IETF Logo Mail Archive

Re: [Ice] Review of draft-holmberg-ice-pac-01

Justin Uberti <juberti@google.com> Tue, 16 April 2019 03:33 UTC

Return-Path: <juberti@google.com>
X-Original-To: ice@ietfa.amsl.com
Delivered-To: ice@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E99021200F9 for <ice@ietfa.amsl.com>; Mon, 15 Apr 2019 20:33:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -17.5
X-Spam-Level:
X-Spam-Status: No, score=-17.5 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, ENV_AND_HDR_SPF_MATCH=-0.5, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5, USER_IN_DEF_SPF_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id J4xkDjPusur7 for <ice@ietfa.amsl.com>; Mon, 15 Apr 2019 20:33:39 -0700 (PDT)
Received: from mail-it1-x12b.google.com (mail-it1-x12b.google.com [IPv6:2607:f8b0:4864:20::12b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1E6AC12004E for <ice@ietf.org>; Mon, 15 Apr 2019 20:33:39 -0700 (PDT)
Received: by mail-it1-x12b.google.com with SMTP id v8so1604007itf.0 for <ice@ietf.org>; Mon, 15 Apr 2019 20:33:39 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=TR/5y8dXtoG1c2SbBV545LflpzB4WPsHoLf3HdM4OrY=; b=rzbPRTItG4whwNvZC4HPeMabO05pKgs8ETihkJAY8E+HLW8vH7AGYXmrDTpqSbAxbE vgth8HLTYgk/Q1qx8fMGuviweo8Mv+3SZ09NWmdbG++vtcKHWWotqTk3nKl8+BiO0yDU p802HUot0KlSJVjSdqhcCS9DEaEUlLXKqeK2IbuuCdXtRMp7fygS+uNzTcREGvuEQCf+ iYClR4jRjGlVOhQ3Leg7Uv6UuM+gz7Y0Pd77lFjZmlAMWerWSBqvLJsCah/K3zq3ANd8 QowfXnUkid5795ESNdZ9IsIPXQKLgkwWdpZjxSRbeOWoQscEIsDrds3hOd0x+N6CHUTB QQcA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=TR/5y8dXtoG1c2SbBV545LflpzB4WPsHoLf3HdM4OrY=; b=mrmPrdvJzWzj4MxZikF16EZVw84oYEOa8yajHWaOADfWguZDq1uUHSjuEQniKk/+YG /9spN9n9vhIHMlRRBmqrog+h5I15STgfoYFdVA2vNn+PTDE7zru0O+S51uTJZ661oOYT UOF9AUEZyoHoBTMM4u1p1gfmLeWJy+c4BbgDAPxl9oodNtnw5uSDtxseAJj/c/omhznb ZeDmeKof+CC6kfsCjhNWwfn+dcIPQbZbanaPEpXNkRmszjpIa8UcCn35dD5KbYZHqcKa sAhUArFr+dUCVvjBTKFtRz1GYHIvVNxYWUgFPSDoA4rSJElm3YnR5VJFEXs94fSqmmyT CWFg==
X-Gm-Message-State: APjAAAV7qEG6k1zDi+pEbFWYessKSxmIMN0Ij1sbUi7CmpAHzXp0RkM2 r2+8F9JNY6kJvL2WNZf7+b7nOxOLg744eOI/N2xERw==
X-Google-Smtp-Source: APXvYqyGEA3o75qQlLJD1/d8J0SCyJsdYarT4c1UVjxsvnDDNu2OlSWF9j0M4YKbSrDCgRpsZqQ7vWtsR/wS2qL5b0U=
X-Received: by 2002:a24:a70f:: with SMTP id a15mr12757271itf.117.1555385617848; Mon, 15 Apr 2019 20:33:37 -0700 (PDT)
MIME-Version: 1.0
References: <CAOW+2dtVh1abzAF5HSQ728TBAmg=Mtz99piN-eTSdK5b+wVx7g@mail.gmail.com> <CAD5OKxtn8nZcMFsCTST-Wokqz2+QBJZqSfyp95yYR-fEfD61og@mail.gmail.com>
In-Reply-To: <CAD5OKxtn8nZcMFsCTST-Wokqz2+QBJZqSfyp95yYR-fEfD61og@mail.gmail.com>
From: Justin Uberti <juberti@google.com>
Date: Mon, 15 Apr 2019 20:33:25 -0700
Message-ID: <CAOJ7v-0RZr4-f9U3++b39ObFCmpirjYsf75azY86rQX-WfDRbA@mail.gmail.com>
To: Roman Shpount <roman@telurix.com>
Cc: Bernard Aboba <bernard.aboba@gmail.com>, Christer Holmberg <christer.holmberg@ericsson.com>, ICE WG <ice@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000003e12a705869d6f39"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ice/DviASkio7d0aAWBpY1X6AwuhHSI>
Subject: Re: [Ice] Review of draft-holmberg-ice-pac-01
X-BeenThere: ice@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Interactive Connectivity Establishment \(ICE\)" <ice.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ice>, <mailto:ice-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ice/>
List-Post: <mailto:ice@ietf.org>
List-Help: <mailto:ice-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ice>, <mailto:ice-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 16 Apr 2019 03:33:42 -0000

I don't think there's an easy way to use a newly discovered prflx
candidate, given the rules about changing the selected pair after ICE has
completed, but I think this implies that one shouldn't be too hasty to
declare ICE completion either.

Since some implementations may malfunction if they don't get a
USE-CANDIDATE quickly, I am not sure if we can wait the full STUN timeout
interval, but perhaps a somewhat shorter delay (e.g. a few seconds) could
be recommended before sending USE-CANDIDATE.

On Mon, Apr 8, 2019 at 10:55 AM Roman Shpount <roman@telurix.com> wrote:

> Bernard,
>
> The big issue here is when ICE agent can release candidates. Normally,
> when ICE nomination completes, unused ICE candidates, such as unused local
> interfaces or TURN candidates are released after a short (3 second)
> timeout. Because of this, running new ICE connectivity checks without ICE
> re-start (which means new ufrag and pwd, signaling exchange and allowing
> remote to gather new candidates) is likely not going to succeed. For
> instance, one party can move from IPv4 to IPv6 network, but the other party
> would already release its lPv6 candidate, which will cause all connectivity
> checks to fail.  Also, peer reflexive candidates are not gathered after ICE
> nomination is complete. Changing this will not be a backwards compatible
> change. This is completely different from the use case discussed in ice-pac
> draft, which deals with ICE nomination failing before peer reflexive
> candidates are discovered. All that ice-pac draft does is specifying a
> delay for ICE nomination completion in the absence of remote candidates,
> not collecting remote candidates after nomination is complete.
>
> Regards,
> _____________
> Roman Shpount
>
>
> On Mon, Apr 8, 2019 at 1:28 PM Bernard Aboba <bernard.aboba@gmail.com>
> wrote:
>
>> A question has arisen recently about the behavior with respect to peer
>> reflexive candidates discovered *after* ICE completion:
>> https://github.com/w3c/webrtc-nv-use-cases/issues/10
>>
>> draft-holmberg-ice-pac doesn't relate to that question, but I'm wondering
>> whether we might also see significant differences in implementation
>> behavior there as well. RFC 8445 appears to require an ICE restart to be
>> able to use a newly discovered peer reflexive candidate after ICE
>> completion because it represents a change in the destination, but I'm
>> wondering if there are implementations that enable a peer reflexive
>> candidate to be used anyway.
>>
>> Christer Holmberg said:
>>
>> "Hi,
>>
>> Doing an ICE restart means you have to collect and exchange candidates again. Of course one can do that once ICE failure has been declared, and nothing prevents one from doing an ICE restart after that if one thinks the result will be different. But, the focus of the draft is not to declare ICE failure while working candidates may still arrive.
>>
>> Having said that, one should of course not wait forever for the peer reflexive candidates. The draft will not mandate a specific time value, but there probably will be a little more text about things to take into consideration when determining how long to wait.
>>
>> Regards,
>>
>>
>> Christer"
>> _______________________________________________
>> Ice mailing list
>> Ice@ietf.org
>> https://www.ietf.org/mailman/listinfo/ice
>>
> _______________________________________________
> Ice mailing list
> Ice@ietf.org
> https://www.ietf.org/mailman/listinfo/ice
>

v2.23.0 | Report a Bug | By Email