Bug 2184216

Summary: libsrtp package is out of date and misconfigured
Product: [Fedora] Fedora Reporter: Nirbheek Chauhan <nirbheek.chauhan>
Component: libsrtpAssignee: Tom "spot" Callaway <spotrh>
Status: CLOSED ERRATA QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: low Docs Contact:
Priority: unspecified    
Version: 39CC: fedora, g.devel, spotrh
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: libsrtp-2.6.0-1.fc40 libsrtp-2.6.0-1.fc39 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2024-08-13 07:45:47 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Nirbheek Chauhan 2023-04-03 23:57:02 UTC 
1. The latest libsrtp release is 2.5 (released 2 months ago), while fedora ships 2.3 (3 years old)
2. Crypto backend in use is NSS which is ~10x slower than the OpenSSL backend when encrypting RTP packets using this benchmark: https://gist.github.com/Sean-Der/7a42bd70edfe1324ccc6ab399d653c0e. On my machine, nss backend takes 12s, built-in crypto lib takes 4.5s, openssl takes 1.6s.
3. Using openssl also allows using hardware cryptography using /dev/crypto
4. Using openssl enables usage of AES-GCM and AES-NI 
5. You can also switch from autotools to meson (or cmake) with newer libsrtp
Comment 1 Fedora Release Engineering 2023-08-16 08:07:31 UTC 
This bug appears to have been reported against 'rawhide' during the Fedora Linux 39 development cycle.
Changing version to 39.
Comment 2 Zephyr Lykos 2024-08-06 02:32:24 UTC 
Should be solved with PR#4.

We probably need RelEng to assign a new maintainer for this package.
Comment 3 Tom "spot" Callaway 2024-08-06 03:08:33 UTC 
Update coming.
Comment 4 Fedora Update System 2024-08-06 03:36:43 UTC 
FEDORA-2024-abc9b782be (libsrtp-2.6.0-1.fc39) has been submitted as an update to Fedora 39.
https://bodhi.fedoraproject.org/updates/FEDORA-2024-abc9b782be
Comment 5 Fedora Update System 2024-08-06 03:36:43 UTC 
FEDORA-2024-c4330b3c61 (libsrtp-2.6.0-1.fc40) has been submitted as an update to Fedora 40.
https://bodhi.fedoraproject.org/updates/FEDORA-2024-c4330b3c61
Comment 6 Fedora Update System 2024-08-08 03:36:26 UTC 
FEDORA-2024-abc9b782be has been pushed to the Fedora 39 testing repository.
Soon you'll be able to install the update with the following command:
`sudo dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2024-abc9b782be`
You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2024-abc9b782be

See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
Comment 7 Fedora Update System 2024-08-08 04:45:47 UTC 
FEDORA-2024-c4330b3c61 has been pushed to the Fedora 40 testing repository.
Soon you'll be able to install the update with the following command:
`sudo dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2024-c4330b3c61`
You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2024-c4330b3c61

See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
Comment 8 Fedora Update System 2024-08-13 07:45:47 UTC 
FEDORA-2024-c4330b3c61 (libsrtp-2.6.0-1.fc40) has been pushed to the Fedora 40 stable repository.
If problem still persists, please make note of it in this bug report.
Comment 9 Fedora Update System 2024-08-23 01:23:10 UTC 
FEDORA-2024-abc9b782be (libsrtp-2.6.0-1.fc39) has been pushed to the Fedora 39 stable repository.
If problem still persists, please make note of it in this bug report.