IETF Logo Mail Archive

Re: [tram] SSODA in TURN-bis

Justin Uberti <juberti@google.com> Thu, 08 January 2015 04:02 UTC

Return-Path: <juberti@google.com>
X-Original-To: tram@ietfa.amsl.com
Delivered-To: tram@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3B1E21A8830 for <tram@ietfa.amsl.com>; Wed, 7 Jan 2015 20:02:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.387
X-Spam-Level:
X-Spam-Status: No, score=-1.387 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, NORMAL_HTTP_TO_IP=0.001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id F0tIh5E11V0S for <tram@ietfa.amsl.com>; Wed, 7 Jan 2015 20:02:29 -0800 (PST)
Received: from mail-vc0-x22a.google.com (mail-vc0-x22a.google.com [IPv6:2607:f8b0:400c:c03::22a]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 004BB1A0404 for <tram@ietf.org>; Wed, 7 Jan 2015 20:02:28 -0800 (PST)
Received: by mail-vc0-f170.google.com with SMTP id hy4so391707vcb.1 for <tram@ietf.org>; Wed, 07 Jan 2015 20:02:28 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; bh=lJFmNjIXyhtdzG/YmgVG9H5WeKg/+O6EHaFCuyVElxQ=; b=fCufRvn/T6IlbFuMoAkqTm+087VQLDQYuNgeFsDyjkYw3m2iLr/T8tyWKo4JzR9xYa VB+INNpbCMvYe3iA3kaIO65PvG+NLK2mRpf2OOrdJooLaEqV0XyCEYBkP1ZNiG4EFOSZ wymWU/yIW4xye4fmZWbN1s9RvcCKYEckp3kR451VS9rIoCSInNzmd2boZJODusTOG6H1 aAvrBoyinLlK0Z7yeJB3afVothO04WVwAkLY7IrT89tiKBrMigKOCXsdUjqdACDcsVEh l1wb60qQfqLPxKvHMEwRkxc6or6NzDLLDKivLwG7UclPET4YglBHVyHDSI1YD/op6FFA Mk/A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-type; bh=lJFmNjIXyhtdzG/YmgVG9H5WeKg/+O6EHaFCuyVElxQ=; b=Y35IjejvFb1N709ADB4/yQ5WGzublDtYxHrbqTqzmQmonTC2lyerdwjhBLxtTVewi7 Bvo0pnG8zxNX6Pk11XYD8j0MgGEsuquXV2Gpj1nqy6GrI5QPHTCJnx/xJdj0j4o+th6G hyyTjyQz1P1IKWfh7qVZDDiotz/KGPKFZj7ART8T4WTZUjqNs3CRbPELA/FCGg/pTzEe sr1VFWTq7/J9aI0HS6kMAEU0/uQTDsT80nMqElS9MBLTbdsbw4DHurMs9AnzAXoq0nwx tDVDMj8z1cUc5HxGm+Q1PT2/EXFXbh1W6+F/krjgHHNTazo9zN38Roz+EWHovhnxbQwl PEaQ==
X-Gm-Message-State: ALoCoQkAg9RlHou2uutdFZc2mwqcdJv92v6TIwHPcuzcyEtl70osQJq3kDqeYx6SSHnJer6yDJ3v
X-Received: by 10.52.97.9 with SMTP id dw9mr4655531vdb.4.1420689747882; Wed, 07 Jan 2015 20:02:27 -0800 (PST)
MIME-Version: 1.0
Received: by 10.52.111.232 with HTTP; Wed, 7 Jan 2015 20:02:07 -0800 (PST)
In-Reply-To: <913383AAA69FF945B8F946018B75898A35527E46@xmb-rcd-x10.cisco.com>
References: <913383AAA69FF945B8F946018B75898A35527E46@xmb-rcd-x10.cisco.com>
From: Justin Uberti <juberti@google.com>
Date: Wed, 07 Jan 2015 20:02:07 -0800
Message-ID: <CAOJ7v-2RVPm=7eWaw05Um6kysbp=1Ch5KQ_me4Q4XXyE4jaTkA@mail.gmail.com>
To: "Tirumaleswar Reddy (tireddy)" <tireddy@cisco.com>
Content-Type: multipart/alternative; boundary="20cf307f3186c25b24050c1c1b54"
Archived-At: http://mailarchive.ietf.org/arch/msg/tram/TvQYyKKM_s_SmMILjYmAAbJioPQ
Cc: "tram@ietf.org" <tram@ietf.org>
Subject: Re: [tram] SSODA in TURN-bis
X-BeenThere: tram@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." <tram.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tram>, <mailto:tram-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tram/>
List-Post: <mailto:tram@ietf.org>
List-Help: <mailto:tram-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tram>, <mailto:tram-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Jan 2015 04:02:31 -0000

I promised I would write up a summary of the current mechanism, and what we
could do instead, so here goes:

The currently documented mechanism is to send two R-A-F attributes in the
request, and get back either a single address (from legacy servers), v4 +
v6 addresses (from new servers), a single address + a 0.0.0.0/:: (for new
servers that only support one address family), or an error-code (to
indicate complete failure).

At the time, there were 2 concerns listed, namely:
1) sending multiple R-A-Fs is undefined behavior; old (6156) servers may
fail the request completely, or do other weird things.
2) using 0.0.0.0/:: to indicate partial success is somewhat unclean;
specifically, detailed error information cannot be included.

I also thought of a 3rd problem:
3) an old(5766) server may fail the request completely, due to the fact
that R-A-F is comprehension-required. Thus an extra roundtrip may be needed
in this case, negating one of the benefits of SSODA.

I think the ideal solution to #1/#3 is to add a new OPTIONAL-ADDRESS-FAMILY
attribute, identical to R-A-F but comprehension-optional, where multiple
values are explicitly supported. Old servers can safely ignore this and
will return IPv4 (solving #3), while new servers can process this to return
multiple XOR-RELAYED-ADDRESSes in the response.
#2 is not a serious issue, but it could easily be solved by defining a new
ADDRESS-ERROR-CODE as follows:

      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
      |  Address Family                |  Rsvd  |Class|     Number    |
      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
      |      Reason Phrase (variable)                                ..
      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+


Then a server could return a normal IPv4 address, but a error code for
IPv6 with either 440 (unsupported address family) or 508 (insufficient
capacity) or some other TBD error.


I advocate we do the OPTIONAL-ADDRESS-FAMILY attribute as it is simple
and prevents potential interoperability problems with old servers. I
could go either way on ADDRESS-ERROR-CODE.





On Wed, Jan 7, 2015 at 6:02 PM, Tirumaleswar Reddy (tireddy) <
tireddy@cisco.com> wrote:

>  Hi all,
>
>
>
> We are working on incorporating RFC6156 and SSODA into TURN-bis. During
> IETF-91 meeting there was discussion if the technique proposed in
> https://tools.ietf.org/html/draft-martinsen-tram-ssoda-01 would break
> existing TURN server implementations.  Pal had mentioned testing with four
> implementations and did not face any problem.
>
>
>
> Please let us know if there are any concerns with the existing proposal of
> conveying two REQUESTED-ADDRESS-FAMILY attributes with different attribute
> values in Allocate request ?
>
>
>
> Cheers,
>
> -Tiru
>
> _______________________________________________
> tram mailing list
> tram@ietf.org
> https://www.ietf.org/mailman/listinfo/tram
>
>

v2.23.0 | Report a Bug | By Email