IETF Logo Mail Archive

Re: [bfcpbis] Eric Rescorla's Discuss on draft-ietf-bfcpbis-rfc4583bis-26: (with DISCUSS and COMMENT)

Roman Shpount <roman@telurix.com> Wed, 24 October 2018 20:12 UTC

Return-Path: <roman@telurix.com>
X-Original-To: bfcpbis@ietfa.amsl.com
Delivered-To: bfcpbis@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5FC7D130E19 for <bfcpbis@ietfa.amsl.com>; Wed, 24 Oct 2018 13:12:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.89
X-Spam-Level:
X-Spam-Status: No, score=-1.89 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, T_SPF_PERMERROR=0.01] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=telurix-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QnVsYkxuMHZV for <bfcpbis@ietfa.amsl.com>; Wed, 24 Oct 2018 13:12:27 -0700 (PDT)
Received: from mail-pf1-x430.google.com (mail-pf1-x430.google.com [IPv6:2607:f8b0:4864:20::430]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D3D8712D4E9 for <bfcpbis@ietf.org>; Wed, 24 Oct 2018 13:12:25 -0700 (PDT)
Received: by mail-pf1-x430.google.com with SMTP id f26-v6so2963386pfn.9 for <bfcpbis@ietf.org>; Wed, 24 Oct 2018 13:12:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=telurix-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=wQr9ZZ2/gER5JpZAwMiDt9FB2JNYbDLTV/nwibJ4iRg=; b=Tk5bAJU+NlecJlinOmgMSBQLwGfe9gukSKwfUoD7TAExI5mqUzIIdmWo1SusxbTEzA FUqi2bF2vTDHTcSBe8FaQxVm8UNkfQbdEwE6SbV+F4zeU+YL+gfSfOAMi3i1enOPhn9r o9SHIBYMuT3MBOkT1epbmgwb+Hcf7EU6ncXH5CFkuDRDpnzCq4Ic+yxuDRwmcOEn/3jf CwFOJUxZ8J13m6LvEceCSIYKI++EUctJFnDgcXITykCMyrWloT/KSWSvCxWPXaE/0E0p lSKv56IUOU903fjRCxzaCrBQ8wuvB2dogWEu/gVdtWCPjFXGbFZavyk0sTvJ22he+zfc 4Elw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=wQr9ZZ2/gER5JpZAwMiDt9FB2JNYbDLTV/nwibJ4iRg=; b=CXPwQCX6y/zyS/OtBCl7DzP5fxGA477lxHG5iAgTphZTJt4CvxKu6o+1lOb5M6fsBS kSWZIFuxQHUumpf5E06hc/VLsO970W5PWJVBnDadpTtj61bjcbnp6DNLFnD7lsAGON+e aB2Bwq+Lz/X2TXZ2H/jNH+YtVXNgUImIo1Dh3TxBZKiVfYQ7ApfcYbutFnigr4cCHTkL kJsbEA99cwoBtgam57+S2jO36QLPxaBOxPoZ7w8d8QvN78M7cynToPOnqJGpZ5+2quol m0UlniM8Lp3CIZHfbKF29SymK7lM02+k522k+1lirbYtNy4MkIjbQOJIlC/s16SnWXZG wQUA==
X-Gm-Message-State: AGRZ1gILyvhhOoQ5Bj5QBWGQfTTpIetIMqcFCf5O6CvIvSx1bGQ9sz8n YiKHYuDUMYpbYN/xAYShI4E8vw==
X-Google-Smtp-Source: AJdET5fDqdILwXihOxJGxphrjmlKi58z1E+9lcg0jOEmzKSRF0zWO4nqE1+ixlJFuflruj4lE2h83A==
X-Received: by 2002:a63:a012:: with SMTP id r18-v6mr3914217pge.282.1540411945403; Wed, 24 Oct 2018 13:12:25 -0700 (PDT)
Received: from mail-pl1-f179.google.com (mail-pl1-f179.google.com. [209.85.214.179]) by smtp.gmail.com with ESMTPSA id b19-v6sm6203776pfo.50.2018.10.24.13.12.24 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 24 Oct 2018 13:12:24 -0700 (PDT)
Received: by mail-pl1-f179.google.com with SMTP id x6-v6so2759499pln.0; Wed, 24 Oct 2018 13:12:24 -0700 (PDT)
X-Received: by 2002:a17:902:e089:: with SMTP id cb9-v6mr3704099plb.196.1540411944194; Wed, 24 Oct 2018 13:12:24 -0700 (PDT)
MIME-Version: 1.0
References: <154040901414.6834.17243795717657341259.idtracker@ietfa.amsl.com> <CAD5OKxtDT=20hX880j1h365TBSLyg=RfqrBF8d9YNidNyjutkA@mail.gmail.com> <CABcZeBMgFJR1MfXi+TLMph6tJLNXLMxMRYv0zVTCdvdX7yjM3g@mail.gmail.com>
In-Reply-To: <CABcZeBMgFJR1MfXi+TLMph6tJLNXLMxMRYv0zVTCdvdX7yjM3g@mail.gmail.com>
From: Roman Shpount <roman@telurix.com>
Date: Wed, 24 Oct 2018 16:12:13 -0400
X-Gmail-Original-Message-ID: <CAD5OKxsWdUHMQj116o1mcC6KcKh0MqHrxdWvd-FfQCyJtjwp_g@mail.gmail.com>
Message-ID: <CAD5OKxsWdUHMQj116o1mcC6KcKh0MqHrxdWvd-FfQCyJtjwp_g@mail.gmail.com>
To: Eric Rescorla <ekr@rtfm.com>
Cc: IESG <iesg@ietf.org>, bfcpbis@ietf.org, Mary Barnes <mary.ietf.barnes@gmail.com>, draft-ietf-bfcpbis-rfc4583bis@ietf.org, bfcpbis-chairs@ietf.org
Content-Type: multipart/alternative; boundary="000000000000bdd9e10578ff1a84"
Archived-At: <https://mailarchive.ietf.org/arch/msg/bfcpbis/5UJo5N_Vfh--XkgKY9-VTdDCosA>
Subject: Re: [bfcpbis] Eric Rescorla's Discuss on draft-ietf-bfcpbis-rfc4583bis-26: (with DISCUSS and COMMENT)
X-BeenThere: bfcpbis@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BFCPBIS working group discussion list <bfcpbis.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bfcpbis>, <mailto:bfcpbis-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bfcpbis/>
List-Post: <mailto:bfcpbis@ietf.org>
List-Help: <mailto:bfcpbis-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bfcpbis>, <mailto:bfcpbis-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Oct 2018 20:12:30 -0000

On Wed, Oct 24, 2018 at 3:54 PM Eric Rescorla <ekr@rtfm.com> wrote:

>
>
> On Wed, Oct 24, 2018 at 12:50 PM Roman Shpount <roman@telurix.com> wrote:
>
>> On Wed, Oct 24, 2018 at 3:23 PM Eric Rescorla <ekr@rtfm.com> wrote:
>>
>>> S 9.
>>> >      transport is used for the default candidate, then the 'm' line
>>> proto
>>> >      value MUST be 'UDP/TLS/BFCP'.  If TCP transport is used for the
>>> >      default candidate, the 'm' line proto value MUST be
>>> 'TCP/DTLS/BFCP'.
>>> >
>>> >         Note: Usage of ICE with protocols other than UDP/TLS/BFCP and
>>> >         TCP/DTLS/BFCP is outside of scope for this specification.
>>>
>>> this is very different from any other use of ICE, and I'm not sure
>>> it's interoperable, unless you require that only TCP or only UDP
>>> candidates be offered (which you do not seem to). The reason is that
>>> with ICE you can flip between different candidates as part of the
>>> negotiation. So what happens if I initially get a UDP candidate and
>>> then via aggressive nomination settle on TCP (or vice versa). DTLS and
>>> TLS aren't really interoperable in that way. It would be far better to
>>> do what WebRTC does and when you do ICE, always do DTLS even if it's
>>> over TCP.
>>>
>>>
>> When ICE is used, DTLS is always used exactly for the reasons you
>> mention.  End points only allowed to use 'UDP/TLS/BFCP', which is DTLS over
>> UDP, or 'TCP/DTLS/BFCP', which is DTLS over TCP. DTLS over UDP is only
>> named  'UDP/TLS/BFCP' instead of  'UDP/DTLS/BFCP' for legacy interop
>> reasons, since some implementations apparently already added support for
>> this.  Please note that naming of BFCP over DTLS over UDP  as
>> 'UDP/TLS/BFCP'  is similar to naming RTP over DTLS over UDP as
>> "UDP/RTP/TLS/SAVP".
>>
>
> Ah, I missed this. But then I do wonder whether it's really useful to have
> two proto versions here, rather than just UDP/TLS/BFCP. We didn't find it
> helpful in JSEP....
>
>
ICE SDP draft still requires a re-INVITE after nomination process is
completed where c= and m= line are updated to reflect the nominated
candidate. If nominated candidate an ICE-TCP candidate, then proto in m=
line would be 'TCP/DTLS/BFCP' to reflect this. In cases when non ICE-TCP
candidate is used, the proto in m= line will be 'UDP/TLS/BFCP'. Also, all
subsequent offer/answer exchanges, which do not initiate ICE restart are
supposed to use the proto value of nominated candidate in the m= line. So,
the only reason for existence of 'TCP/DTLS/BFCP' proto is to differentiate
if UDP or TCP candidate is used after the nomination.

How did you solve this issue in JSEP? I was pretty sure
that 'TCP/RTP/DTLS/SAVP' and 'TCP/DTLS/SCTP' were used there for this
purpose, but I could have missed one of the updates.

Regards,
_____________
Roman Shpount

v2.8.7 | Report a Bug | By Email