Rocket Streaming Audio Server (RSAS)
           Release Notes
====================================

1.0.7 - 2024-12-19

* Bugfix: Fixed source getting stuck on a mount in certain situations
* Bugfix: Fixed empty HLS segments with low bitrates
* Bugfix: Fixed seamless takeover (source kick) regression from 1.0.6, where the new source connection would get closed too.
* Bugfix: Fixed static binary installer bugs

1.0.6 - 2024-11-27

* Improved bitrate detection, to better handle certain encoders
* Added a "404 HLS Not Enabled" error response, for easier troubleshooting.
* HLS:
    - Added a <base-url> option to provide flexibility when running behind a reverse proxy. Read our new docs on 
      [Reverse Proxying](streaming-audio-server/docs/configuration/reverse-proxying.html) for more information.
    - Added experimental <relative-paths> option.
    - Added support for X-Forwarded-Proto header.
* VHost hostnames now support starting with a wildcard (*.example.com)
* Added AlmaLinux 9 and Raspberry Pi 2 and newer builds, deprecated CentOS 7.
* Bugfix: Fixed HLS segment timestamps being in wrong byte order (regression in 1.0.5)
* Bugfix: Fixed a race condition in HLS segmenter
* Bugfix: Fixed Looped Audio Files rate limit not working in certain circumstances
* Bugfix: Fixed a memory leak in HLS
* Bugfix: Fixed HLS relay sometimes truncating segments

1.0.5 - 2024-03-29

* Looped Audio Files: Completely revamped
    - Rate-limited now for better player compatibility and usability. No longer accumulates delay on client-side.
    - These sources now automatically start, so they can reliably be used as fallback mounts.
    - Listeners now share a common playback position.
* HLS:
    - Automatically scale up HLS segment size based on stream bitrate, by default. Defaults to a 12 second segment duration.
    - Added EXT-X-PROGRAM-DATE-TIME to playlists, to aid timeshifting sync in players.
    - Fixed an HTTP/1.1 bug affecting HLS playback of multiple streams.
* Major upgrade of dependencies, including to OpenSSL 3.1.
* More HTTP/1.1 bugfixes
* Removed unneeded dependencies (zstd, liblzma)
* Optimizations:
    - Reduced memory usage of each TLS connection by 1 KB
* Bugfix: Fixed rare crash related to preroll


1.0.4 - 2023-11-17

* HLS:
    - Segment size and counts in playlists can now be customized via <segment-size> and <max-segments-in-playlist> settings.
      See https://rocketbroadcaster.com/streaming-audio-server/docs/configuration/hls.html#settings for more information.
    - Prepend UNIX timestamp of stream start to HLS segment filenames, to improve cachability.
    - Tightened Cache-Control: max-age header HLS playlists and segments.
    - Bugfix: Fixed EXT-INF duration being wrong from HE-AAC codecs.
    - Bugfix: Improved playback compatibility of HE-AAC codecs on iOS devices.
* Codec detection: 
    - Automatically detect audio codecs through introspection. 
    - Added "codec" field to /health API responses.
    - Detection of MP3 (MPEG-1/2 Layer III), MP2 (MPEG-1 Layer II), Ogg Vorbis, Ogg Opus, Ogg FLAC, AAC-LC, AAC Main, HE-AAC v1, HE-AAC v2, and xHE-AAC.
    - Samplerate, bitrate, and channels detected through this introspection override any ICE headers sent by the source encoder.
* Custom HTTP Headers: Allow specifying custom HTTP headers sent in all responses. See the following for more info:
    https://www.rocketbroadcaster.com/streaming-audio-server/docs/configuration/custom-headers.html 
* Static files: Added ETag for static files, based on last modified time. Improves cachability.
* Proxy server support: Allow an HTTP/HTTPS proxy server to be used for outgoing requests. For more information, see:
    https://www.rocketbroadcaster.com/streaming-audio-server/docs/configuration/misc.html#proxy-servers
* Webhook Listener Authentication: Added "icecast-www-authenticate" header in Listener Webhook Authentication responses, allowing webhook handlers to force browsers to prompt for a username and password.
* Generating your own DH params is no longer necessary. Switched to using the recommended ffdhe4096 params.
* Bugfix: Removed spurious ICE/ICY headers on Server-Sent Event responses.
* Bugfix: Consistently apply CORS headers on all HTTP responses.
* Bugfix: metadata-history API: Set Content-Type and charset so browsers render the text properly.
* Bugfix: Fixed extremely rare listener connection leak triggered by buggy Fortune 500 corporate proxy (TCP non-conforming?)
* Bugfix: Fixed potential SSL socket shutdown hang.
* Bugfix: Fixed choppy FLAC when relaying, in certain cases.
* Bugfix: FreeBSD: Fixed "address in use" error on startup when multiple worker threads used.
* FreeBSD: Minor performance optimizations.
* FreeBSD: Installer script and rc.d init script now included.


1.0.3 - 2023-02-17

* Webhook source auth: Added http_status field, which passes through the original request's full status line.
* Webhook source and listener auth: Pass through client HTTP headers as HTTP headers (with the header_prefix), in addition to POST body params (backwards compatible).
  See docs for more info: https://www.rocketbroadcaster.com/streaming-audio-server/docs/configuration/authentication.html#passing-through-http-headers-from-the-listener-or-source
* Bugfix: Persistent relays could in certain situations not kick relaying listeners when failing, preventing downstream failover.
* Bugfix: Fixed rare issue causing read timeout mechanism to fail, leading to stuck source connections or webhooks.
* Bugfix: Fixed compatibility with older FLAC encoders
* Bugfix: Fixed preroll truncation on Linux and force audio frame sync after preroll.
* Bugfix: Windows GUI: Fixed hostname setting not saving (HLS)
* Bugfix: Windows GUI: Fixed empty max-listener-duration causing error on startup.


1.0.2 - 2022-11-21

* Fixed OpenSSL version dependency Ubuntu 16.04 and 14.04.
* Other details of this update will be published at a future date.


1.0.1 - 2022-11-13

* Bugfix: Fixed systemd service file (rsas.service) typo, preventing service from starting.
* Bugfix: Fixed HLS segmentation for MP3 streams with bitrates higher than 128 kbps
* Bugfix: Fixed CODECS line in M3U8 for MP3 streams. (Note: Test with VLC >= 3.0.17.4, previous versions were bugged.)


1.0.0 - 2022-11-09

* HLS support - RSAS can now remux your existing Icecast-style streams to HLS, allowing any AAC stream to be available as HLS.
    - "Packed audio" AAC support for HLS
    - ID3 metadata for HLS
    - HLS listeners appear in your /health stats just like other listeners.
    - HLS listener sessions mimic regular Icecast listeners in access.log, for compatibility with your existing statistics processing tooling.
    - Find out how to enable HLS and more here: https://rocketbroadcaster.com/streaming-audio-server/docs/hls.html
* HLS relaying:
    - Relay an HLS stream from another RSAS server, providing consistent HLS segments and playlists between servers, for client-side failover.
    - Relay traditional Icecast/SHOUTcast/RSAS streams and convert them to HLS.
    - RSAS implements a full reverse caching proxy to make HLS relaying easy.
* Preroll ad support:
    - Play a jingle or ad before your stream is heard by listeners. 
    - Supports loading ads from local disk or via remote URL. 
    - Intelligent caching of ads at remote URL. For more information, see: 
    - Dynamically insert prerolls using the Listener Auth Webhook
    - Added <preroll> mount option
* Postroll ads:
    - Play an ad or jingle after a listener reaches reaches the max session duration.
    - Dynamically insert postrolls using the Listener Auth Webhook
    - Added <postroll> mount option.
* Midroll ads:
    - Play ads or jingles in the middle of your stream.
    - Multiple ads per ad break.
    - Triggerable via metadata from your encoder (eg. RSAD30000) or via the Manage API.
    - Programmable ad insertion via <midroll-webhook> setting. When an ad break is triggered, RSAS will send a webhook to fetch which ads to play on the mount. Allows you to build your own integration with ad networks.
    - Customizable per-ad metadata, or fallback to <default-midroll-title> setting
    - Synchronization of midroll ads for new listeners connecting in the middle of an ad break.
    - Intelligent caching of midroll ads
* HTTP/1.1 support and major improvements to static file serving:
    - Includes HTTP/1.1 Keep-Alive, to minimize connections for static files.
    - Support for HTTP/1.1 Range header, to allow seeking in static audio and video files.
    - Serves MP4 video files out-of-the-box now, with seeking.
    - Cache-Control, Date, and Expires headers
    - Can now follow symlinks out of your webroot (use with caution)
* Major performance improvements for static file serving, on both Windows and Linux.
    - Fully asynchronous file I/O
    - Use sendfile() or Windows equivalent when possible
* Overhauled Linux packages:
    - On Debian, Ubuntu, and CentOS, our RSAS packages now create an "rsas" user and group. The "rsas" user is in the "icecast2" group, for compatibility. 
    - The `rsas.service` systemd service file is now included (installs to /usr/lib/systemd/system)
    - Upgrading? Read our instructions here: https://www.rocketbroadcaster.com/streaming-audio-server/docs/installation/#upgrading-from-a-pre-10-version
    - Ubuntu 22.04 DEB package added
* Windows: Updated OpenSSL to 1.1.1q, which is supported until September 2023. Windows users should plan to upgrade RSAS from this release by this time.
* Icecast compatibility:
    - Implemented several missing Icecast APIs, including:
        - /admin/stats
        - /admin/listclients
        - /admin/listmounts
    - Makes RSAS compatible with several stream analytics and listener statistics aggregators.
    - Use of these Admin APIs requires configuring an <admin-password> and enabling Icecast emulation:
        https://www.rocketbroadcaster.com/streaming-audio-server/docs/statistics.html#icecast-compatible-status-page 
* Increased max HTTP request header size to 4 KB, for compatibility with websites using large cookies. This can also now be customized with the <max-http-header-size> setting under <limits>.
* Added optional password protection for /health API, using <health-password> under <authentication>.
* Added mount-specific health API at /<mount>/health API
    - Can be password protected with <health-password> in your <mount> config.
* Auto-stop relays - Added <auto-stop> option for on-demand relays to stop when the listener count drops to zero.
* Improved fallback logic on relays. Now recurses until it finds an active fallback. Allows relay->relay->file fallbacks to work as well as more advanced topologies.
* Misc:
    - Added "song" and "duration" parameters to Listener Removal Webhook.
    - Log rotation settings are now configurable (for each log). See docs here:
* Improved CORS so modern players can access ICY metadata directly from the stream using AJAX.
    - Access-Control-Allow-Headers now permits Icy-Metadata
    - Access-Control-Expose-Headers permits Content-Type, icy-metaint, and all the other ice/icy headers.

* Bugfix: Fixed bug where listeners that were relays may not get closed when the source dropped.
* Bugfix: Fixed Ogg FLAC relays sometimes getting stuck in an unplayable state.
* Bugfix: Improved Ogg FLAC detection and sync
* Bugfix: Fixed static file serving over HTTPS on Windows.
* Bugfix: Improved AAC frame synchronization for new listeners and during failover
* Bugfix: Fixed latency=high and default latency mode applying inconsistently.
* Bugfix: Fixed rare fallback listener leak
* Bugfix: Fixed rare listener leak affecting Linux during network connectivity loss
* Bugfix: Fixed infinite loop when relay with fallback dropped with listeners and no active fallback
* Bugfix: Fixed rare socket timeout causing relays to get stuck in audio loop
* Bugfix: Fixed empty querystring in listener_remove webhook
* Bugfix: Fixed access logging of HTTP 403 "Mountpoint in Use" responses 
* Bugfix: Fixed "Maximum fallback resursion limit reached" error not resulting in an HTTP response (now HTTP 503)
* Bugfix: Fixed parsing HTTP requests if header terminator was over 512 byte boundary
* Bugfix: Fixed rare issue where TLS hostname verification could sometimes fail when relaying.
* Bugfix: Fixed relaying from servers using SNI
* Bugfix: Fixed CPU core count dection in Linux containers
* Bugfix: Fixed relaying over IPv6
* Bugfix: Fixed incorrect Content-Type header for Icecast-style status-json.xsl
* Bugfix: Improved connecting to relays with multiple DNS records (handle round-robin if hosts are down)
* Added experimental --hashpassword command line argument and support for hashed passwords in config file using PBKDF2 + HMAC with a SHA256 hash and 390000 iterations. We recommend only using this in combination with rate limiting by a reverse proxy, otherwise it creates a DoS vector.


0.1.20 - 2021-08-31

* Major performance optimizations, yielding about a 2x drop in CPU usage at high workloads.
* Relay URLs can now be changed dynamically via config reloads. Listeners will get moved to the new URL.
* Seamless Takeover: Rocket Broadcaster will now ask broadcasters if they want to kick an existing source when they connect, which allows DJs to seamlessly takeover a stream.
* Added /manage/ API, for kicking a source or moving listeners to a new mount. See the docs: https://www.rocketbroadcaster.com/streaming-audio-server/docs/api.html#manage-api
* Added optional <config-version> field to config file format
* Added last_config_reload field to /health (UNIX timestamp)
* Added --test/-t flag for checking config file syntax
* Added warning if default passwords are used. Prevented blank passwords too.
* Icecast compatibility:
    - Implemented `<hidden>` mount flag from Icecast, which hides a stream from the emulated Icecast status page and `status-json.xsl` page.
    - Added `<alias>` directive, allowing you to remap URL paths.
    - Added the "stream started" timestamp to Icecast status page and to the `status-json.xsl`.
- Added ability to override referer header with "referer" querystring parameters (?referer=example)
- Source and Listener Auth Webhooks can now return `icecast-resp-status` and `icecast-resp-reason` headers to make RSAS return a custom response when denying a listener or source. See the docs for more details: http://127.0.0.1:8002/streaming-audio-server/docs/configuration/authentication.html#custom-responses
- "HTTP 400 Bad Request" template now included.
* Bugfix: Fixed handling of icecast-auth-timelimit in webhooks compared to 0.1.19 alphas.
* Bugfix: HTTP referer now shows up in access logs
* Bugfix: Fixed static file serving on Windows, which prevented LetsEncrypt wizard for working for some users.
* Bugfix: Fixed FLAC compatibility with BUTT encoder.
- Bugfix: Fixed rare relay race condition that could lead to a crash.
- Bugfix: Fixed HTTP "referer" always being blank in the access log.
- Bugfix: Fixed a rare crash related to TLS.

0.1.19 - 2021-08-01
* This release was intentionally skipped.

0.1.18 - 2021-03-24
* Added persistent relays.
* Major performance improvements, especially with large numbers of listeners.
* Added option to limit listener session duration on a per-mount basis (<max-listener-duration>)
* Added icecast-auth-timelimit header from source webhook auth. If specified, it imposes a timelimit on the listener.
* Icecast-compatible header passthrough (via POST vars) for webhook listener and source auth. (<options name="headers" ...> and header_prefix)
* Added server_start and stream_start metrics to status-json.xsl
* Added SNI support, for using multiple SSL certificates with different hostnames, via <vhosts>.
* Behaviour change: Default to persistent relays instead of on-demand (Use <on-demand>1</on-demand> in your <mount> section for on-demand behaviour.)
* Behaviour change: /<mount>/metadata now returns JSON by default unless explicitly used with an EventSource for streaming metadata.
* Behaviour change: Drop unwritten log lines if the backlog exceeds 10K records, to avoid blocking under high load.
* Bugfix: Fixed rare memory leak with TLS
* Bugfix: Fixed DNS lookups blocking for relays
* Bugfix: Fixed TLS negotiation with clients that don't support SNI
* Bugfix: Fixed glitchy audio playback via Google Assistant.
* Bugfix: Fixed listener authentication race condition.
* Bugfix: Improved compatibility with Unity game engine - Only send in-band ICY metadata if it changed.
* Bugfix: Various other bugfixes

0.1.17 - 2020-09-18
* Added Metadata History API (/mount/metadata-history) - See the docs: https://www.rocketbroadcaster.com/streaming-audio-server/docs/players.html#metadata-history-api
* Added customizable error page templates. (Included in Windows/DEB/RPM packages. Not yet bundled with static Linux .tar.gz.)
* Improved source reconnection behaviour - RSAS will now retain listeners for up to 10 seconds after a source disconnects, to allow sources to reconnect and resume broadcasting to those listener. Applies to relays too.
* Icecast-compatible Status Page added - Must be manually enabled: https://www.rocketbroadcaster.com/streaming-audio-server/docs/statistics.html#icecast-compatible-status-page
* Performance improvements
* TLS certificate errors on a service reload are non-fatal.
* Improved logging, especially related to relays and fallbacks, to aid troubleshooting.
* Authentication options (<option>) can now be removed during config reloads.
* Added CORS headers to all error responses.
* Improved compatibility when relaying from AIS and Shoutcast 2.5.5
* Bugfix: Fallback override now works with relays, allowing listeners to be moved back from a fallback mount to a relay if it reconnects.
* Bugfix: Improved relay reconnection logic and reliability improvements.
* Bugfix: Bitrate/channels/samplerate info is now shown in /health for relays.
* Bugfix: Fixed automatic firewall rule configuration on Windows.
* Bugfix: Fixed a memory leak and crash in the Windows GUI.

0.1.16 - 2020-06-19
* Improved compatibility with older ICE/1.0 encoders
* Relaying of HTTPS streams added via a new <url> tag that can be nested under <relay>. See this documentation for more information: https://www.rocketbroadcaster.com/streaming-audio-server/docs/configuration/relaying.html
* Added "latency" querystring for listeners, to allow for playback to start quicker vs. less latency. See: https://www.rocketbroadcaster.com/streaming-audio-server/docs/players.html#fast-start-and-low-latency-modes
* The "/" URL is now aliased to "index.html". Create an index.html file to create a homepage at the / URL.
* Reduced memory usage for Server-Sent Events metadata stream
* Improved cache headers, to prevent browser caching (Cache-Control: no-store, Date/Expires).
* Added <hostname> setting, for future work.
* Added correct mimetype for MPEG-TS files (.ts)
* Added OPTIONS HTTP request handling
* Bugfix: Escape pipe symbols in playlist.log
* Bugfix: Fixed mimetypes for static files on Windows (they don't all download as attachments anymore.)
* Bugfix: Fixed relaying from Nimble Streamer
* Bugfix: Wildcard mount settings aren't applied to static audio files - avoids them being treated as looping audio.
* Bugfix: Apply port 8000 firewall rule to rsas.exe in installer, instead for the service.
* Bugfix: Fixed several bugs in X-Forwarded-For handling.
* Bugfix: Escape Server-Sent Events metadata
* Bugfix: Fixed relaying streams with apostrophes in metadata.

0.1.15 - 2020-04-02
* Fixed a bug that made TLS only work on port 443. It now works on any port configured with TLS.

0.1.14 - 2020-03-31
* Fixed bug where fallback transitions could occasionally cause high CPU usage
* Improved error log readability
* Windows:
  - Added Let's Encrypt HTTPS wizard for painless TLS/SSL setup
  - Fixed default TLS cipher suite being empty
  - Various tweaks and polish for the user interface

0.1.13 - 2020-02-25
* Flush error log after each message. Access log is flushed every 5 seconds now.
* Log when sources connect
* Many Windows improvements:
  - Automatically set up firewall rules
  - Moved default log directory to %APPDATA%\Rocket Streaming Audio Server\logs
  - Fixed benign error when stopping Windows service
  - Minor tweaks and polish for the GUI

0.1.12 - 2020-01-16
* Added listener authentication - See the docs at: https://www.rocketbroadcaster.com/streaming-audio-server/docs/configuration/authentication.html
  Includes "listener_add" and "listener_remove" webhooks.
* Added CORS headers to /health, so it can be polled from browsers
* Song metadata is now included in source authentication webhooks that correspond to metadata updates from encoders (see the docs).

0.1.11 - 2019-12-10
* Improved stability in multithreaded environments on Linux.

0.1.10 - 2019-12-06
* Fixed a rare crash that could occur if sources stopped sending data without their connections timing out.

0.1.9 - 2019-12-05
* Ogg: Fixed a general case where duplicate Ogg headers were sent to listeners, which fixes compatibility with some players (eg. Firefox, Daphile, Foobar2000)
* Ogg: Fixed an issue where Ogg headers could get duplicated for listeners if a relay reconnected.
* Ogg: Improved header detection for relaying Ogg FLAC
* /health: The ICY stream format paramters are now shown.
* Webhook auth: Added new POST parameters to webhook source authentication, which provide details about the stream's audio format (ICY params). See the docs on "Authentication
  for more information.
* Logging: Fixed access.log missing HTTP status lines and durations not being integers (Icecast compatibility, regression in 0.1.8)
* Logging: Fixed relay sessions showing up in access.log (with IP 0.0.0.0)
* Other: Ignore duplicate metadata updates, to avoid spamming clients

0.1.8 - 2019-11-15
* CPU optimizations
* Memory optimizations - Each HTTP listener connection takes about 20x less memory now.
* Improved logging performance, and multithreaded logging (logging rewrite)
* Support for 96 kHz Ogg FLAC streaming
* Fixed a bug where Ogg and FLAC relays could become choppy after reconnecting to the origin
* Relaying streams with missing metadata now works
* Improved compatibility with older streaming encoders that still use the ICE/1.0 protocol
* Replace invalid UTF-8 characters on status pages
* New Linux packages: Added packages for Debian 9, 10, and Ubuntu 14.04.

0.1.6 - 2019-09-27
* Added current metadata for each mount to /health JSON
* Pro license key can now be installed in the same directory as your rsas.xml
* Fixed stuttering FLAC playback with certain encoders
* Fixed looped audio files path resolution bug
* Fixed compatibility with ICE/1.0 source encoders
* Improved compatibility with HTTP 1.1 source encoders
* Fixed relaying URLs with no port number
* Fixed webhook source authentication not being case insensitive (HTTP conformance)

0.1.4 - 2019-09-04
* Added support for relaying Ogg codecs
* Fixed high CPU usage with Ogg codecs
* Fixed TLS getting initialized on non-TLS sockets after a reload
* Fixed relaying metadata with unhandled fields (StreamURL is ignored for now)

0.1.3 - 2019-08-22
* Added native support for TLS / HTTPS. Check the docs for all the details:
  https://www.rocketbroadcaster.com/streaming-audio-server/docs/configuration/https-tls.html
* Fixed static file serving on Linux

0.1.2 - 2019-08-19
* Improved compatibility with encoders that use HTTP 1.1 (foo_streamer)
* Added compatibility with vanilla Icecast "default mount" syntax.

0.1.1 - 2019-08-18
* Added support for icecast <source-password> field

0.1.0 - 2019-08-15
* Initial release! Rocket Streaming Audio Server is a replacement for Icecast and Shoutcast, delivering low latency streaming audio over the web. This release has all the basics and has been battle tested for almost a year before release. Features include:
  - Icecast config file and cmdline parameter compatibility, so it's a drop-in replacement for Icecast
  - Icecast-compatible log files
  - Mounts
  - Relays
  - Fallback streams
  - Looped audio file fallbacks (backup files / fallback files)
  - Source authentication via webhooks / stream-auth
  - Static file serving
  - Reloading the config on the fly
  - A snazzy /health endpoint that gives nice machine-readable JSON, for easy monitoring / stats