Release Notes for RTPProxy v3.1.0
We are excited to announce the release of RTPProxy v3.1.0, which brings significant new features and enhancements to improve NAT traversal, media security, and system robustness. This release focuses on the introduction of the new ICE-Lite module, enhancements to the DTLS gateway module, and the addition of a new fuzzer type for improved testing.
New Features
ICE-Lite Module
- Introduction of ICE-Lite Support
- Added a new ICE-Lite module to enable RTPProxy to participate in Interactive Connectivity Establishment (ICE) procedures as a lite implementation.
- Enhances NAT traversal capabilities by allowing RTPProxy to handle ICE connectivity checks, improving media stream establishment in NAT-restricted environments.
- Supports interoperability with full ICE implementations, facilitating seamless media negotiation between endpoints behind NATs.
- Can be combined with the existing
dtls_gw
module to provide full WebRTC endpoint. Verified to seamlessly interoperate with Google Chrome, Mozilla FireFox and Microsoft Edge.
New Fuzzer Integration
- Enhanced Testing with Advanced Fuzzing
- Integrated a new RTP/DTLS/ICE session fuzzer type into the testing framework to proactively identify and address potential vulnerabilities.
- The fuzzer systematically generates a wide range of inputs to test the resilience of RTPProxy against unexpected or malformed data.
- Improves overall stability and security by uncovering edge cases and ensuring robust handling of diverse network scenarios.
Improvements
DTLS Gateway Module Enhancements
- RTCP Support
- Added support for the RTCP/SRTCP packets encryption/decryption in case they are muxed into RTP/SRTP stream.
- Optimized DTLS Handshake Process
- Improved the efficiency of the DTLS handshake in the dtls_gw module, reducing latency during the establishment of secure media streams.
- Expanded Cipher Suite Support
- Updated the DTLS implementation to support additional cipher suites, enhancing compatibility with a broader range of clients and strengthening security.
- Stability and Reliability Enhancements
- Resolved issues related to DTLS session management, resulting in more stable and reliable encrypted media transmissions.
Pre-built Containers Enhancements
- Pre-built docker images are now also pushed to the ghcr.io in addition to the hub.docker.com.
- Ubuntu-based images are added in addition to the Debian ones.
Documentation Updates
- ICE-Lite Documentation
- Added documentation on the ICE-Lite (
ice_lite
) module.
- Added documentation on the ICE-Lite (
- Updated DTLS Gateway Documentation
- Revised documentation for the
dtls_gw
module to reflect the latest enhancements and provide guidance on optimizing DTLS settings.
- Revised documentation for the
Upgrade Notes
- Configuration Changes
- New configuration parameters are introduced for the ICE-Lite module. Users should review and update their configuration files to enable and customize ICE-Lite functionality.
- Dependency Updates
- Ensure that all dependencies, especially those related to DTLS and ICE, are updated to their latest versions to fully leverage the new features and improvements.
Acknowledgments
We extend our gratitude to all contributors, testers, and community members whose efforts and feedback have been invaluable in making this release possible.
For a detailed list of all changes and commits, please refer to the GitHub comparison between v3.0.1 and v3.1.0.
We highly recommend updating to this version to take advantage of the new ICE-Lite module, DTLS gateway enhancements, and improved testing capabilities.