Implement Active TCP-ICE

[ashellunts]

No description provided.

[codecov]

Codecov Report

Base: 78.23% // Head: 77.13% // Decreases project coverage by -1.10% ⚠️

Coverage data is based on head (1542ccb) compared to base (c0be5d1).
Patch coverage: 35.48% of modified lines in pull request are covered.

❗ Current head 1542ccb differs from pull request most recent head ed64aab. Consider uploading reports for the commit ed64aab to get more accurate results

Additional details and impacted files

@@            Coverage Diff             @@
##           master     #394      +/-   ##
==========================================
- Coverage   78.23%   77.13%   -1.10%     
==========================================
  Files          36       36              
  Lines        4273     4348      +75     
==========================================
+ Hits         3343     3354      +11     
- Misses        723      779      +56     
- Partials      207      215       +8     

Flag	Coverage Δ
go	77.13% <35.48%> (-1.10%)	⬇️
wasm	?

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
agent_config.go	82.14% <ø> (ø)
selection.go	80.09% <0.00%> (-1.11%)	⬇️
agent.go	79.40% <17.02%> (-3.02%)	⬇️
candidate_base.go	86.84% <33.33%> (-1.00%)	⬇️
tcp_packet_conn.go	75.12% <40.00%> (-0.90%)	⬇️
gather.go	63.81% <47.45%> (-2.55%)	⬇️
candidate_host.go	93.47% <100.00%> (+0.62%)	⬆️

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report at Codecov.
📢 Do you have feedback about the report comment? Let us know in this issue.

[ashellunts]

@dgunay were you able to make a successful connection?

[Sean-Der]

I would store the tcpConnections inside the Active TCP candidate. Would love to avoid putting more state in the Agent itself

Does Chrome expose the ports it dialed on?

[ashellunts]

TCP connection is ready and some messages are sent over the connection. But after first messages a connection freezes.
Here are logs:

artur@hp:~/git/ice$ go test -v -run TestActiveTCP
=== RUN   TestActiveTCP
[::]:7686
ice INFO: 2021/11/06 15:30:13 Listening TCP on [::]:7686
ice DEBUG: 15:30:13.695553 gather.go:178: GetConn by ufrag: FEtegJZjVRZGzPra
ice INFO: 2021/11/06 15:30:13 Ignoring remote candidate with tcpType active: tcp4 host 192.168.1.205:0
ice DEBUG: 15:30:13.696273 agent.go:455: Started agent: isControlling? true, remoteUfrag: "FEtegJZjVRZGzPra", remotePwd: "ftOozEzvZGmnzadZAWssKPCcgjcSWMxe"
ice INFO: 2021/11/06 15:30:13 Setting new connection state: Checking
ice DEBUG: 15:30:13.697976 agent.go:832: count of local candidates 1
ice DEBUG: 15:30:13.698086 agent.go:655: artur, addPair: local tcp4 host 192.168.1.205:0, remote tcp4 host 192.168.1.205:7686
ice DEBUG: 15:30:13.698121 agent.go:657: artur, addressToConnect 192.168.1.205:7686
ice DEBUG: 15:30:13.698477 agent.go:455: Started agent: isControlling? false, remoteUfrag: "SmxZXyxixwugeuYO", remotePwd: "vuSCEihcZbhTAruaftQdOjGwwLTGjyTx"
ice INFO: 2021/11/06 15:30:13 Setting new connection state: Checking
ice DEBUG: 15:30:13.698633 tcp_mux.go:96: Accepted connection from: 192.168.1.205:48332 to 192.168.1.205:7686
ice WARNING: 2021/11/06 15:30:13 pingAllCandidates called with no candidate pairs. Connection is not possible yet.
ice DEBUG: 15:30:13.698976 agent.go:664: artur, socket connected, local 192.168.1.205:48332, remote 192.168.1.205:7686
ice INFO: 2021/11/06 15:30:13 AddConn: tcp 192.168.1.205:7686
ice DEBUG: 15:30:13.700550 tcp_mux.go:186: msg attr: USERNAME: 0x46457465674a5a6a56525a477a5072613a536d785a58797869787775676575594f
ice DEBUG: 15:30:13.700761 tcp_mux.go:186: msg attr: ICE-CONTROLLING: 0xfd3cd86a20f35b19
ice DEBUG: 15:30:13.700822 tcp_mux.go:186: msg attr: PRIORITY: 0x7edfffff
ice DEBUG: 15:30:13.700864 tcp_mux.go:186: msg attr: MESSAGE-INTEGRITY: 0xd2b0404f181edfd6b04dd6a9b88fbdcaef27269e
ice DEBUG: 15:30:13.700901 tcp_mux.go:186: msg attr: FINGERPRINT: 0x623cd098
ice DEBUG: 15:30:13.700942 tcp_mux.go:197: Ufrag: FEtegJZjVRZGzPra
ice INFO: 2021/11/06 15:30:13 AddConn: tcp 192.168.1.205:48332
ice DEBUG: 15:30:13.701497 agent.go:1134: adding a new peer-reflexive candidate: 192.168.1.205:48332 
ice DEBUG: 15:30:13.701601 agent.go:832: count of local candidates 1

May be connection works only in 1 direction yet?

[ashellunts]

@Sean-Der please take a look on new implementation.

[ashellunts]

I see that pair nomination is not performed.

[ashellunts]

Finally first working version (that goes to connected state).

[Sean-Der]

holy shit! amazing work @ashellunts this is so exciting :)

I should have some time later today. sorry about the delay. This is really great. Will make clients better, and really excited to see coverage for servers improve.

[ashellunts]

holy shit! amazing work @ashellunts this is so exciting :)

I should have some time later today. sorry about the delay. This is really great. Will make clients better, and really excited to see coverage for servers improve.

Thanks. 2 days debugging finally worked out :D

[ashellunts]

For now it works only if you have only 1 network interface 😭

[Sean-Der]

DisableActiveTCP

By default we should enable Active TCP

[Sean-Der]

@ashellunts This looks really good! If you can fix the linter and test failures I think we can merge this really soon :)

[Sean-Der]

Should this be deleted?

[dgunay]

@Sean-Der addressed some comments and linter errors. There are still a few concurrency bugs it looks like.

[ashellunts]

@dgunay Thank you so much for continuing the work!

[dgunay]

EDIT: nevermind, I've clearly forgotten how this PR works, it already initiates TCP connections - I'll keep digging

[dgunay]

Best I can tell for now is that none of the candidates are being nominated.

[stv0g]

I am excited to see that you picked up the PR @ashellunts

Let me know if I can support with testing, reviewing or something else :)

[ashellunts]

Thanks. I will appreciate if you can read PR changes and maybe notice something completely wrong.

Sometime ago I had the test passing. Now it doesn't work. And I am debugging to understand what is going on.

[stv0g]

Thanks. I will appreciate if you can read PR changes and maybe notice something completely wrong.

I will dig into the RFC a bit more into detail later.

Something which confused me a bit: Does an agent always pick the active or the passive role? I thought it would make more sense to active & passive candidates gathered by the same agent.

[ashellunts]

Not sure. But for me it looks logical to have either passive agent or active one.

[stv0g]

Not sure. But for me it looks logical to have either passive agent or active one.

I've had a look at RFC6544, which is mainly concerned about active/passive/so TCP candidates for ICE. Not about active/passive agents.
I think we do not need to have an extra activeTCP flag as there the agent is already configured NetworkTypes and CandidateTypes to limit type of candidates or transport protocols.

We might want to think about maybe adding TCPCandidateTypes option which with the following options:

• TCPCandidateTypeActive
• TCPCandidateTypePassive
• TCPCandidateTypeSimultaneousOpen

The reason why I am proposing this change is, that in my application I have might have situations in which each side of the P2P connection is/is-not dialable from the outside. So determine the role is not feasible beforehand and would require a complex role-conflict resolution (just like for Lite ICE agents).

Hence, I think its easier to generate all types of TCP candidates in the first place. And allow the user to limit those by the settings which I mentioned above.

[ashellunts]

Not sure. But for me it looks logical to have either passive agent or active one.

I've had a look at RFC6544, which is mainly concerned about active/passive/so TCP candidates for ICE. Not about active/passive agents. I think we do not need to have an extra activeTCP flag as there the agent is already configured NetworkTypes and CandidateTypes to limit type of candidates or transport protocols.

We might want to think about maybe adding TCPCandidateTypes option which with the following options:

• TCPCandidateTypeActive
• TCPCandidateTypePassive
• TCPCandidateTypeSimultaneousOpen

The reason why I am proposing this change is, that in my application I have might have situations in which each side of the P2P connection is/is-not dialable from the outside. So determine the role is not feasible beforehand and would require a complex role-conflict resolution (just like for Lite ICE agents).

Hence, I think its easier to generate all types of TCP candidates in the first place. And allow the user to limit those by the settings which I mentioned above.

Thank you for the feedback. Sounds good.

[ashellunts]

Created another PR instead of this one: #565