Closed
Bug 1230759
Opened 9 years ago
Closed 7 years ago
Update libsrtp to version 2.2.0-pre
Categories
(Core :: WebRTC: Networking, defect, P2)
Core
WebRTC: Networking
Tracking
()
RESOLVED
FIXED
mozilla59
Tracking | Status | |
---|---|---|
firefox59 | --- | fixed |
backlog | webrtc/webaudio+ |
People
(Reporter: jesup, Assigned: drno)
References
Details
(Whiteboard: [third-party-lib-audit])
Attachments
(4 files, 10 obsolete files)
No description provided.
Reporter | ||
Updated•9 years ago
|
backlog: --- → webrtc/webaudio+
Rank: 22
Priority: -- → P2
Comment 1•8 years ago
|
||
Part 1: libsrtp has moved from SourceForge to GitHub, so fix the update script. libsrtp 1.5.4 and 2.0.0 were released on 2016-02-02. We currently use libsrtp 1.4.4 from 2012. Changes since version 1.5.0: https://github.com/cisco/libsrtp/blob/master/CHANGES
Attachment #8732494 -
Flags: review?(rjesup)
Comment 2•8 years ago
|
||
Part 2: Update libsrtp to version 2.0.0 To build, I needed to: * remove some deleted .c files from moz.build. * move some .c files from UNIFIED_SOURCES to SOURCES to avoid redefinition compilation errors. * ALLOW_COMPILER_WARNINGS because libsrtp 2.0.0 has some new -Wsign-compare warnings. * define PACKAGE_STRING/VERSION macros now needed to build libsrtp. * fix SrtpFlow.cpp/h to use the new srtp_* identifier name prefixes. * export srtp.h for SrtpFlow.cpp/h to use the new type definitions.
Attachment #8732495 -
Flags: review?(rjesup)
Updated•8 years ago
|
status-firefox46:
--- → affected
status-firefox47:
--- → affected
status-firefox48:
--- → affected
Summary: Update libsrtp to either 1.5.x or trunk from upstream → Update libsrtp to version 2.0.0
Reporter | ||
Comment 3•8 years ago
|
||
FYI, I'm on PTO this week but will get to the review (I've already started)
Reporter | ||
Updated•8 years ago
|
Attachment #8732494 -
Flags: review?(rjesup) → review+
Reporter | ||
Comment 4•8 years ago
|
||
Comment on attachment 8732495 [details] [diff] [review] part-2-update-srtp-to-2.0.0.patch Review of attachment 8732495 [details] [diff] [review]: ----------------------------------------------------------------- r+, but not for checkin at this time. Before switching branches to the new main 2.x branch, we need to consult with a few people about the stability and state of the 2.0 branch compared to 1.4/1.5 (we could update to the very-stable 1.5.x branch, or do so as an interim step). (Note: this records what Chris and I discussed on IRC some time ago) Also, before landing this, I'd want to go over the patches landed on top of the last import, and see which (if any) of them still should be applied. (90% of the patches are build-system patches that would be irrelevant). You can see the list of patches via (on inbound): hg log -r 50ec63e18d1a: netwerk/src for example, bug 1255655 still applies, so landing this as-is would lose that fix. I'd also want to consider moving to an update script that (like libvpx) applies our patches on top of an update.
Attachment #8732495 -
Flags: review?(rjesup)
Reporter | ||
Comment 5•8 years ago
|
||
ekr - any comments on the timing for updating to the 2.x branch of libsrtp, especially compared to the 1.5.x branch? We may want to wait for Issue 150 to be resolved upstream, and we may want the buffer-overflow-in-logging fix landed since 2.0.0. Does 1.5.x have what's needed for PERC? (Probably not.) I'll ping Lennox and John Foley as well.
Flags: needinfo?(ekr)
Flags: needinfo?(adam)
Comment 6•8 years ago
|
||
(In reply to Randell Jesup [:jesup] from comment #5) > ekr - any comments on the timing for updating to the 2.x branch of libsrtp, > especially compared to the 1.5.x branch? We may want to wait for Issue 150 > to be resolved upstream, and we may want the buffer-overflow-in-logging fix > landed since 2.0.0. Sorry, I don't have an informed opinion on this. I could develop one if you need me to... > Does 1.5.x have what's needed for PERC? (Probably not.) No, the transforms will be different, but they're not defined yet. > I'll ping Lennox and John Foley as well.
Flags: needinfo?(ekr)
Comment 9•7 years ago
|
||
Cisco plans to release a beta of libsrtp 2.1 in February or March: https://github.com/cisco/libsrtp/issues/225 https://github.com/cisco/libsrtp/wiki/Release-2.1
Comment 11•7 years ago
|
||
libsrtp 2.1.0 was released today: https://github.com/cisco/libsrtp/issues/225#event-1123982184 2.1.0 changelog: https://github.com/cisco/libsrtp/blob/v2.1.0/CHANGES tagged release: https://github.com/cisco/libsrtp/releases/tag/v2.1.0
Assignee | ||
Comment 12•7 years ago
|
||
To be able to either use existing libsrtp code or only make minimal changes to support PERC we would at least need release 2.0.0 of libsrtp, because I think that is the first release which brings support for GCM ciphers. But as release 2.1.0 makes backward incompatible changes to GCM, I think we should skip 2.0.0 and go for for 2.1.0 (or later).
Comment 13•7 years ago
|
||
libsrtp 1.6.0 was released today: "This release restores compatibility between version 1 and version 2.1.0 and later. From this point 1.5.x is effectively EOL and there will be no more changes to 1_5_x_throttle. It is strongly recommended for people currently using a 1.5.x release to move to the 1.6.0 release if they are unable to move the 2.1.0 release." https://github.com/cisco/libsrtp/issues/280 1.6.0 changelog: https://github.com/cisco/libsrtp/pull/325/files/ed63d3e9e509f379b84118819b0fde6cae6e3aa7 tagged release: https://github.com/cisco/libsrtp/releases/tag/v1.6.0
Updated•7 years ago
|
Whiteboard: [third-party-lib-audit]
Comment 14•7 years ago
|
||
Mass change P2->P3 to align with new Mozilla triage process.
Priority: P2 → P3
Assignee | ||
Comment 15•7 years ago
|
||
I'm working on a new patch set to update to the latest libsrtp so we can benefit from their latest memory management related fixes.
Assignee: rjesup → drno
Priority: P3 → P2
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Assignee | ||
Updated•7 years ago
|
Attachment #8927615 -
Flags: review?(rjesup)
Attachment #8927616 -
Flags: review?(rjesup)
Attachment #8927617 -
Flags: review?(rjesup)
Attachment #8927618 -
Flags: review?(rjesup)
Attachment #8927619 -
Flags: review?(rjesup)
Attachment #8927620 -
Flags: review?(rjesup)
Attachment #8927621 -
Flags: review?(rjesup)
Attachment #8927622 -
Flags: review?(rjesup)
Attachment #8927623 -
Flags: review?(rjesup)
Attachment #8927624 -
Flags: review?(rjesup)
Attachment #8927625 -
Flags: review?(rjesup)
Attachment #8927626 -
Flags: review?(rjesup)
Assignee | ||
Updated•7 years ago
|
Summary: Update libsrtp to version 2.0.0 → Update libsrtp to version 2.2.0-pre
Assignee | ||
Comment 28•7 years ago
|
||
mozreview-review |
Comment on attachment 8927623 [details] Bug 1230759: Part 9 - reapplied patches from bug 792325 https://reviewboard.mozilla.org/r/198926/#review203928 According to libsrtp unit tests this patch actually breaks the roll over counter. See https://github.com/cisco/libsrtp/pull/382
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Assignee | ||
Updated•7 years ago
|
Attachment #8927623 -
Attachment is obsolete: true
Attachment #8927623 -
Flags: review?(rjesup)
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Reporter | ||
Comment 37•7 years ago
|
||
mozreview-review |
Comment on attachment 8927618 [details] Bug 1230759: Part 4 - added missing ifdef's https://reviewboard.mozilla.org/r/198916/#review204340
Attachment #8927618 -
Flags: review?(rjesup) → review+
Reporter | ||
Comment 38•7 years ago
|
||
mozreview-review |
Comment on attachment 8927615 [details] Bug 1230759: Part 1 - updated the libsrtp update script https://reviewboard.mozilla.org/r/198910/#review204346 ::: netwerk/srtp/update_srtp.sh:16 (Diff revision 1) > if [ "$1" ] ; then > export date=`date` > -# export revision=`(cd $1; svnversion -n)` > - export CVSREAD=0 > cp -rf $1/srtp $1/crypto $1/include $1/VERSION $1/LICENSE $1/README $1/configure.in netwerk/srtp/src > > hg addremove netwerk/srtp/src --include "netwerk/srtp/src/VERSION" --include "netwerk/srtp/src/LICENSE" --include "netwerk/srtp/src/configure.in" --include "netwerk/srtp/src/README" --include "**.c" --include "**.h" --similarity 90 > > - echo "srtp updated from CVS on $date" >> netwerk/srtp/srtp_update.log > - echo "srtp updated from CVS on $date" > + echo "srtp updated from git on $date" >> netwerk/srtp/srtp_update.log > + echo "srtp updated from git on $date" > echo "WARNING: reapply any local patches!" > else > echo "usage: $0 path_to_srtp_directory" > echo "run from the root of your m-c clone" > fi perhaps add: export revision=`(cd $1; git log --pretty=oneline | head -1 | cut -c 1-40)` and echo "srtp updated to version $revision from git on $date" >> netwerk/srtp/srtp_update.log echo "srtp updated to version $revision from git on $date" (I have those changes queued for the sctp update script which is close-to-identical)
Attachment #8927615 -
Flags: review?(rjesup) → review+
Reporter | ||
Comment 39•7 years ago
|
||
mozreview-review |
Comment on attachment 8927616 [details] Bug 1230759: Part 2 - update libsrtp to 2.2.0-pre https://reviewboard.mozilla.org/r/198912/#review204350 Maybe update the log message to include the git revision (and maybe date pulled, though revision is more important)?
Attachment #8927616 -
Flags: review?(rjesup) → review+
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Reporter | ||
Comment 51•7 years ago
|
||
mozreview-review |
Comment on attachment 8927617 [details] Bug 1230759: Part 3 - fixed compiler errors in libsrtp https://reviewboard.mozilla.org/r/198914/#review204444
Attachment #8927617 -
Flags: review?(rjesup) → review+
Reporter | ||
Comment 52•7 years ago
|
||
mozreview-review |
Comment on attachment 8927620 [details] Bug 1230759: Part 3 - changes to signaling to work with libsrtp 2.2 https://reviewboard.mozilla.org/r/198920/#review205020
Attachment #8927620 -
Flags: review?(rjesup) → review+
Reporter | ||
Comment 53•7 years ago
|
||
mozreview-review |
Comment on attachment 8927621 [details] Bug 1230759: Part 4 - update moz build for libsrtp 2.2 https://reviewboard.mozilla.org/r/198922/#review205026 ::: netwerk/srtp/src/moz.build:43 (Diff revision 2) > +# This is needed to enable the be32_to_cpu and be64_to_cpu > +# macro's in datatypes.h > +DEFINES['HAVE_CONFIG_H'] = 1 Amusing since I added the original NO_64BIT_MATH code for the TI DSP (40-bit LONG LONGs)
Attachment #8927621 -
Flags: review?(rjesup) → review+
Reporter | ||
Comment 54•7 years ago
|
||
mozreview-review |
Comment on attachment 8927619 [details] Bug 1230759: Part 5 - added comments to ifdef's https://reviewboard.mozilla.org/r/198918/#review205850
Attachment #8927619 -
Flags: review?(rjesup)
Reporter | ||
Comment 55•7 years ago
|
||
mozreview-review |
Comment on attachment 8927622 [details] Bug 1230759: Part 8 - fix compiler warnings in libsrtp https://reviewboard.mozilla.org/r/198924/#review205852
Attachment #8927622 -
Flags: review?(rjesup)
Reporter | ||
Comment 56•7 years ago
|
||
mozreview-review |
Comment on attachment 8927624 [details] Bug 1230759: Part 9 - reapplied patches for bug 789858 https://reviewboard.mozilla.org/r/198928/#review205856
Attachment #8927624 -
Flags: review?(rjesup)
Reporter | ||
Comment 57•7 years ago
|
||
mozreview-review |
Comment on attachment 8927625 [details] Bug 1230759: Part 10 - reapplied patches from bug 1003929 https://reviewboard.mozilla.org/r/198930/#review205858
Attachment #8927625 -
Flags: review?(rjesup)
Reporter | ||
Comment 58•7 years ago
|
||
mozreview-review |
Comment on attachment 8927626 [details] Bug 1230759: Part 11 - reapplied patches from bug 1255655 https://reviewboard.mozilla.org/r/198932/#review205860
Attachment #8927626 -
Flags: review?(rjesup)
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Assignee | ||
Updated•7 years ago
|
Attachment #8927618 -
Attachment is obsolete: true
Assignee | ||
Updated•7 years ago
|
Attachment #8927619 -
Attachment is obsolete: true
Assignee | ||
Updated•7 years ago
|
Attachment #8927622 -
Attachment is obsolete: true
Assignee | ||
Updated•7 years ago
|
Attachment #8927624 -
Attachment is obsolete: true
Assignee | ||
Updated•7 years ago
|
Attachment #8927625 -
Attachment is obsolete: true
Assignee | ||
Updated•7 years ago
|
Attachment #8927626 -
Attachment is obsolete: true
Assignee | ||
Updated•7 years ago
|
Attachment #8732495 -
Attachment is obsolete: true
Assignee | ||
Updated•7 years ago
|
Attachment #8732494 -
Attachment is obsolete: true
Assignee | ||
Comment 63•7 years ago
|
||
Forgot to submit part 3 when upstreaming our fixes. I wait for https://github.com/cisco/libsrtp/pull/386 to get accepted and merged so we will have a clean import.
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Assignee | ||
Updated•7 years ago
|
Attachment #8927617 -
Attachment is obsolete: true
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment hidden (mozreview-request) |
Comment 71•7 years ago
|
||
Pushed by drno@ohlmeier.org: https://hg.mozilla.org/integration/autoland/rev/3ad217d737b3 Part 1 - updated the libsrtp update script r=jesup https://hg.mozilla.org/integration/autoland/rev/8a2d5de90bb0 Part 2 - update libsrtp to 2.2.0-pre r=jesup https://hg.mozilla.org/integration/autoland/rev/807fe0f2d39c Part 3 - changes to signaling to work with libsrtp 2.2 r=jesup https://hg.mozilla.org/integration/autoland/rev/f6496640e306 Part 4 - update moz build for libsrtp 2.2 r=jesup
Comment 72•7 years ago
|
||
bugherder |
https://hg.mozilla.org/mozilla-central/rev/3ad217d737b3 https://hg.mozilla.org/mozilla-central/rev/8a2d5de90bb0 https://hg.mozilla.org/mozilla-central/rev/807fe0f2d39c https://hg.mozilla.org/mozilla-central/rev/f6496640e306
Status: NEW → RESOLVED
Closed: 7 years ago
status-firefox59:
--- → fixed
Resolution: --- → FIXED
Target Milestone: --- → mozilla59
Updated•6 years ago
|
status-firefox45:
affected → ---
status-firefox46:
affected → ---
status-firefox47:
affected → ---
status-firefox48:
affected → ---
You need to log in
before you can comment on or make changes to this bug.
Description
•