to meta 2022-12-05 09:17:34 +01:00
R. Ryantm
26f0929fb7 coturn: 4.6.0 -> 4.6.1 2022-12-05 07:13:25 +00:00
R. Ryantm
1a28a80c40 coturn: 4.5.2 -> 4.6.0 2022-09-16 07:25:52 +00:00
Travis Athougies
4ae459c3ac
coturn: enable sqlite support
Coturn uses SQL databases to store authentication credentials. Most users of coturn are going to expect sqlite support, since that's the default db

Without this being available during build, the default configure script disabled SQLite support, providing a coturn on NixOS that does not behave in the default manner.
2022-08-29 20:51:38 -07:00
Sergei Trofimovich
d7c6d3d063 coturn: add -fcommon workaround
Workaround build failure on -fno-common toolchains like upstream
gcc-10. Otherwise build fails as:

    ld: ...-libprom-0.1.1/include/prom_collector_registry.h:37: multiple definition of
      `PROM_COLLECTOR_REGISTRY_DEFAULT'; ...-libprom-0.1.1/include/prom_collector_registry.h:37: first defined here
2022-06-05 18:51:26 +01:00
matthewcroughan
5df1e9d93d coturn: add test for static-auth-secret-file
Adds passthru.tests.coturn = nixosTests.coturn;
2021-07-03 08:33:39 +01:00
0x4A6F
bf89c491bb
coturn: 4.5.1.3 -> 4.5.2
Version 4.5.2 'dan Eider':
	- fix null pointer dereference in case of out of memory. (thanks to Thomas Moeller for the report)
	- merge PR 517 (by wolmi)
		* add prometheus metrics
	- merge PR 637 (by David Florness)
	    * Delete trailing whitespace in example configuration files
	- merge PR 631 (by Debabrata Deka)
	    * Add architecture ppc64le to travis build
	- merge PR 627 (by Samuel)
		* Fix misleading option in doc (prometheus)
	- merge PR 643 (by tupelo-schneck)
		* Allow RFC6062 TCP relay data to look like TLS
	- merge PR 655 (by plinss)
		* Add support for proxy protocol V1
	- merge PR 618 (by Paul Wayper)
		* Print full date and time in logs
		* Add new options: "new-log-timestamp" and "new-log-timestamp-format"
	- merge PR 599 (by Cédric Krier)
		* Do not use FIPS and remove hardcode OPENSSL_VERSION_NUMBER with LibreSSL
	- update Docker mongoDB and fix with workaround the missing systemctl
	- merge PR 660 (by Camden Narzt)
		* fix compilation on macOS Big Sur
	- merge PR 546 (by jelmd)
		* Add ACME redirect url
	- merge PR 551 (by jelmd)
		* support of --acme-redirect <URL>
	- merge PR 672 further acme fixes (by jemld)
		* fix acme security, redundancy, consistency
	- Disable binding request logging to avoid DoS attacks. (Breaking change!)
		* Add new --log-binding option to enable binding request logging
	- Fix stale-nonce documentation. Resolves 604
	- Version number is changed to semver 2.0
	- Merge PR 288 (by Hristo Venev)
		* pkg-config, and various cleanups in configure file
	- Add systemd notification for better systemd integration
	- Fix Issue 621 (by ycaibb)
		* Fix: Null pointer dereference on tcp_client_input_handler_rfc6062data function
	- Fix Issue 600 (by ycaibb)
		* Fix: use-after-free vulnerability on write_to_peerchannel function
	- Fix Issue 601 (by ycaibb)
		* Fix: use-after-free vulnerability on write_client_connection function
	- Little refactoring prometheus
		* Fix c++ support
		* Simplify (as agreed in Issue 666)
			* Remove session id/allocation labels
			* Remove per session metrics. We should later add more counters.
	- Fix CVE-2020-26262 (credits: Enable-Security)
		* Fix ipv6 ::1 loopback check
		* Not allow allocate peer address 0.0.0.0/8 and ::/128
		* For more details see the github security advisory:
			https://github.com/coturn/coturn/security/advisories/GHSA-6g6j-r9rf-cm7p
2021-01-11 19:25:09 +00:00
Profpatsch
4a7f99d55d treewide: with stdenv.lib; in meta -> with lib;
Part of: https://github.com/NixOS/nixpkgs/issues/108938

meta = with stdenv.lib;

is a widely used pattern. We want to slowly remove
the `stdenv.lib` indirection and encourage people
to use `lib` directly. Thus let’s start with the meta
field.

This used a rewriting script to mostly automatically
replace all occurances of this pattern, and add the
`lib` argument to the package header if it doesn’t
exist yet.

The script in its current form is available at
https://cs.tvl.fyi/depot@2f807d7f141068d2d60676a89213eaa5353ca6e0/-/blob/users/Profpatsch/nixpkgs-rewriter/default.nix
2021-01-11 10:38:22 +01:00
R. RyanTM
5c67b5ef94 coturn: 4.5.1.2 -> 4.5.1.3 2020-06-30 03:46:31 +00:00
Franz Pletz
52b2fa943a
coturn: 4.5.1.1 -> 4.5.1.2 2020-05-04 15:02:38 +02:00
Martin Weinelt
704a018aae
coturn: apply patch for CVE-2020-6061/6062
Fixes: CVE-2020-6061, CVE-2020-6062

An exploitable heap overflow vulnerability exists in the way CoTURN
4.5.1.1 web server parses POST requests. A specially crafted HTTP
POST request can lead to information leaks and other misbehavior.
An attacker needs to send an HTTPS request to trigger this vulnerability.

An exploitable denial-of-service vulnerability exists in the way
CoTURN 4.5.1.1 web server parses POST requests. A specially crafted
HTTP POST request can lead to server crash and denial of service.
An attacker needs to send an HTTP request to trigger this vulnerability.
2020-04-29 12:53:16 +02:00
Michael Reilly
84cf00f980
treewide: Per RFC45, remove all unquoted URLs 2020-04-10 17:54:53 +01:00
volth
7b8fb5c06c treewide: remove redundant quotes 2019-09-08 23:38:31 +00:00
volth
46420bbaa3 treewide: name -> pname (easy cases) (#66585)
treewide replacement of

stdenv.mkDerivation rec {
  name = "*-${version}";
  version = "*";

to pname
2019-08-15 13:41:18 +01:00
Matthew Bauer
290a5d916e treewide: update homepages to https where available
Based on "problems" from repology:

https://repology.org/repository/nix_unstable/problems

Mostly simple changes to reflect redirects.
2019-04-15 10:10:05 -04:00
R. RyanTM
416a965692 coturn: 4.5.1.0 -> 4.5.1.1
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/coturn/versions
2019-03-10 13:17:16 +01:00
R. RyanTM
168be7c506 coturn: 4.5.0.8 -> 4.5.1.0
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/coturn/versions
2019-02-06 03:28:23 -08:00
Uli Baum
cd82d267b9 coturn: mark broken on darwin 2018-10-21 22:29:02 +02:00
R. RyanTM
1b545a9f46 coturn: 4.5.0.7 -> 4.5.0.8
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/coturn/versions
2018-10-15 23:24:58 -07:00
volth
6d2857a311 [bot] treewide: remove unused 'inherit' in let blocks 2018-07-20 19:38:19 +00:00
Ryan Mulligan
b79911a70e coturn: 4.5.0.6 -> 4.5.0.7
Semi-automatic update. These checks were performed:

- built on NixOS
- ran `/nix/store/70pa0xb505v9glp792ldfq66ifjbrk5i-coturn-4.5.0.7/bin/turnserver -h` got 0 exit code
- ran `/nix/store/70pa0xb505v9glp792ldfq66ifjbrk5i-coturn-4.5.0.7/bin/turnserver -h` and found version 4.5.0.7
- ran `/nix/store/70pa0xb505v9glp792ldfq66ifjbrk5i-coturn-4.5.0.7/bin/turnadmin -h` got 0 exit code
- ran `/nix/store/70pa0xb505v9glp792ldfq66ifjbrk5i-coturn-4.5.0.7/bin/turnadmin --help` got 0 exit code
- ran `/nix/store/70pa0xb505v9glp792ldfq66ifjbrk5i-coturn-4.5.0.7/bin/turnutils_natdiscovery help` got 0 exit code
- found 4.5.0.7 with grep in /nix/store/70pa0xb505v9glp792ldfq66ifjbrk5i-coturn-4.5.0.7
- found 4.5.0.7 in filename of file in /nix/store/70pa0xb505v9glp792ldfq66ifjbrk5i-coturn-4.5.0.7
2018-02-25 17:43:10 -08:00
Robin Gloster
2944ca8f6a
coturn: 4.5.0.3 -> 4.5.0.6
fixes build with openssl 1.1
2017-05-20 13:22:46 +02:00
John Ericson
4c0d7da183 Get rid of all with { inherit... } and just used let inherit...
The old forms presumably predates, or were made in ignorance of,
`let inherit`. This way is better style as the scoping as more lexical,
something which Nix can (or might already!) take advantage of.
2017-03-30 03:05:05 -04:00
Benjamin Saunders
8e47786c0e coturn: init at 4.5.0.3 (#16284) 2016-06-21 12:59:29 +02:00