il y a 11 ans · 7b444a1441
--- a/README.turnserver
+++ b/README.turnserver
@@ -420,6 +420,10 @@ Options with required values:
 
															 			value can be changed on-the-fly by a separate program, so this is why
														
 
															 			that other mode is dynamic. Multiple shared secrets can be used
														
 
															 			(both in the database and in the "static" fashion).
														
 
															+			
														
 
															+--server-name		Server name used (when necessary) for
														
 
															+			the authentication purposes (oauth).
														
 
															+			The default value is the FQDN of the host.
														
 
															 --cert			Certificate file, PEM format. Same file 
														
 
															 			search rules applied as for the configuration 
														
--- a/examples/etc/turnserver.conf
+++ b/examples/etc/turnserver.conf
@@ -208,7 +208,13 @@
 
															 # in user database (if present). The database-stored  value can be changed on-the-fly
														
 
															 # by a separate program, so this is why that other mode is 'dynamic'.
														
 
															 #
														
 
															-#static-auth-secret 	
														
 
															+#static-auth-secret=north
														
 
															+
														
 
															+# Server name used (when necessary) for
														
 
															+# the authentication purposes (oauth).
														
 
															+# The default value is the FQDN of the host.
														
 
															+#
														
 
															+#server-name=blackdow.carleon.gov
														
 
															 # 'Static' user accounts for long term credentials mechanism, only.
														
 
															 # This option cannot be used with TURN REST API or with short-term credentials
														
--- a/examples/scripts/longtermsecuredb/secure_relay_with_db_mongo.sh
+++ b/examples/scripts/longtermsecuredb/secure_relay_with_db_mongo.sh
@@ -30,4 +30,4 @@ fi
 
															 export LD_LIBRARY_PATH=${LD_LIBRARY_PATH}:/usr/local/lib/
														
 
															 export DYLD_LIBRARY_PATH=${DYLD_LIBRARY_PATH}:/usr/local/lib/
														
 
															-PATH="./bin/:../bin/:../../bin/:${PATH}" turnserver -v --syslog -a -L 127.0.0.1 -L ::1 -E 127.0.0.1 -E ::1 --max-bps=3000000 -f -m 3 --min-port=32355 --max-port=65535 -r north.gov --mongo-userdb="mongodb://localhost/coturn" --cert=turn_server_cert.pem --pkey=turn_server_pkey.pem --log-file=stdout --cipher-list=ALL:SSLv2 $@
														
 
															+PATH="./bin/:../bin/:../../bin/:${PATH}" turnserver --server-name="blackdow.carleon.gov" -v --syslog -a -L 127.0.0.1 -L ::1 -E 127.0.0.1 -E ::1 --max-bps=3000000 -f -m 3 --min-port=32355 --max-port=65535 -r north.gov --mongo-userdb="mongodb://localhost/coturn" --cert=turn_server_cert.pem --pkey=turn_server_pkey.pem --log-file=stdout --cipher-list=ALL:SSLv2 $@
														
--- a/examples/scripts/longtermsecuredb/secure_relay_with_db_mysql.sh
+++ b/examples/scripts/longtermsecuredb/secure_relay_with_db_mysql.sh
@@ -31,4 +31,4 @@ fi
 
															 export LD_LIBRARY_PATH=${LD_LIBRARY_PATH}:/usr/local/lib/:/usr/local/mysql/lib/
														
 
															 export DYLD_LIBRARY_PATH=${DYLD_LIBRARY_PATH}:/usr/local/lib/:/usr/local/mysql/lib/
														
 
															-PATH="./bin/:../bin/:../../bin/:${PATH}" turnserver -v --syslog -a -L 127.0.0.1 -L ::1 -E 127.0.0.1 -E ::1 --max-bps=3000000 -f -m 3 --min-port=32355 --max-port=65535 -r north.gov --mysql-userdb="host=localhost dbname=coturn user=turn password=turn connect_timeout=30" --cert=turn_server_cert.pem --pkey=turn_server_pkey.pem --log-file=stdout --cipher-list=ALL:SSLv2 $@
														
 
															+PATH="./bin/:../bin/:../../bin/:${PATH}" turnserver --server-name="blackdow.carleon.gov" -v --syslog -a -L 127.0.0.1 -L ::1 -E 127.0.0.1 -E ::1 --max-bps=3000000 -f -m 3 --min-port=32355 --max-port=65535 -r north.gov --mysql-userdb="host=localhost dbname=coturn user=turn password=turn connect_timeout=30" --cert=turn_server_cert.pem --pkey=turn_server_pkey.pem --log-file=stdout --cipher-list=ALL:SSLv2 $@
														
--- a/examples/scripts/longtermsecuredb/secure_relay_with_db_mysql_ssl.sh
+++ b/examples/scripts/longtermsecuredb/secure_relay_with_db_mysql_ssl.sh
@@ -32,4 +32,4 @@ fi
 
															 export LD_LIBRARY_PATH=${LD_LIBRARY_PATH}:/usr/local/lib/:/usr/local/mysql/lib/
														
 
															 export DYLD_LIBRARY_PATH=${DYLD_LIBRARY_PATH}:/usr/local/lib/:/usr/local/mysql/lib/
														
 
															-PATH="./bin/:../bin/:../../bin/:${PATH}" turnserver -v --syslog -a -L 127.0.0.1 -L ::1 -E 127.0.0.1 -E ::1 --max-bps=3000000 -f -m 3 --min-port=32355 --max-port=65535 -r north.gov --mysql-userdb="host=localhost dbname=coturn user=turn password=turn cipher=DHE-RSA-AES256-SHA connect_timeout=30" --cert=turn_server_cert.pem --pkey=turn_server_pkey.pem --log-file=stdout --cipher-list=ALL:SSLv2 $@
														
 
															+PATH="./bin/:../bin/:../../bin/:${PATH}" turnserver --server-name="blackdow.carleon.gov" -v --syslog -a -L 127.0.0.1 -L ::1 -E 127.0.0.1 -E ::1 --max-bps=3000000 -f -m 3 --min-port=32355 --max-port=65535 -r north.gov --mysql-userdb="host=localhost dbname=coturn user=turn password=turn cipher=DHE-RSA-AES256-SHA connect_timeout=30" --cert=turn_server_cert.pem --pkey=turn_server_pkey.pem --log-file=stdout --cipher-list=ALL:SSLv2 $@
														
--- a/examples/scripts/longtermsecuredb/secure_relay_with_db_psql.sh
+++ b/examples/scripts/longtermsecuredb/secure_relay_with_db_psql.sh
@@ -31,7 +31,7 @@ fi
 
															 export LD_LIBRARY_PATH=${LD_LIBRARY_PATH}:/usr/local/lib/:/usr/local/mysql/lib/
														
 
															 export DYLD_LIBRARY_PATH=${DYLD_LIBRARY_PATH}:/usr/local/lib/:/usr/local/mysql/lib/
														
 
															-PATH="./bin/:../bin/:../../bin/:${PATH}" turnserver -v --syslog -a -L 127.0.0.1 -L ::1 -E 127.0.0.1 -E ::1 --max-bps=3000000 -f -m 3 --min-port=32355 --max-port=65535 -r north.gov --psql-userdb="host=localhost dbname=coturn user=turn password=turn connect_timeout=30" --cert=turn_server_cert.pem --pkey=turn_server_pkey.pem --log-file=stdout --cipher-list=ALL:SSLv2 $@ 
														
 
															+PATH="./bin/:../bin/:../../bin/:${PATH}" turnserver --server-name="blackdow.carleon.gov" -v --syslog -a -L 127.0.0.1 -L ::1 -E 127.0.0.1 -E ::1 --max-bps=3000000 -f -m 3 --min-port=32355 --max-port=65535 -r north.gov --psql-userdb="host=localhost dbname=coturn user=turn password=turn connect_timeout=30" --cert=turn_server_cert.pem --pkey=turn_server_pkey.pem --log-file=stdout --cipher-list=ALL:SSLv2 $@ 
														
 
															 # Newer PostgreSQL style connection string example:
														
 
															-# PATH="./bin/:../bin/:../../bin/:${PATH}" turnserver -v --syslog -a -L 127.0.0.1 -L ::1 -E 127.0.0.1 -E ::1 --max-bps=3000000 -f -m 3 --min-port=32355 --max-port=65535 -r north.gov --psql-userdb=postgresql://turn:turn@/turn --cert=turn_server_cert.pem --pkey=turn_server_pkey.pem --log-file=stdout --cipher-list=ALL:SSLv2 $@
														
 
															+# PATH="./bin/:../bin/:../../bin/:${PATH}" turnserver --server-name="blackdow.carleon.gov" -v --syslog -a -L 127.0.0.1 -L ::1 -E 127.0.0.1 -E ::1 --max-bps=3000000 -f -m 3 --min-port=32355 --max-port=65535 -r north.gov --psql-userdb=postgresql://turn:turn@/turn --cert=turn_server_cert.pem --pkey=turn_server_pkey.pem --log-file=stdout --cipher-list=ALL:SSLv2 $@
														
--- a/examples/scripts/longtermsecuredb/secure_relay_with_db_redis.sh
+++ b/examples/scripts/longtermsecuredb/secure_relay_with_db_redis.sh
@@ -34,4 +34,4 @@ fi
 
															 export LD_LIBRARY_PATH=${LD_LIBRARY_PATH}:/usr/local/lib/:/usr/local/mysql/lib/
														
 
															 export DYLD_LIBRARY_PATH=${DYLD_LIBRARY_PATH}:/usr/local/lib/:/usr/local/mysql/lib/
														
 
															-PATH="./bin/:../bin/:../../bin/:${PATH}" turnserver -v --syslog -a -L 127.0.0.1 -L ::1 -E 127.0.0.1 -E ::1 --max-bps=3000000 -f -m 3 --min-port=32355 --max-port=65535 -r north.gov --redis-userdb="ip=127.0.0.1 dbname=2 password=turn connect_timeout=30" --redis-statsdb="ip=127.0.0.1 dbname=3 password=turn connect_timeout=30" --cert=turn_server_cert.pem --pkey=turn_server_pkey.pem --log-file=stdout --cipher-list=ALL:SSLv2 $@
														
 
															+PATH="./bin/:../bin/:../../bin/:${PATH}" turnserver --server-name="blackdow.carleon.gov" -v --syslog -a -L 127.0.0.1 -L ::1 -E 127.0.0.1 -E ::1 --max-bps=3000000 -f -m 3 --min-port=32355 --max-port=65535 -r north.gov --redis-userdb="ip=127.0.0.1 dbname=2 password=turn connect_timeout=30" --redis-statsdb="ip=127.0.0.1 dbname=3 password=turn connect_timeout=30" --cert=turn_server_cert.pem --pkey=turn_server_pkey.pem --log-file=stdout --cipher-list=ALL:SSLv2 $@
														
--- a/man/man1/turnadmin.1
+++ b/man/man1/turnadmin.1
@@ -1,5 +1,5 @@
 
															 .\" Text automatically generated by txt2man
														
 
															-.TH TURN 1 "18 August 2014" "" ""
														
 
															+.TH TURN 1 "16 September 2014" "" ""
														
 
															 .SH GENERAL INFORMATION
														
 
															 \fIturnadmin\fP is a TURN administration tool. This tool can be used to manage 
														
--- a/man/man1/turnserver.1
+++ b/man/man1/turnserver.1
@@ -1,5 +1,5 @@
 
															 .\" Text automatically generated by txt2man
														
 
															-.TH TURN 1 "18 August 2014" "" ""
														
 
															+.TH TURN 1 "16 September 2014" "" ""
														
 
															 .SH GENERAL INFORMATION
														
 
															 The \fBTURN Server\fP project contains the source code of a TURN server and TURN client 
														
@@ -612,6 +612,12 @@ that other mode is dynamic. Multiple shared secrets can be used
 
															 (both in the database and in the "static" fashion).
														
 
															 .TP
														
 
															 .B
														
 
															+\fB\-\-server\-name\fP
														
 
															+Server name used (when necessary) for
														
 
															+the authentication purposes (oauth).
														
 
															+The default value is the FQDN of the host.
														
 
															+.TP
														
 
															+.B
														
 
															 \fB\-\-cert\fP
														
 
															 Certificate file, PEM format. Same file 
														
 
															 search rules applied as for the configuration 
														
--- a/man/man1/turnutils.1
+++ b/man/man1/turnutils.1
@@ -1,5 +1,5 @@
 
															 .\" Text automatically generated by txt2man
														
 
															-.TH TURN 1 "18 August 2014" "" ""
														
 
															+.TH TURN 1 "16 September 2014" "" ""
														
 
															 .SH GENERAL INFORMATION
														
 
															 A set of turnutils_* programs provides some utility functionality to be used
														
--- a/src/apps/relay/mainrelay.c
+++ b/src/apps/relay/mainrelay.c
@@ -464,6 +464,9 @@ static char Usage[] = "Usage: turnserver [options]\n"
 
															 "						That database value can be changed on-the-fly\n"
														
 
															 "						by a separate program, so this is why it is 'dynamic'.\n"
														
 
															 "						Multiple shared secrets can be used (both in the database and in the \"static\" fashion).\n"
														
 
															+" --server-name					Server name used (when necessary) for\n"
														
 
															+"						the authentication purposes (oauth).\n"
														
 
															+"						The default value is the FQDN of the host.\n"
														
 
															 " -n						Do not use configuration file, take all parameters from the command line only.\n"
														
 
															 " --cert			<filename>		Certificate file, PEM format. Same file search rules\n"
														
 
															 "						applied as for the configuration file.\n"
														
@@ -678,7 +681,8 @@ enum EXTRA_OPTS {
 
															 	CHECK_ORIGIN_CONSISTENCY_OPT,
														
 
															 	ADMIN_MAX_BPS_OPT,
														
 
															 	ADMIN_TOTAL_QUOTA_OPT,
														
 
															-	ADMIN_USER_QUOTA_OPT
														
 
															+	ADMIN_USER_QUOTA_OPT,
														
 
															+	SERVER_NAME_OPT
														
 
															 };
														
 
															 struct myoption {
														
@@ -732,6 +736,7 @@ static const struct myoption long_options[] = {
 
															 				{ "static-auth-secret", required_argument, NULL, STATIC_AUTH_SECRET_VAL_OPT },
														
 
															 /* deprecated: */		{ "secret-ts-exp-time", optional_argument, NULL, AUTH_SECRET_TS_EXP },
														
 
															 				{ "realm", required_argument, NULL, 'r' },
														
 
															+				{ "server-name", required_argument, NULL, SERVER_NAME_OPT },
														
 
															 				{ "user-quota", required_argument, NULL, 'q' },
														
 
															 				{ "total-quota", required_argument, NULL, 'Q' },
														
 
															 				{ "max-bps", required_argument, NULL, 's' },
														
@@ -860,6 +865,9 @@ static void set_option(int c, char *value)
 
															   }
														
 
															   switch (c) {
														
 
															+  case SERVER_NAME_OPT:
														
 
															+	  STRCPY(turn_params.oauth_server_name,value);
														
 
															+	  break;
														
 
															   case NO_SSLV2_OPT:
														
 
															 	  turn_params.no_sslv2 = get_bool_value(value);
														
 
															 	  break;
														
@@ -1557,7 +1565,6 @@ static int adminmain(int argc, char **argv)
 
															 static void print_features(unsigned long mfn)
														
 
															 {
														
 
															 	TURN_LOG_FUNC(TURN_LOG_LEVEL_INFO, "\nRFC 3489/5389/5766/5780/6062/6156 STUN/TURN Server\nVersion %s\n",TURN_SOFTWARE);
														
 
															-	TURN_LOG_FUNC(TURN_LOG_LEVEL_INFO, "Server name: %s\n",turn_params.oauth_server_name);
														
 
															 	TURN_LOG_FUNC(TURN_LOG_LEVEL_INFO, "\nMax number of open files/sockets allowed for this process: %lu\n",mfn);
														
 
															 	if(turn_params.net_engine_version == 1)
														
 
															 		mfn = mfn/3;
														
@@ -1693,6 +1700,17 @@ static void init_oauth_server_name(void) {
 
															 	if(!turn_params.oauth_server_name[0]) {
														
 
															 		STRCPY(turn_params.oauth_server_name,TURN_SOFTWARE);
														
 
															 	}
														
 
															+	{
														
 
															+		char domain[513];
														
 
															+		if(getdomainname(domain,sizeof(domain)-1)>=0) {
														
 
															+			size_t dlen = strlen(domain);
														
 
															+			if(dlen>0) {
														
 
															+				size_t slen = strlen(turn_params.oauth_server_name);
														
 
															+				turn_params.oauth_server_name[slen]='.';
														
 
															+				ns_bcopy(domain,turn_params.oauth_server_name+slen+1,strlen(domain)+1);
														
 
															+			}
														
 
															+		}
														
 
															+	}
														
 
															 }
														
 
															 int main(int argc, char **argv)
														
@@ -1797,6 +1815,8 @@ int main(int argc, char **argv)
 
															 	read_config_file(argc,argv,1);
														
 
															+	TURN_LOG_FUNC(TURN_LOG_LEVEL_INFO, "Server name: %s\n",turn_params.oauth_server_name);
														
 
															+
														
 
															 	optind = 0;
														
 
															 	while (((c = getopt_long(argc, argv, OPTIONS, uo.u.o, NULL)) != -1)) {