RTP in 1.5.2

Asked by Friedrich on 2013-05-23

Hi team,

Thanks for your efforts on the new release! In the release note of 1.5.2, "Several important bugs were not fixed because 1.5.x versions are too different from newer versions. As a consequence do not use any 1.5.x version (including the 1.5.2 version) with RTP-profile ROHC packets coming from untrusted sources. Other profiles are safe." Questions are

1. If it is not recommended to use 1.5.x for RTP protocol with untrusted sources, which version do you recommend for RTP protocol? Is it 1.4.3?

2. I am wondering if the "newer versions" refer to 1.5.2, i.e., "... because 1.5.x versions are too different from 1.5.2"? Or there are some newer version coming in the near future?

Thanks,
Friedrich

Question information

Language:
English Edit question
Status:
Solved
For:
rohc Edit question
Assignee:
No assignee Edit question
Solved by:
Friedrich
Solved:
2013-05-23
Last query:
2013-05-23
Last reply:
2013-05-23

Hello,

> Thanks for your efforts on the new release! In the release note of 1.5.2,
> [...]

Arg, release 1.5.2 is uploaded, but I haven't taken time to announce it... It was not really official yet. It seems it is now ;-)

> Questions are
>
> 1. If it is not recommended to use 1.5.x for RTP protocol with untrusted
> sources, which version do you recommend for RTP protocol? Is it 1.4.3?
> 2. I am wondering if the "newer versions" refer to 1.5.2, i.e., "... because
> 1.5.x versions are too different from 1.5.2"? Or there are some newer version coming in the near future?

No. The recommended version is 1.6.0 (or greater). But 1.6.0 is not released yet. That's a matter of days/hours, but it is not released yet.

In the meanwhile, I updated the release notes [1]. Let me know if they are more understandable.

Regards,
Didier

[1] https://launchpad.net/rohc/1.5.x/1.5.2#release-notes

Friedrich (hitlbs) said : #2

Thanks a lot for your prompt answer. My questions are solved.