npm - livekit-client - Versions diffs - 2.18.9 → 2.19.0 - Mend

livekit-client 2.18.9 → 2.19.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (217) hide show

package/dist/livekit-client.e2ee.worker.js +1 -1
package/dist/livekit-client.e2ee.worker.js.map +1 -1
package/dist/livekit-client.e2ee.worker.mjs +5609 -644
package/dist/livekit-client.e2ee.worker.mjs.map +1 -1
package/dist/livekit-client.esm.mjs +3553 -2813
package/dist/livekit-client.esm.mjs.map +1 -1
package/dist/livekit-client.pt.worker.js +2 -0
package/dist/livekit-client.pt.worker.js.map +1 -0
package/dist/livekit-client.pt.worker.mjs +5834 -0
package/dist/livekit-client.pt.worker.mjs.map +1 -0
package/dist/livekit-client.umd.js +1 -1
package/dist/livekit-client.umd.js.map +1 -1
package/dist/src/api/SignalClient.d.ts +2 -1
package/dist/src/api/SignalClient.d.ts.map +1 -1
package/dist/src/e2ee/E2eeManager.d.ts +8 -7
package/dist/src/e2ee/E2eeManager.d.ts.map +1 -1
package/dist/src/e2ee/types.d.ts +35 -8
package/dist/src/e2ee/types.d.ts.map +1 -1
package/dist/src/e2ee/utils.d.ts +5 -5
package/dist/src/e2ee/utils.d.ts.map +1 -1
package/dist/src/e2ee/worker/DataCryptor.d.ts +5 -5
package/dist/src/e2ee/worker/DataCryptor.d.ts.map +1 -1
package/dist/src/e2ee/worker/FrameCryptor.d.ts +21 -4
package/dist/src/e2ee/worker/FrameCryptor.d.ts.map +1 -1
package/dist/src/e2ee/worker/naluUtils.d.ts +1 -1
package/dist/src/e2ee/worker/naluUtils.d.ts.map +1 -1
package/dist/src/e2ee/worker/sifPayload.d.ts +7 -7
package/dist/src/e2ee/worker/sifPayload.d.ts.map +1 -1
package/dist/src/index.d.ts +4 -1
package/dist/src/index.d.ts.map +1 -1
package/dist/src/options.d.ts +7 -0
package/dist/src/options.d.ts.map +1 -1
package/dist/src/packetTrailer/PacketTrailerManager.d.ts +49 -0
package/dist/src/packetTrailer/PacketTrailerManager.d.ts.map +1 -0
package/dist/src/packetTrailer/packetTrailer.d.ts +32 -0
package/dist/src/packetTrailer/packetTrailer.d.ts.map +1 -0
package/dist/src/packetTrailer/types.d.ts +57 -0
package/dist/src/packetTrailer/types.d.ts.map +1 -0
package/dist/src/packetTrailer/utils.d.ts +9 -0
package/dist/src/packetTrailer/utils.d.ts.map +1 -0
package/dist/src/packetTrailer/worker/packetTrailer.worker.d.ts +2 -0
package/dist/src/packetTrailer/worker/packetTrailer.worker.d.ts.map +1 -0
package/dist/src/room/RTCEngine.d.ts +2 -4
package/dist/src/room/RTCEngine.d.ts.map +1 -1
package/dist/src/room/Room.d.ts +7 -3
package/dist/src/room/Room.d.ts.map +1 -1
package/dist/src/room/data-track/RemoteDataTrack.d.ts +5 -1
package/dist/src/room/data-track/RemoteDataTrack.d.ts.map +1 -1
package/dist/src/room/data-track/depacketizer.d.ts +12 -4
package/dist/src/room/data-track/depacketizer.d.ts.map +1 -1
package/dist/src/room/data-track/frame.d.ts +3 -3
package/dist/src/room/data-track/frame.d.ts.map +1 -1
package/dist/src/room/data-track/incoming/IncomingDataTrackManager.d.ts +3 -1
package/dist/src/room/data-track/incoming/IncomingDataTrackManager.d.ts.map +1 -1
package/dist/src/room/data-track/incoming/pipeline.d.ts +4 -1
package/dist/src/room/data-track/incoming/pipeline.d.ts.map +1 -1
package/dist/src/room/data-track/outgoing/types.d.ts +2 -2
package/dist/src/room/data-track/outgoing/types.d.ts.map +1 -1
package/dist/src/room/data-track/packet/extensions.d.ts +4 -4
package/dist/src/room/data-track/packet/extensions.d.ts.map +1 -1
package/dist/src/room/data-track/packet/index.d.ts +5 -5
package/dist/src/room/data-track/packet/index.d.ts.map +1 -1
package/dist/src/room/data-track/packet/serializable.d.ts +1 -1
package/dist/src/room/data-track/packet/serializable.d.ts.map +1 -1
package/dist/src/room/data-track/types.d.ts +7 -0
package/dist/src/room/data-track/types.d.ts.map +1 -1
package/dist/src/room/events.d.ts +2 -2
package/dist/src/room/participant/LocalParticipant.d.ts +8 -14
package/dist/src/room/participant/LocalParticipant.d.ts.map +1 -1
package/dist/src/room/participant/Participant.d.ts +1 -1
package/dist/src/room/participant/Participant.d.ts.map +1 -1
package/dist/src/room/participant/RemoteParticipant.d.ts +5 -1
package/dist/src/room/participant/RemoteParticipant.d.ts.map +1 -1
package/dist/src/room/rpc/client/RpcClientManager.d.ts +39 -0
package/dist/src/room/rpc/client/RpcClientManager.d.ts.map +1 -0
package/dist/src/room/rpc/client/events.d.ts +8 -0
package/dist/src/room/rpc/client/events.d.ts.map +1 -0
package/dist/src/room/rpc/index.d.ts +6 -0
package/dist/src/room/rpc/index.d.ts.map +1 -0
package/dist/src/room/rpc/server/RpcServerManager.d.ts +44 -0
package/dist/src/room/rpc/server/RpcServerManager.d.ts.map +1 -0
package/dist/src/room/rpc/server/events.d.ts +8 -0
package/dist/src/room/rpc/server/events.d.ts.map +1 -0
package/dist/src/room/{rpc.d.ts → rpc/utils.d.ts} +34 -4
package/dist/src/room/rpc/utils.d.ts.map +1 -0
package/dist/src/room/track/PacketTrailerExtractor.d.ts +19 -0
package/dist/src/room/track/PacketTrailerExtractor.d.ts.map +1 -0
package/dist/src/room/track/RemoteVideoTrack.d.ts +16 -0
package/dist/src/room/track/RemoteVideoTrack.d.ts.map +1 -1
package/dist/src/room/track/Track.d.ts +1 -1
package/dist/src/room/track/Track.d.ts.map +1 -1
package/dist/src/room/track/create.d.ts.map +1 -1
package/dist/src/room/track/options.d.ts +10 -0
package/dist/src/room/track/options.d.ts.map +1 -1
package/dist/src/room/track/utils.d.ts.map +1 -1
package/dist/src/room/utils.d.ts +4 -3
package/dist/src/room/utils.d.ts.map +1 -1
package/dist/src/test/MockMediaStreamTrack.d.ts.map +1 -1
package/dist/src/utils/dataPacketBuffer.d.ts +1 -1
package/dist/src/utils/dataPacketBuffer.d.ts.map +1 -1
package/dist/src/version.d.ts +9 -1
package/dist/src/version.d.ts.map +1 -1
package/dist/ts4.2/api/SignalClient.d.ts +2 -1
package/dist/ts4.2/e2ee/E2eeManager.d.ts +8 -7
package/dist/ts4.2/e2ee/types.d.ts +35 -8
package/dist/ts4.2/e2ee/utils.d.ts +5 -5
package/dist/ts4.2/e2ee/worker/DataCryptor.d.ts +5 -5
package/dist/ts4.2/e2ee/worker/FrameCryptor.d.ts +21 -4
package/dist/ts4.2/e2ee/worker/naluUtils.d.ts +1 -1
package/dist/ts4.2/e2ee/worker/sifPayload.d.ts +7 -7
package/dist/ts4.2/index.d.ts +5 -1
package/dist/ts4.2/options.d.ts +7 -0
package/dist/ts4.2/packetTrailer/PacketTrailerManager.d.ts +49 -0
package/dist/ts4.2/packetTrailer/packetTrailer.d.ts +32 -0
package/dist/ts4.2/packetTrailer/types.d.ts +57 -0
package/dist/ts4.2/packetTrailer/utils.d.ts +9 -0
package/dist/ts4.2/packetTrailer/worker/packetTrailer.worker.d.ts +2 -0
package/dist/ts4.2/room/RTCEngine.d.ts +2 -4
package/dist/ts4.2/room/Room.d.ts +7 -3
package/dist/ts4.2/room/data-track/RemoteDataTrack.d.ts +5 -1
package/dist/ts4.2/room/data-track/depacketizer.d.ts +12 -4
package/dist/ts4.2/room/data-track/frame.d.ts +3 -3
package/dist/ts4.2/room/data-track/incoming/IncomingDataTrackManager.d.ts +3 -1
package/dist/ts4.2/room/data-track/incoming/pipeline.d.ts +4 -1
package/dist/ts4.2/room/data-track/outgoing/types.d.ts +2 -2
package/dist/ts4.2/room/data-track/packet/extensions.d.ts +4 -4
package/dist/ts4.2/room/data-track/packet/index.d.ts +5 -5
package/dist/ts4.2/room/data-track/packet/serializable.d.ts +1 -1
package/dist/ts4.2/room/data-track/types.d.ts +7 -0
package/dist/ts4.2/room/events.d.ts +2 -2
package/dist/ts4.2/room/participant/LocalParticipant.d.ts +8 -14
package/dist/ts4.2/room/participant/Participant.d.ts +1 -1
package/dist/ts4.2/room/participant/RemoteParticipant.d.ts +5 -1
package/dist/ts4.2/room/rpc/client/RpcClientManager.d.ts +43 -0
package/dist/ts4.2/room/rpc/client/events.d.ts +8 -0
package/dist/ts4.2/room/rpc/index.d.ts +7 -0
package/dist/ts4.2/room/rpc/server/RpcServerManager.d.ts +44 -0
package/dist/ts4.2/room/rpc/server/events.d.ts +8 -0
package/dist/ts4.2/room/{rpc.d.ts → rpc/utils.d.ts} +34 -4
package/dist/ts4.2/room/track/PacketTrailerExtractor.d.ts +19 -0
package/dist/ts4.2/room/track/RemoteVideoTrack.d.ts +16 -0
package/dist/ts4.2/room/track/Track.d.ts +1 -1
package/dist/ts4.2/room/track/options.d.ts +10 -0
package/dist/ts4.2/room/utils.d.ts +4 -3
package/dist/ts4.2/utils/dataPacketBuffer.d.ts +1 -1
package/dist/ts4.2/version.d.ts +9 -1
package/package.json +24 -16
package/src/api/SignalClient.test.ts +102 -10
package/src/api/SignalClient.ts +4 -2
package/src/api/WebSocketStream.test.ts +0 -1
package/src/e2ee/E2eeManager.ts +82 -30
package/src/e2ee/types.ts +37 -8
package/src/e2ee/utils.ts +7 -6
package/src/e2ee/worker/DataCryptor.ts +6 -6
package/src/e2ee/worker/FrameCryptor.test.ts +177 -4
package/src/e2ee/worker/FrameCryptor.ts +94 -14
package/src/e2ee/worker/ParticipantKeyHandler.test.ts +4 -4
package/src/e2ee/worker/e2ee.worker.ts +13 -5
package/src/e2ee/worker/naluUtils.ts +4 -4
package/src/e2ee/worker/sifPayload.ts +10 -8
package/src/index.ts +7 -0
package/src/options.ts +8 -0
package/src/packetTrailer/PacketTrailerManager.test.ts +172 -0
package/src/packetTrailer/PacketTrailerManager.ts +250 -0
package/src/packetTrailer/packetTrailer.test.ts +174 -0
package/src/packetTrailer/packetTrailer.ts +276 -0
package/src/packetTrailer/types.ts +75 -0
package/src/packetTrailer/utils.test.ts +105 -0
package/src/packetTrailer/utils.ts +50 -0
package/src/packetTrailer/worker/packetTrailer.worker.ts +155 -0
package/src/packetTrailer/worker/tsconfig.json +14 -0
package/src/room/BackOffStrategy.test.ts +1 -1
package/src/room/RTCEngine.test.ts +219 -0
package/src/room/RTCEngine.ts +86 -46
package/src/room/Room.test.ts +62 -1
package/src/room/Room.ts +111 -86
package/src/room/data-track/RemoteDataTrack.ts +8 -1
package/src/room/data-track/depacketizer.test.ts +433 -1
package/src/room/data-track/depacketizer.ts +79 -61
package/src/room/data-track/frame.ts +2 -2
package/src/room/data-track/incoming/IncomingDataTrackManager.test.ts +194 -0
package/src/room/data-track/incoming/IncomingDataTrackManager.ts +21 -1
package/src/room/data-track/incoming/pipeline.ts +13 -2
package/src/room/data-track/outgoing/types.ts +3 -2
package/src/room/data-track/packet/extensions.ts +2 -2
package/src/room/data-track/packet/index.ts +6 -6
package/src/room/data-track/packet/serializable.ts +1 -1
package/src/room/data-track/types.ts +8 -0
package/src/room/events.ts +2 -2
package/src/room/participant/LocalParticipant.test.ts +81 -0
package/src/room/participant/LocalParticipant.ts +64 -187
package/src/room/participant/Participant.ts +1 -1
package/src/room/participant/RemoteParticipant.ts +9 -0
package/src/room/participant/publishUtils.ts +1 -1
package/src/room/rpc/client/RpcClientManager.test.ts +430 -0
package/src/room/rpc/client/RpcClientManager.ts +269 -0
package/src/room/rpc/client/events.ts +9 -0
package/src/room/rpc/index.ts +14 -0
package/src/room/rpc/server/RpcServerManager.test.ts +471 -0
package/src/room/rpc/server/RpcServerManager.ts +293 -0
package/src/room/rpc/server/events.ts +9 -0
package/src/room/{rpc.ts → rpc/utils.ts} +49 -8
package/src/room/track/PacketTrailerExtractor.ts +43 -0
package/src/room/track/RemoteVideoTrack.ts +23 -2
package/src/room/track/Track.ts +1 -1
package/src/room/track/create.ts +0 -4
package/src/room/track/options.ts +11 -0
package/src/room/track/record.ts +1 -1
package/src/room/track/utils.ts +4 -1
package/src/room/utils.test.ts +14 -1
package/src/room/utils.ts +19 -4
package/src/test/MockMediaStreamTrack.ts +0 -1
package/src/type-polyfills/non-shared-typed-arrays.d.ts +6 -0
package/src/utils/dataPacketBuffer.ts +1 -1
package/src/version.ts +11 -1
package/dist/src/room/rpc.d.ts.map +0 -1
package/src/room/rpc.test.ts +0 -301

package/src/e2ee/types.ts CHANGED Viewed

@@ -1,4 +1,6 @@
 import type { LogLevel } from '../logger';
+import type { PacketTrailerFramePayload } from '../packetTrailer/packetTrailer';
+import type { PacketTrailerPublishOptions } from '../packetTrailer/types';
 import type { VideoCodec } from '../room/track/options';
 import type { BaseE2EEManager } from './E2eeManager';
 import type { BaseKeyProvider } from './KeyProvider';
@@ -38,7 +40,7 @@ export interface RTPVideoMapMessage extends BaseMessage {
 export interface SifTrailerMessage extends BaseMessage {
   kind: 'setSifTrailer';
   data: {
-    trailer: Uint8Array;
+    trailer: NonSharedUint8Array;
   };
 }
@@ -51,6 +53,16 @@ export interface EncodeMessage extends BaseMessage {
     trackId: string;
     codec?: VideoCodec;
     isReuse: boolean;
+    /**
+     * Whether the published track advertises packet trailer features.
+     * When false, the cryptor skips the per-frame trailer extraction path
+     * entirely on decode.
+     */
+    hasPacketTrailer: boolean;
+    /**
+     * Packet trailer metadata to append on published video frames.
+     */
+    packetTrailer?: PacketTrailerPublishOptions;
   };
 }
@@ -68,6 +80,7 @@ export interface UpdateCodecMessage extends BaseMessage {
     participantIdentity: string;
     trackId: string;
     codec: VideoCodec;
+    hasPacketTrailer: boolean;
   };
 }
@@ -116,8 +129,8 @@ export interface DecryptDataRequestMessage extends BaseMessage {
   kind: 'decryptDataRequest';
   data: {
     uuid: string;
-    payload: Uint8Array;
-    iv: Uint8Array;
+    payload: NonSharedUint8Array;
+    iv: NonSharedUint8Array;
     participantIdentity: string;
     keyIndex: number;
   };
@@ -127,7 +140,7 @@ export interface DecryptDataResponseMessage extends BaseMessage {
   kind: 'decryptDataResponse';
   data: {
     uuid: string;
-    payload: Uint8Array;
+    payload: NonSharedUint8Array;
   };
 }
@@ -135,7 +148,7 @@ export interface EncryptDataRequestMessage extends BaseMessage {
   kind: 'encryptDataRequest';
   data: {
     uuid: string;
-    payload: Uint8Array;
+    payload: NonSharedUint8Array;
     participantIdentity: string;
   };
 }
@@ -144,12 +157,17 @@ export interface EncryptDataResponseMessage extends BaseMessage {
   kind: 'encryptDataResponse';
   data: {
     uuid: string;
-    payload: Uint8Array;
-    iv: Uint8Array;
+    payload: NonSharedUint8Array;
+    iv: NonSharedUint8Array;
     keyIndex: number;
   };
 }
+export interface PTMetadataFromE2EEMessage extends BaseMessage {
+  kind: 'packetTrailerMetadata';
+  data: PacketTrailerFramePayload;
+}
 export type E2EEWorkerMessage =
   | InitMessage
   | SetKeyMessage
@@ -166,7 +184,8 @@ export type E2EEWorkerMessage =
   | DecryptDataRequestMessage
   | DecryptDataResponseMessage
   | EncryptDataRequestMessage
-  | EncryptDataResponseMessage;
+  | EncryptDataResponseMessage
+  | PTMetadataFromE2EEMessage;
 export type KeySet = { material: CryptoKey; encryptionKey: CryptoKey };
@@ -221,4 +240,14 @@ export type ScriptTransformOptions = {
   participantIdentity: string;
   trackId: string;
   codec?: VideoCodec;
+  /**
+   * Whether the published track advertises packet trailer features.
+   * When false, the cryptor skips the per-frame trailer extraction path
+   * entirely on decode.
+   */
+  hasPacketTrailer: boolean;
+  /**
+   * Packet trailer metadata to append on published video frames.
+   */
+  packetTrailer?: PacketTrailerPublishOptions;
 };

package/src/e2ee/utils.ts CHANGED Viewed

@@ -8,11 +8,12 @@ export function isE2EESupported() {
 export function isScriptTransformSupported() {
   // @ts-ignore
-  return typeof window.RTCRtpScriptTransform !== 'undefined';
+  return typeof window !== 'undefined' && typeof window.RTCRtpScriptTransform !== 'undefined';
 }
 export function isInsertableStreamSupported() {
   return (
+    typeof window !== 'undefined' &&
     typeof window.RTCRtpSender !== 'undefined' &&
     // @ts-ignore
     typeof window.RTCRtpSender.prototype.createEncodedStreams !== 'undefined'
@@ -26,7 +27,7 @@ export function isVideoFrame(
 }
 export async function importKey(
-  keyBytes: Uint8Array | ArrayBuffer,
+  keyBytes: NonSharedUint8Array | ArrayBuffer,
   algorithm: string | { name: string } = { name: ENCRYPTION_ALGORITHM },
   usage: 'derive' | 'encrypt' = 'encrypt',
 ) {
@@ -112,7 +113,7 @@ export async function deriveKeys(material: CryptoKey, options: KeyProviderOption
   return { material, encryptionKey };
 }
-export function createE2EEKey(): Uint8Array {
+export function createE2EEKey(): NonSharedUint8Array {
   return window.crypto.getRandomValues(new Uint8Array(32));
 }
@@ -127,14 +128,14 @@ export async function ratchet(material: CryptoKey, salt: string): Promise<ArrayB
   return crypto.subtle.deriveBits(algorithmOptions, material, 256);
 }
-export function needsRbspUnescaping(frameData: Uint8Array) {
+export function needsRbspUnescaping(frameData: NonSharedUint8Array) {
   for (var i = 0; i < frameData.length - 3; i++) {
     if (frameData[i] == 0 && frameData[i + 1] == 0 && frameData[i + 2] == 3) return true;
   }
   return false;
 }
-export function parseRbsp(stream: Uint8Array): Uint8Array {
+export function parseRbsp(stream: NonSharedUint8Array): NonSharedUint8Array {
   const dataOut: number[] = [];
   var length = stream.length;
   for (var i = 0; i < stream.length; ) {
@@ -159,7 +160,7 @@ export function parseRbsp(stream: Uint8Array): Uint8Array {
 const kZerosInStartSequence = 2;
 const kEmulationByte = 3;
-export function writeRbsp(data_in: Uint8Array): Uint8Array {
+export function writeRbsp(data_in: NonSharedUint8Array): NonSharedUint8Array {
   const dataOut: number[] = [];
   var numConsecutiveZeros = 0;
   for (var i = 0; i < data_in.length; ++i) {

package/src/e2ee/worker/DataCryptor.ts CHANGED Viewed

@@ -21,11 +21,11 @@ export class DataCryptor {
   }
   static async encrypt(
-    data: Uint8Array,
+    data: NonSharedUint8Array,
     keys: ParticipantKeyHandler,
   ): Promise<{
-    payload: Uint8Array;
-    iv: Uint8Array;
+    payload: NonSharedUint8Array;
+    iv: NonSharedUint8Array;
     keyIndex: number;
   }> {
     const iv = DataCryptor.makeIV(performance.now());
@@ -51,14 +51,14 @@ export class DataCryptor {
   }
   static async decrypt(
-    data: Uint8Array,
-    iv: Uint8Array,
+    data: NonSharedUint8Array,
+    iv: NonSharedUint8Array,
     keys: ParticipantKeyHandler,
     keyIndex: number = 0,
     initialMaterial?: KeySet,
     ratchetOpts: DecodeRatchetOptions = { ratchetCount: 0 },
   ): Promise<{
-    payload: Uint8Array;
+    payload: NonSharedUint8Array;
   }> {
     const keySet = await keys.getKeySet(keyIndex);
     if (!keySet) {

package/src/e2ee/worker/FrameCryptor.test.ts CHANGED Viewed

@@ -1,4 +1,6 @@
 import { afterEach, describe, expect, it, vitest } from 'vitest';
+import { appendPacketTrailer, extractPacketTrailer } from '../../packetTrailer/packetTrailer';
+import type { PacketTrailerPublishOptions } from '../../packetTrailer/types';
 import { IV_LENGTH, KEY_PROVIDER_DEFAULTS } from '../constants';
 import { CryptorEvent } from '../events';
 import type { KeyProviderOptions } from '../types';
@@ -13,7 +15,7 @@ function mockEncryptedRTCEncodedVideoFrame(keyIndex: number): RTCEncodedVideoFra
   return mockRTCEncodedVideoFrame(data);
 }
-function mockRTCEncodedVideoFrame(data: Uint8Array): RTCEncodedVideoFrame {
+function mockRTCEncodedVideoFrame(data: NonSharedUint8Array): RTCEncodedVideoFrame {
   return {
     data: data.buffer,
     timestamp: vitest.getMockedSystemTime()?.getTime() ?? 0,
@@ -24,7 +26,7 @@ function mockRTCEncodedVideoFrame(data: Uint8Array): RTCEncodedVideoFrame {
   };
 }
-function mockFrameTrailer(keyIndex: number): Uint8Array {
+function mockFrameTrailer(keyIndex: number): NonSharedUint8Array {
   const frameTrailer = new Uint8Array(2);
   frameTrailer[0] = IV_LENGTH;
@@ -67,14 +69,21 @@ function prepareParticipantTestDecoder(
 function prepareParticipantTestEncoder(
   participantIdentity: string,
   partialKeyProviderOptions: Partial<KeyProviderOptions>,
+  packetTrailer?: PacketTrailerPublishOptions,
 ) {
-  return prepareParticipantTest('encode', participantIdentity, partialKeyProviderOptions);
+  return prepareParticipantTest(
+    'encode',
+    participantIdentity,
+    partialKeyProviderOptions,
+    packetTrailer,
+  );
 }
 function prepareParticipantTest(
   mode: 'encode' | 'decode',
   participantIdentity: string,
   partialKeyProviderOptions: Partial<KeyProviderOptions>,
+  packetTrailer?: PacketTrailerPublishOptions,
 ): {
   keys: ParticipantKeyHandler;
   cryptor: FrameCryptor;
@@ -95,7 +104,15 @@ function prepareParticipantTest(
   const input = new TestUnderlyingSource<RTCEncodedVideoFrame>();
   const output = new TestUnderlyingSink<RTCEncodedVideoFrame>();
-  cryptor.setupTransform(mode, new ReadableStream(input), new WritableStream(output), 'testTrack');
+  cryptor.setupTransform(
+    mode,
+    new ReadableStream(input),
+    new WritableStream(output),
+    'testTrack',
+    false,
+    undefined,
+    packetTrailer,
+  );
   return { keys, cryptor, input, output };
 }
@@ -215,6 +232,127 @@ describe('FrameCryptor', () => {
         vitest.useRealTimers();
       }
     });
+    it('appends packet trailer after encryption', async () => {
+      vitest.useFakeTimers();
+      const now = new Date('2025-04-10T12:00:00.123Z');
+      vitest.setSystemTime(now);
+      try {
+        const { keys, input, output } = prepareParticipantTestEncoder(
+          participantIdentity,
+          {},
+          { timestamp: true, frameId: true },
+        );
+        await keys.setKey(await createKeyMaterialFromString('key1'), 1);
+        const frame = mockRTCEncodedVideoFrame(
+          new Uint8Array([1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16]),
+        );
+        input.write(frame);
+        await vitest.waitFor(() => expect(output.chunks).toHaveLength(1));
+        const extracted = extractPacketTrailer(frame.data);
+        expect(extracted.metadata?.userTimestamp).toBeGreaterThanOrEqual(
+          BigInt(now.getTime()) * BigInt(1000),
+        );
+        expect(extracted.metadata?.frameId).toBe(1);
+        const frameTrailer = new Uint8Array(
+          extracted.data.buffer.slice(extracted.data.byteLength - 2),
+        );
+        expect(frameTrailer[0]).toEqual(IV_LENGTH);
+        expect(frameTrailer[1]).toEqual(1);
+      } finally {
+        vitest.useRealTimers();
+      }
+    });
+    it('does not append packet trailer after encryption when no trailer features are enabled', async () => {
+      vitest.useFakeTimers();
+      try {
+        const { keys, input, output } = prepareParticipantTestEncoder(
+          participantIdentity,
+          {},
+          { timestamp: false, frameId: false },
+        );
+        await keys.setKey(await createKeyMaterialFromString('key1'), 1);
+        const frame = mockRTCEncodedVideoFrame(
+          new Uint8Array([1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16]),
+        );
+        input.write(frame);
+        await vitest.waitFor(() => expect(output.chunks).toHaveLength(1));
+        const extracted = extractPacketTrailer(frame.data);
+        expect(extracted.metadata).toBeUndefined();
+        expect(extracted.data.byteLength).toBe(frame.data.byteLength);
+        const frameTrailer = new Uint8Array(frame.data.slice(frame.data.byteLength - 2));
+        expect(frameTrailer[0]).toEqual(IV_LENGTH);
+        expect(frameTrailer[1]).toEqual(1);
+      } finally {
+        vitest.useRealTimers();
+      }
+    });
+    it('appends only timestamp packet trailer metadata after encryption', async () => {
+      vitest.useFakeTimers();
+      const now = new Date('2025-04-10T12:00:00.123Z');
+      vitest.setSystemTime(now);
+      try {
+        const { keys, input, output } = prepareParticipantTestEncoder(
+          participantIdentity,
+          {},
+          { timestamp: true },
+        );
+        await keys.setKey(await createKeyMaterialFromString('key1'), 1);
+        const frame = mockRTCEncodedVideoFrame(
+          new Uint8Array([1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16]),
+        );
+        input.write(frame);
+        await vitest.waitFor(() => expect(output.chunks).toHaveLength(1));
+        const extracted = extractPacketTrailer(frame.data);
+        expect(frame.data.byteLength - extracted.data.byteLength).toBe(15);
+        expect(extracted.metadata?.userTimestamp).toBeGreaterThanOrEqual(
+          BigInt(now.getTime()) * BigInt(1000),
+        );
+        expect(extracted.metadata?.frameId).toBe(0);
+      } finally {
+        vitest.useRealTimers();
+      }
+    });
+    it('appends only frame id packet trailer metadata after encryption', async () => {
+      const { keys, input, output } = prepareParticipantTestEncoder(
+        participantIdentity,
+        {},
+        { frameId: true },
+      );
+      await keys.setKey(await createKeyMaterialFromString('key1'), 1);
+      const frame = mockRTCEncodedVideoFrame(
+        new Uint8Array([1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16]),
+      );
+      input.write(frame);
+      await vitest.waitFor(() => expect(output.chunks).toHaveLength(1));
+      const extracted = extractPacketTrailer(frame.data);
+      expect(frame.data.byteLength - extracted.data.byteLength).toBe(11);
+      expect(extracted.metadata).toEqual({
+        userTimestamp: BigInt(0),
+        frameId: 1,
+      });
+    });
   });
   describe('decode', () => {
@@ -391,6 +529,41 @@ describe('FrameCryptor', () => {
       }
     });
+    it('posts packet trailer metadata when the advertised trailer path is active', async () => {
+      vitest.useFakeTimers();
+      try {
+        const { cryptor, input, output } = prepareParticipantTestDecoder(participantIdentity, {});
+        const postMessage = vitest.fn();
+        vitest.stubGlobal('postMessage', postMessage);
+        encryptionEnabledMap.set(participantIdentity, false);
+        cryptor.setHasPacketTrailer(true);
+        const payload = Uint8Array.from([1, 2, 3, 4]);
+        const trailer = appendPacketTrailer(payload, 1_744_249_600_123_456n, 0);
+        const frame = mockRTCEncodedVideoFrame(trailer);
+        input.write(frame);
+        await vitest.advanceTimersToNextTimerAsync();
+        expect(new Uint8Array(output.chunks[0].data)).toEqual(payload);
+        expect(postMessage).toHaveBeenCalledWith({
+          kind: 'packetTrailerMetadata',
+          data: {
+            trackId: 'testTrack',
+            rtpTimestamp: frame.timestamp,
+            ssrc: 0,
+            metadata: {
+              userTimestamp: 1_744_249_600_123_456n,
+              frameId: 0,
+            },
+          },
+        });
+      } finally {
+        vitest.unstubAllGlobals();
+        vitest.useRealTimers();
+      }
+    });
     it('recovers from delayed use of rotated key', async () => {
       vitest.useFakeTimers();
       try {

package/src/e2ee/worker/FrameCryptor.ts CHANGED Viewed

@@ -1,13 +1,24 @@
-/* eslint-disable @typescript-eslint/no-unused-vars */
 // TODO code inspired by https://github.com/webrtc/samples/blob/gh-pages/src/content/insertable-streams/endtoend-encryption/js/worker.js
 import { EventEmitter } from 'events';
 import type TypedEventEmitter from 'typed-emitter';
 import { workerLogger } from '../../logger';
+import {
+  appendPacketTrailerToEncodedFrame,
+  processPacketTrailer,
+} from '../../packetTrailer/packetTrailer';
+import type { PacketTrailerPublishOptions } from '../../packetTrailer/types';
+import { hasPacketTrailerPublishOptions } from '../../packetTrailer/utils';
 import type { VideoCodec } from '../../room/track/options';
 import { ENCRYPTION_ALGORITHM, IV_LENGTH, UNENCRYPTED_BYTES } from '../constants';
 import { CryptorError, CryptorErrorReason } from '../errors';
 import { type CryptorCallbacks, CryptorEvent } from '../events';
-import type { DecodeRatchetOptions, KeyProviderOptions, KeySet, RatchetResult } from '../types';
+import type {
+  DecodeRatchetOptions,
+  KeyProviderOptions,
+  KeySet,
+  PTMetadataFromE2EEMessage,
+  RatchetResult,
+} from '../types';
 import { deriveKeys, isVideoFrame, needsRbspUnescaping, parseRbsp, writeRbsp } from '../utils';
 import type { ParticipantKeyHandler } from './ParticipantKeyHandler';
 import { processNALUsForEncryption } from './naluUtils';
@@ -65,12 +76,23 @@ export class FrameCryptor extends BaseFrameCryptor {
   /**
    * used for detecting server injected unencrypted frames
    */
-  private sifTrailer: Uint8Array;
+  private sifTrailer: NonSharedUint8Array;
   private detectedCodec?: VideoCodec;
   private currentTransform?: TransformerInfo;
+  /**
+   * Whether the subscribed track advertises packet trailer features.
+   * When false, we skip the per-frame trailer extraction path entirely
+   * on decode to avoid unnecessary work on tracks that don't use it.
+   */
+  private hasPacketTrailer: boolean = false;
+  private packetTrailer?: PacketTrailerPublishOptions;
+  private packetTrailerFrameId = 0;
   /**
    * Throttling mechanism for decryption errors to prevent memory leaks
    */
@@ -88,7 +110,7 @@ export class FrameCryptor extends BaseFrameCryptor {
     keys: ParticipantKeyHandler;
     participantIdentity: string;
     keyProviderOptions: KeyProviderOptions;
-    sifTrailer?: Uint8Array;
+    sifTrailer?: NonSharedUint8Array;
   }) {
     super();
     this.sendCounts = new Map();
@@ -178,6 +200,20 @@ export class FrameCryptor extends BaseFrameCryptor {
     this.rtpMap = map;
   }
+  /**
+   * Sets whether the track associated with this cryptor carries packet
+   * trailer data. When false, {@link decodeFunction} skips the per-frame
+   * trailer extraction branch entirely.
+   */
+  setHasPacketTrailer(hasPacketTrailer: boolean) {
+    this.hasPacketTrailer = hasPacketTrailer;
+  }
+  setPacketTrailer(packetTrailer?: PacketTrailerPublishOptions) {
+    this.packetTrailer = packetTrailer;
+    this.packetTrailerFrameId = 0;
+  }
   setupTransform(
     operation: 'encode' | 'decode',
     readable: ReadableStream<RTCEncodedVideoFrame | RTCEncodedAudioFrame>,
@@ -185,11 +221,15 @@ export class FrameCryptor extends BaseFrameCryptor {
     trackId: string,
     isReuse: boolean,
     codec?: VideoCodec,
+    packetTrailer?: PacketTrailerPublishOptions,
   ) {
     if (codec) {
       workerLogger.info('setting codec on cryptor to', { codec });
       this.videoCodec = codec;
     }
+    if (operation === 'encode') {
+      this.setPacketTrailer(packetTrailer);
+    }
     workerLogger.debug('Setting up frame cryptor transform', {
       operation,
@@ -262,7 +302,7 @@ export class FrameCryptor extends BaseFrameCryptor {
       });
   }
-  setSifTrailer(trailer: Uint8Array) {
+  setSifTrailer(trailer: NonSharedUint8Array) {
     workerLogger.debug('setting SIF trailer', { ...this.logContext, trailer });
     this.sifTrailer = trailer;
   }
@@ -353,11 +393,13 @@ export class FrameCryptor extends BaseFrameCryptor {
     encodedFrame: RTCEncodedVideoFrame | RTCEncodedAudioFrame,
     controller: TransformStreamDefaultController,
   ) {
-    if (
-      !this.isEnabled() ||
-      // skip for encryption for empty dtx frames
-      encodedFrame.data.byteLength === 0
-    ) {
+    // skip for encryption and packet trailer writes for empty dtx frames
+    if (encodedFrame.data.byteLength === 0) {
+      return controller.enqueue(encodedFrame);
+    }
+    if (!this.isEnabled()) {
+      this.appendPacketTrailer(encodedFrame);
       return controller.enqueue(encodedFrame);
     }
     const keySet = this.keys.getKeySet();
@@ -410,7 +452,7 @@ export class FrameCryptor extends BaseFrameCryptor {
           new Uint8Array(encodedFrame.data, frameInfo.unencryptedBytes),
         );
-        let newDataWithoutHeader = new Uint8Array(
+        let newDataWithoutHeader: NonSharedUint8Array = new Uint8Array(
           cipherText.byteLength + iv.byteLength + frameTrailer.byteLength,
         );
         newDataWithoutHeader.set(new Uint8Array(cipherText)); // add ciphertext.
@@ -426,6 +468,7 @@ export class FrameCryptor extends BaseFrameCryptor {
         newData.set(newDataWithoutHeader, frameHeader.byteLength);
         encodedFrame.data = newData.buffer;
+        this.appendPacketTrailer(encodedFrame);
         return controller.enqueue(encodedFrame);
       } catch (e: any) {
@@ -444,6 +487,18 @@ export class FrameCryptor extends BaseFrameCryptor {
     }
   }
+  private appendPacketTrailer(encodedFrame: RTCEncodedVideoFrame | RTCEncodedAudioFrame) {
+    if (!hasPacketTrailerPublishOptions(this.packetTrailer) || !isVideoFrame(encodedFrame)) {
+      return;
+    }
+    if (this.packetTrailer?.frameId) {
+      this.packetTrailerFrameId =
+        this.packetTrailerFrameId === 0xffffffff ? 1 : this.packetTrailerFrameId + 1;
+    }
+    appendPacketTrailerToEncodedFrame(encodedFrame, this.packetTrailer, this.packetTrailerFrameId);
+  }
   /**
    * Function that will be injected in a stream and will decrypt the given encoded frames.
    *
@@ -454,6 +509,24 @@ export class FrameCryptor extends BaseFrameCryptor {
     encodedFrame: RTCEncodedVideoFrame | RTCEncodedAudioFrame,
     controller: TransformStreamDefaultController,
   ) {
+    if (this.hasPacketTrailer && isVideoFrame(encodedFrame)) {
+      try {
+        const ptResult = processPacketTrailer(encodedFrame, this.trackId);
+        if (ptResult.data) {
+          encodedFrame.data = ptResult.data;
+        }
+        if (ptResult.payload && this.participantIdentity) {
+          const msg: PTMetadataFromE2EEMessage = {
+            kind: 'packetTrailerMetadata',
+            data: ptResult.payload,
+          };
+          postMessage(msg);
+        }
+      } catch {
+        // best-effort: never break the media pipeline if trailer parsing fails
+      }
+    }
     if (
       !this.isEnabled() ||
       // skip for decryption for empty dtx frames
@@ -540,8 +613,12 @@ export class FrameCryptor extends BaseFrameCryptor {
     // ---------+-------------------------+-+---------+----
     try {
-      const frameHeader = new Uint8Array(encodedFrame.data, 0, frameInfo.unencryptedBytes);
-      var encryptedData = new Uint8Array(
+      const frameHeader: NonSharedUint8Array = new Uint8Array(
+        encodedFrame.data,
+        0,
+        frameInfo.unencryptedBytes,
+      );
+      var encryptedData: NonSharedUint8Array = new Uint8Array(
         encodedFrame.data,
         frameHeader.length,
         encodedFrame.data.byteLength - frameHeader.length,
@@ -758,7 +835,10 @@ export class FrameCryptor extends BaseFrameCryptor {
  * by the livekit server and thus to be treated as unencrypted
  * @internal
  */
-export function isFrameServerInjected(frameData: ArrayBuffer, trailerBytes: Uint8Array): boolean {
+export function isFrameServerInjected(
+  frameData: ArrayBuffer,
+  trailerBytes: NonSharedUint8Array,
+): boolean {
   if (trailerBytes.byteLength === 0) {
     return false;
   }

package/src/e2ee/worker/ParticipantKeyHandler.test.ts CHANGED Viewed

@@ -261,7 +261,7 @@ describe('ParticipantKeyHandler', () => {
       await keyHandler.setKey(originalMaterial);
-      const ciphertexts: Uint8Array[] = [];
+      const ciphertexts: NonSharedUint8Array[] = [];
       const plaintext = new Uint8Array([0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16]);
@@ -354,8 +354,8 @@ describe('ParticipantKeyHandler', () => {
     async function encrypt(
       participantKeyHandler: ParticipantKeyHandler,
       keyIndex: number,
-      iv: Uint8Array,
-      data: Uint8Array,
+      iv: NonSharedUint8Array,
+      data: NonSharedUint8Array,
     ): Promise<ArrayBuffer> {
       return crypto.subtle.encrypt(
         {
@@ -370,7 +370,7 @@ describe('ParticipantKeyHandler', () => {
     async function decrypt(
       participantKeyHandler: ParticipantKeyHandler,
       keyIndex: number,
-      iv: Uint8Array,
+      iv: NonSharedUint8Array,
       cipherText: ArrayBuffer,
     ): Promise<ArrayBuffer> {
       return crypto.subtle.decrypt(