IETF Logo Mail Archive

Re: [bfcpbis] Eric Rescorla's Discuss on draft-ietf-bfcpbis-rfc4583bis-26: (with DISCUSS and COMMENT)

Adam Roach <adam@nostrum.com> Thu, 25 October 2018 06:48 UTC

Return-Path: <adam@nostrum.com>
X-Original-To: bfcpbis@ietfa.amsl.com
Delivered-To: bfcpbis@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BBCBB12D4E6 for <bfcpbis@ietfa.amsl.com>; Wed, 24 Oct 2018 23:48:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.878
X-Spam-Level:
X-Spam-Status: No, score=-1.878 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, T_SPF_HELO_PERMERROR=0.01, T_SPF_PERMERROR=0.01, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ksmYPoquBVCi for <bfcpbis@ietfa.amsl.com>; Wed, 24 Oct 2018 23:48:52 -0700 (PDT)
Received: from nostrum.com (raven-v6.nostrum.com [IPv6:2001:470:d:1130::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B39F9130DD0 for <bfcpbis@ietf.org>; Wed, 24 Oct 2018 23:48:50 -0700 (PDT)
Received: from Svantevit.attlocal.net (99-152-146-228.lightspeed.dllstx.sbcglobal.net [99.152.146.228]) (authenticated bits=0) by nostrum.com (8.15.2/8.15.2) with ESMTPSA id w9P6mkhb067522 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO); Thu, 25 Oct 2018 01:48:47 -0500 (CDT) (envelope-from adam@nostrum.com)
X-Authentication-Warning: raven.nostrum.com: Host 99-152-146-228.lightspeed.dllstx.sbcglobal.net [99.152.146.228] claimed to be Svantevit.attlocal.net
To: Eric Rescorla <ekr@rtfm.com>, Roman Shpount <roman@telurix.com>
Cc: Mary Barnes <mary.ietf.barnes@gmail.com>, bfcpbis@ietf.org, IESG <iesg@ietf.org>, draft-ietf-bfcpbis-rfc4583bis@ietf.org, bfcpbis-chairs@ietf.org
References: <154040901414.6834.17243795717657341259.idtracker@ietfa.amsl.com> <CAD5OKxtDT=20hX880j1h365TBSLyg=RfqrBF8d9YNidNyjutkA@mail.gmail.com> <CABcZeBMgFJR1MfXi+TLMph6tJLNXLMxMRYv0zVTCdvdX7yjM3g@mail.gmail.com>
From: Adam Roach <adam@nostrum.com>
Message-ID: <efa86c2e-06ca-be68-7f4d-45a2a417c3cc@nostrum.com>
Date: Thu, 25 Oct 2018 01:48:41 -0500
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.13; rv:60.0) Gecko/20100101 Thunderbird/60.2.1
MIME-Version: 1.0
In-Reply-To: <CABcZeBMgFJR1MfXi+TLMph6tJLNXLMxMRYv0zVTCdvdX7yjM3g@mail.gmail.com>
Content-Type: multipart/alternative; boundary="------------99EEC28040AE6708AC754050"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/bfcpbis/Y_L_s7Mm5H9pPlG9f9Rmo088N3c>
Subject: Re: [bfcpbis] Eric Rescorla's Discuss on draft-ietf-bfcpbis-rfc4583bis-26: (with DISCUSS and COMMENT)
X-BeenThere: bfcpbis@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BFCPBIS working group discussion list <bfcpbis.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bfcpbis>, <mailto:bfcpbis-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bfcpbis/>
List-Post: <mailto:bfcpbis@ietf.org>
List-Help: <mailto:bfcpbis-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bfcpbis>, <mailto:bfcpbis-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Oct 2018 06:48:54 -0000

On 10/24/18 2:53 PM, Eric Rescorla wrote:
>
>
> On Wed, Oct 24, 2018 at 12:50 PM Roman Shpount <roman@telurix.com 
> <mailto:roman@telurix.com>> wrote:
>
>     Hi Eric,
>
>     Since I have helped with ICE related sections of this draft, I can
>     provide answers to some of your comments:
>
>     On Wed, Oct 24, 2018 at 3:23 PM Eric Rescorla <ekr@rtfm.com
>     <mailto:ekr@rtfm.com>> wrote:
>
>         S 9.
>         >      transport is used for the default candidate, then the
>         'm' line proto
>         >      value MUST be 'UDP/TLS/BFCP'.  If TCP transport is used
>         for the
>         >      default candidate, the 'm' line proto value MUST be
>         'TCP/DTLS/BFCP'.
>         >
>         >         Note: Usage of ICE with protocols other than
>         UDP/TLS/BFCP and
>         >         TCP/DTLS/BFCP is outside of scope for this
>         specification.
>
>         this is very different from any other use of ICE, and I'm not sure
>         it's interoperable, unless you require that only TCP or only UDP
>         candidates be offered (which you do not seem to). The reason
>         is that
>         with ICE you can flip between different candidates as part of the
>         negotiation. So what happens if I initially get a UDP
>         candidate and
>         then via aggressive nomination settle on TCP (or vice versa).
>         DTLS and
>         TLS aren't really interoperable in that way. It would be far
>         better to
>         do what WebRTC does and when you do ICE, always do DTLS even
>         if it's
>         over TCP.
>
>
>     When ICE is used, DTLS is always used exactly for the reasons you
>     mention.  End points only allowed to use 'UDP/TLS/BFCP', which is
>     DTLS over UDP, or 'TCP/DTLS/BFCP', which is DTLS over TCP. DTLS
>     over UDP is only named 'UDP/TLS/BFCP' instead of  'UDP/DTLS/BFCP'
>     for legacy interop reasons, since some implementations apparently
>     already added support for this.  Please note that naming of BFCP
>     over DTLS over UDP  as 'UDP/TLS/BFCP'  is similar to naming RTP
>     over DTLS over UDP as "UDP/RTP/TLS/SAVP".
>
>
> Ah, I missed this. But then I do wonder whether it's really useful to 
> have two proto versions here, rather than just UDP/TLS/BFCP. We didn't 
> find it helpful in JSEP....
>

The rationale here is that this approach -- matching the proto to the 
default candidate -- allows for compatibility with clients that do not 
do ICE. JSEP and WebRTC took an explicit decision to require ICE, and to 
fail with clients that do not implement it. As a consequence, there's a 
lot of simplifications of handling the proto field in WebRTC that are 
broadly inapplicable outside of that ecosystem.

/a

v2.30.2 | Report a Bug | By Email | System Status