Bug 2184216

Summary: libsrtp package is out of date and misconfigured
Product: [Fedora] Fedora Reporter: Nirbheek Chauhan <nirbheek.chauhan>
Component: libsrtpAssignee: Tom "spot" Callaway <spotrh>
Status: NEW --- QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: high Docs Contact:
Priority: unspecified    
Version: 39CC: g.devel, spotrh
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: ---
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Nirbheek Chauhan 2023-04-03 23:57:02 UTC 
1. The latest libsrtp release is 2.5 (released 2 months ago), while fedora ships 2.3 (3 years old)
2. Crypto backend in use is NSS which is ~10x slower than the OpenSSL backend when encrypting RTP packets using this benchmark: https://gist.github.com/Sean-Der/7a42bd70edfe1324ccc6ab399d653c0e. On my machine, nss backend takes 12s, built-in crypto lib takes 4.5s, openssl takes 1.6s.
3. Using openssl also allows using hardware cryptography using /dev/crypto
4. Using openssl enables usage of AES-GCM and AES-NI 
5. You can also switch from autotools to meson (or cmake) with newer libsrtp
Comment 1 Fedora Release Engineering 2023-08-16 08:07:31 UTC 
This bug appears to have been reported against 'rawhide' during the Fedora Linux 39 development cycle.
Changing version to 39.