IETF Logo Mail Archive

Re: [Wish] Publication has been requested for draft-ietf-wish-whip-08

Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com> Tue, 27 June 2023 14:05 UTC

Return-Path: <sergio.garcia.murillo@gmail.com>
X-Original-To: wish@ietfa.amsl.com
Delivered-To: wish@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E92ECC16951B; Tue, 27 Jun 2023 07:05:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.094
X-Spam-Level:
X-Spam-Status: No, score=-7.094 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0gZBUHpbLkic; Tue, 27 Jun 2023 07:05:48 -0700 (PDT)
Received: from mail-ej1-x633.google.com (mail-ej1-x633.google.com [IPv6:2a00:1450:4864:20::633]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 40877C169513; Tue, 27 Jun 2023 07:05:48 -0700 (PDT)
Received: by mail-ej1-x633.google.com with SMTP id a640c23a62f3a-991fe70f21bso150209466b.3; Tue, 27 Jun 2023 07:05:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20221208; t=1687874746; x=1690466746; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=Lbo0o0qaK8WEQPByZLmlWcE21jsirPk7m3qa6/AngHc=; b=o1VCK54AemDJQd12FKOlP+y5bgKZYOvXZY2CT3G8DKzYCUrMneB00j3LxLWX4N5wLt A3Ym+SEO7KD4NP2J2ViTW/oFxcWN6Szx9bLDebXzuaSXUdxNfJzxbDdzEhDnVZU5W6yk sZZuFAy8Ctuxbldqv1rr4ye0M7Zx/7PUH5xEkVQtz3OheWuEtPmXtqExLaipyRlBVSjP AHiuRrnTmCMiG1eUzyhfuNqf3QUzl/OF+NKMQNyWP5jWCxEV+82Ry22mq7lYOku/Pwlz LT9bGlah5+k/8Dv1sWvWtPhb13Zb9BFUzRAXZ71BpaWMtBq0pg+WnaJG98bXRqtpA3XO m/mg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1687874746; x=1690466746; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=Lbo0o0qaK8WEQPByZLmlWcE21jsirPk7m3qa6/AngHc=; b=JyqVDpTPGd4aqEk5JbUbt/BvThQXuUxbysHWRDOovkpGc8lTFRDzDt3vgtSneLhJN7 +e68To3TVFGSxaKGwIE1jp34s8Hrg0y/ghiaA5NboaGhnvVoS9PKXbDoi5PO77WZkzvC iwczc6URj8mIvAWo2cPyaVKgPOrBX/hT/4Eep2RPGcuDuDbk9BrHYb9w6eDG5ZUrC0US ogly9HHIncCJXLfGwt6cN27+noL8auBPfgiISlgg9VqjxFVIQ0DWCDf0XVBl8rbhD07R S46cW0vxLQE5ZnFZJckCSL62nxoPwUWm0UdPKWd9g7RTJV39k+jgvZA2WB5aoULI2s30 +p6Q==
X-Gm-Message-State: AC+VfDzZ0760DwVGJ6FkRLKdDyz2XgCtnUN7KwAQYVE0P4sTBKN4xzhR toMJl2776C1mYppmDxwQfxsV/bjaScO2TqI0wDQ=
X-Google-Smtp-Source: ACHHUZ6JS7TlCe0JFsImrq1Kf+/bWJYwFSBhe1Ae4Emd/IQH3nuyfPzZviwEHQcAIYDyIRnASDJh531CU1thsTfkRAE=
X-Received: by 2002:a17:907:8a1a:b0:991:7874:ef71 with SMTP id sc26-20020a1709078a1a00b009917874ef71mr4804963ejc.44.1687874745553; Tue, 27 Jun 2023 07:05:45 -0700 (PDT)
MIME-Version: 1.0
References: <168254249812.28876.14989555994736804883@ietfa.amsl.com> <CAL0qLwZ=e=1g7q6An5yFR=yE=ZyMLJWUX=nmL5WqUiTjxSZEwA@mail.gmail.com> <CA+ag07bqrE3tQV0LWrZ9V6QZzG+oxzFe7YWriixfr+tzev69-w@mail.gmail.com> <CAL0qLwY=_EKOLqCGS9D5DpnHkpRsWcAWV-nHp19iVK-umJszEg@mail.gmail.com>
In-Reply-To: <CAL0qLwY=_EKOLqCGS9D5DpnHkpRsWcAWV-nHp19iVK-umJszEg@mail.gmail.com>
From: Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com>
Date: Tue, 27 Jun 2023 16:05:34 +0200
Message-ID: <CA+ag07adbHWpchi3W=pFxVv1xN5xkcNgkr2HVQYc3cEYP-3ExA@mail.gmail.com>
To: "Murray S. Kucherawy" <superuser@gmail.com>
Cc: wish@ietf.org, nils.ohlmeier@8x8.com, wish-chairs@ietf.org
Content-Type: multipart/alternative; boundary="000000000000a2570c05ff1cf62c"
Archived-At: <https://mailarchive.ietf.org/arch/msg/wish/OpWDQFoHBms-1eHWZ4LkfbHpI0M>
Subject: Re: [Wish] Publication has been requested for draft-ietf-wish-whip-08
X-BeenThere: wish@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: WebRTC Ingest Signaling over HTTPS <wish.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/wish>, <mailto:wish-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/wish/>
List-Post: <mailto:wish@ietf.org>
List-Help: <mailto:wish-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/wish>, <mailto:wish-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 27 Jun 2023 14:05:53 -0000

Hi Murray.

I have create issues with your feedback on the github tracker and generate
changes for most of them:

https://github.com/wish-wg/webrtc-http-ingest-protocol/issues?q=is%3Aissue+is%3Aclosed+label%3Aad-review

On Thu, Jun 8, 2023 at 4:28 PM Murray S. Kucherawy <superuser@gmail.com>
wrote:

> Sorry I missed this earlier.
>
> On Thu, May 11, 2023 at 1:50 AM Sergio Garcia Murillo <
> sergio.garcia.murillo@gmail.com> wrote:
>
>>
>>
>>
>>> * There are lots of SHOULDs that could benefit from some explanation of
>>> when one might not do what the SHOULD says (or do what the SHOULD NOT
>>> says).  Since you're giving implementers a choice here, some advice about
>>> that choice would be good to include.  Or maybe some of these SHOULDs
>>> really ought to be MUSTs?  Same goes for RECOMMENDED.  For instance in
>>> Section 4, you have "The SDP offer SHOULD use the "sendonly"
>>> attribute.  Why?  Or why would I not?  What if I don't?
>>>
>>
>> In WHIP we are reusing the WebRTC/SDP/RTP specifications, and defining
>> how those specs are used to establish a streaming session. As SDP O/A is a
>> negotiation between the client and the server, there are some options that
>> while there are not the correct ones according to our intended usage (like
>> sending "sendonly" as direction on the SDP offer), they are not "illegal"
>> in the WebRTC/SDP specs. For example, if you build a WHIP client on a
>> browser, the default direction on the offer will be "sndrcv", and the
>> server should be ready to accept it. The MUST is on the server side that
>> has to answer with a "recvonly" direction always. So in this particular
>> case, the direction sent by the client is a bit irrelevant, but the proper
>> value semantically is "sendonly", that's why it is a SHOULD and not a MUST.
>>
>
> OK, I think you might consider adding text to this effect.  If you're
> going to make it a normative almost-requirement, it's good to explain to
> implementers why, and/or what happens if they don't.
>

I have been reviewing the recommended language usage and added further
clarifications on the reason of the recommendation on many of them:

https://github.com/wish-wg/webrtc-http-ingest-protocol/commit/c499dbab5ad5ea651c65a818d7e303c314a4e048



>
>> * This is a pretty thin Security Considerations section.  Is that really
>>> all there is?  Shouldn't we at least say something like "As this protocol
>>> is built entirely atop SDP and (things), the security considerations of
>>> those protocols apply here as well."?  It's pretty unusual to claim
>>> (expressly or by omission) that a new protocol has absolutely no security
>>> concerns.
>>>
>>
>> Definitely the section would require a rewrite, however the intent would
>> be the same. We are "just" specifying the usage of well known protocols
>> (webrtc, SDP, https,.. ) so we are not introducing any new attack surface
>> that was not already covered in those. The only point that could be new to
>> this protocol is explaining the security of the rest api calls with the
>> bearer token, any suggestion on how this could be rewritten?
>>
>
> I think the suggestion I made would suffice: At a minimum, be explicit
> that you're importing the security consideration of the layer below.
> Adding some text about the security issue you just identified would also be
> helpful.
>

This was perfect timing as  Sandro Gauci made a presentation about the WHIP
surface attack  and security concerns during the last CommCon UK conference
last week.

I have added his feedback to the security section and also added more
details of the imported security considerations from the lower layers:

https://github.com/wish-wg/webrtc-http-ingest-protocol/commit/6196413f6d12798c9ee6557ce3a2dcfa0ebef16a#diff-6ca9ae63875a605dbaf6d8e45c08b5945951d62135ae0661065b7fe9ebb04d84R405




>
>>
>>> * Sections 6.3 and 6.4 confuse me, though this is possibly just my
>>> inexperience with URN namespaces talking.  It looks like you're creating a
>>> registry for IANA to manage, but doing it completely outside of the pattern
>>> RFC 8126 describes.  Given the reference to RFC 3553, I'm guessing this is
>>> somewhat normal, though I wonder why RFC 2434 wasn't used.  Is that all
>>> correct?
>>>
>>
>> I don't have much knowledge about the urn ietf namespace, but the ones on
>> the RFC 2434 don't seem appropriate to me and the only one that seems to be
>> active at IANA are the "urn:ietf:params:" namespaces specified in rfc3553:
>> https://www.iana.org/assignments/params/params.xhtml#urn-subnamespaces
>>
>> I used the SCIM registry as an example when writing the WHIP registry ,
>> but it is also used by the rtp header extension registry. Is there anyone
>> that we could ask to confirm if this is ok?
>>
>
> Let me ask a couple of people and get back to you.
>
>
This is the only pending topic from your review, I will comment on the
email from Barry.

Best regards
Sergio

v2.46.0 | Report a Bug | By Email | System Status