zenomt / rtmp-errata-addenda Goto Github PK
View Code? Open in Web Editor NEWCorrections, clarifications, and amendments to Adobe's RTMP specification
Home Page: https://zenomt.github.io/rtmp-errata-addenda/
License: MIT License
Corrections, clarifications, and amendments to Adobe's RTMP specification
Home Page: https://zenomt.github.io/rtmp-errata-addenda/
License: MIT License
Hey there! Thanks for taking the time to actually write these errata - finally having an official reference for these is great. ๐
An omission from the RTMP spec that I do not see addressed is the handshake: the original RTMP spec says to send random bytes and then return a copy of the received random bytes from the other side (I simplified a little for sake of brevity), while in reality the handshake hides an additional verification that you're connected to a "genuine" Adobe server/client. If this verification fails, H264 capabilities are disabled (at least by the official flash client versions I've personally tested - but this is all many years ago and testing it again today is... painfully complicated, to say the least).
Considering that...
... I think it would be worthwhile to actually note this algorithm and the effect it had/has on playback in Flash Player in these errata, or at the very least to include some wording that the returned handshake data should never be checked for integrity (being an actual echo of the sent data; since it may not be). And perhaps - if verification is implemented at all - discourage checking for success, since limiting the use of H264 in this day and age seems a little moot.
Another omission is the username/password authentication mechanism. Specifically, the method when the server may return an error message with a description field containing ?authmod=adobe
, which seems to be the "official" way to handle username/password authentication and has de-facto become the standard in the industry as far as I'm aware (I think there exists only one alternative, which is not in widespread use).
In particular, I'd like to see a note that the description field does not make use of the usual query param encoding for regular URLs. The +
symbol should not be decoded to space (common practice for URL params), but instead used as-is. Considering base64 encoding is used in these fields and the +
symbol is part of the base64 character set, I'd say this is an important detail.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.