IETF Logo Mail Archive

Re: [Ice] I submitted and plan to present draft-thatcher-ice-remove-candidate in Berlin

Bernard Aboba <bernard.aboba@gmail.com> Tue, 12 July 2016 18:14 UTC

Return-Path: <bernard.aboba@gmail.com>
X-Original-To: ice@ietfa.amsl.com
Delivered-To: ice@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 92D4112D093 for <ice@ietfa.amsl.com>; Tue, 12 Jul 2016 11:14:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TTPG6G0TLruK for <ice@ietfa.amsl.com>; Tue, 12 Jul 2016 11:14:04 -0700 (PDT)
Received: from mail-vk0-x233.google.com (mail-vk0-x233.google.com [IPv6:2607:f8b0:400c:c05::233]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AE45612B016 for <ice@ietf.org>; Tue, 12 Jul 2016 11:14:03 -0700 (PDT)
Received: by mail-vk0-x233.google.com with SMTP id x130so33592110vkc.0 for <ice@ietf.org>; Tue, 12 Jul 2016 11:14:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=wgaB9Uf6cX+osnbKDbIFB0c2vIPt1YfkR0Et7LwqzRg=; b=k2lw8FTSOWzKICEuNZRzuh1NP9CYnFf9HUoeQOUMWNMXVGamyd56iLYo+k2Oc9qAY6 E90s3r3GA0Om9/jQ0fluJ+PmgmOb7mZ2WPExSP92J40ATkDuG1rQmjPyZsJL0bsAlsgu Wdb6XHuCx8v9Z89GADOJdihgLDSI788zvkAxosYxLutXj9x1Re+9AIJEP4l+K3eVqdCo 95fBTHpZBjd/LTN7yfTobtWFqkRKA5uCORc1nxERJFdbNHqiWIOXy1nktkalQNWfRpUR 17v7B/2o2lWGeKoaGtTpkJQR4zvg4Vw5QAc4UHr9HeOCTQgPszpi24f8BLWRfz3SGfJr f8gw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=wgaB9Uf6cX+osnbKDbIFB0c2vIPt1YfkR0Et7LwqzRg=; b=AQhaDym5siO/8AxXzrKa7Q5BBpKMbR7x2xwiBnyHQBF9VIuNkhTLpnGoew/sUv7BsZ diXnp73r1L+NWHPVj1btX3o/yyJZpH+ngz0PxQDmF+l9SpbKY9utzqdeUSoP/jKXob8v 8CXnQXUhiK4Nwn4+9gJbOwieEHa/nvy7elInVC/yymC7uOP6bghD23dQy6+6M35u4M2W 2IH6Gx9wFpYXLQdoCd5//w358Jm7Sr0K29MDt4dBcb1Iv47qKvYwcUyzj83wt8n8293r HqJz+pwmppqZQt8wIEylpiuWU/2E1Qa8WkoLPI6k/Rv7SjBptVIICwdPRU802lw9wLt9 Ls5g==
X-Gm-Message-State: ALyK8tKRho9mflov7eGm8bJ1pseJDr6ePqfIGnCqOTbcAd+JiwYOQQAaXJWDBXLGeqXWV0ZnsQ1dusNky6POeQ==
X-Received: by 10.31.9.65 with SMTP id 62mr1839210vkj.89.1468347242754; Tue, 12 Jul 2016 11:14:02 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.159.41.198 with HTTP; Tue, 12 Jul 2016 11:13:43 -0700 (PDT)
In-Reply-To: <CAJrXDUFRTXLLjGx8guqc8taNL4SYkfwQ-xFLegx-ke5c6L9edw@mail.gmail.com>
References: <CAJrXDUEQoBmjhkwX5AF9Oxny=PwJ0Y1a7UmPNdVRsA8b6AEF7g@mail.gmail.com> <CAOW+2ds_Jbr22+iMOSGDXYikG6ff9q1Tk4AjtYPGHtJmn-nk0A@mail.gmail.com> <CAJrXDUFRTXLLjGx8guqc8taNL4SYkfwQ-xFLegx-ke5c6L9edw@mail.gmail.com>
From: Bernard Aboba <bernard.aboba@gmail.com>
Date: Tue, 12 Jul 2016 11:13:43 -0700
Message-ID: <CAOW+2dtt5XQ3g1KZ4B6Ka=3Qpq8Rf7CGtozzP83g1-m0N_MaFQ@mail.gmail.com>
To: Peter Thatcher <pthatcher@google.com>
Content-Type: multipart/alternative; boundary="001a11440b64cfb8e90537743be6"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ice/gztZGF0iSzusvGDX2H4tqOWFcdI>
Cc: ice@ietf.org
Subject: Re: [Ice] I submitted and plan to present draft-thatcher-ice-remove-candidate in Berlin
X-BeenThere: ice@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Interactive Connectivity Establishment \(ICE\)" <ice.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ice>, <mailto:ice-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ice/>
List-Post: <mailto:ice@ietf.org>
List-Help: <mailto:ice-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ice>, <mailto:ice-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Jul 2016 18:14:05 -0000

Peter Thatcher said:

"​If the interface comes back after consent is lost (after many seconds),
then I think either an ICE restart or gathering new candidates (if
gathering isn't already complete) would be the right thing to do.  Do you
see a problem with that?"

[BA] What is in RFC 7675 seems ok.  But if a candidate is "removed" both
peers should have the same understanding of whether the same ICE
credentials can ever be used on the 5-tuple again.

Based on what is in RFC 7675, it appears that an immediate removal would
not automatically require new ICE credentials if the pair is subsequently
to be used.  However, if the receiving agent chose not to immediately
remove the pair and consent subsequently failed this would leave the
receiving agent believing that the pair was no longer usable without a
restart, while the sending side might believe it could be added back
without new ICE credentials. It is not clear to me whether the situation
would be different if the sending side revoked consent on the pair before
taking the interface down (e.g. whether consent revocation is equivalent to
consent loss in RFC 7675).



On Tue, Jul 12, 2016 at 10:14 AM, Peter Thatcher <pthatcher@google.com>
wrote:

> Thanks for the grammar/spelling fixes.  I'll update those with quickly
> with a new draft version.
>
> On Tue, Jul 12, 2016 at 9:39 AM, Bernard Aboba <bernard.aboba@gmail.com>
> wrote:
>
>> "Removal" and "Renomination" have both come up as implementation issues,
>> so these drafts seem useful to me.
>>
>> In the "removal" draft, I had questions about these paragraphs:
>>
>>    When a removal signal [is received], the Receiving Agent MUST NOT pair the Removed
>>    Candi[d]ates with any future candidates gathered by the Receiving Agent.
>>    The Receiving Agent MAY keep the existing candidate pairs that use
>>    the Removed Candidates and behave as though the Removed Candidates
>>    had not been removed for those candidate pairs.
>>
>>    Why would an Receiving Agent choose not to immediately remove
>>    existing candidate pairs?  Because the Removing Agent MAY choose to
>>    keep the Removed Candidate capable of receiving ICE checks and
>>    sending responses so that any ICE checks already sent by the
>>    Receiving Agent may continue to work briefly so that media can flow
>>    as quickly as possible, even if over a candidate pair that will soon
>>    be discarded.
>>
>> [BA] When an interface is "going down", having the Receiving Agent not immediately remove existing candidate pairs can avoid a media glitch.
>>
>> However there are consequences to not removing the pair immediately because when the interface goes down, consent checks will subsequently fail and RFC 7675 Section 5.1 indicates that the pair cannot be used with the same ICE credentials, even if the interface comes up again:
>>
>>    After consent is lost, the same ICE credentials MUST NOT be used on
>>    the affected 5-tuple again.  That means that a new session, or an ICE
>>    restart, is needed to obtain consent to send on the affected
>>    candidate pair.
>>
>> One way to deal with this would be for the removing party to revoke consent before bringing the interface down.  However, that would only work if consent revocation was not considered the same as "consent is lost" in the above paragraph from RFC 7675.
>>
>> ​If the interface comes back after consent is lost (after many seconds),
> then I think either an ICE restart or gathering new candidates (if
> gathering isn't already complete) would be the right thing to do.  Do you
> see a problem with that?
>
>
>>
>> On Tue, Jul 12, 2016 at 7:35 AM, Peter Thatcher <pthatcher@google.com>
>> wrote:
>>
>>> I submitted draft-thatcher-ice-remove-candidate and would like to speak
>>> about in my allotted time on the agenda when I will also be speaking about draft-thatcher-ice-network-cost
>>> and draft-thatcher-ice-renomination.
>>>
>>> It's a very simple draft. Basically it says you can "remove" candidates
>>> just like trickle-ice allows you to add candidates. You could probably
>>> read it in 3 minutes. Please do so:
>>>
>>> https://www.ietf.org/id/draft-thatcher-ice-remove-candidate-00.txt
>>>
>>> Thanks,
>>> Peter (Chair hat off)
>>>
>>> _______________________________________________
>>> Ice mailing list
>>> Ice@ietf.org
>>> https://www.ietf.org/mailman/listinfo/ice
>>>
>>>
>>
>

v2.23.0 | Report a Bug | By Email