IETF Logo Mail Archive

Re: [MMUSIC] Thoughts on draft-ietf-mmusic-dtls-sdp-10 semantics

Ted Hardie <ted.ietf@gmail.com> Thu, 03 March 2016 23:22 UTC

Return-Path: <ted.ietf@gmail.com>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 761191B2FC0 for <mmusic@ietfa.amsl.com>; Thu, 3 Mar 2016 15:22:01 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.399
X-Spam-Level:
X-Spam-Status: No, score=-1.399 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, J_CHICKENPOX_111=0.6, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Uoy6qGSazqwE for <mmusic@ietfa.amsl.com>; Thu, 3 Mar 2016 15:21:59 -0800 (PST)
Received: from mail-qk0-x22c.google.com (mail-qk0-x22c.google.com [IPv6:2607:f8b0:400d:c09::22c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5BE4F1B2FBC for <mmusic@ietf.org>; Thu, 3 Mar 2016 15:21:59 -0800 (PST)
Received: by mail-qk0-x22c.google.com with SMTP id x1so14894036qkc.1 for <mmusic@ietf.org>; Thu, 03 Mar 2016 15:21:59 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=dmb+hk54Jw8PZG44RYcPNmPsXiI63H9+KrrEU/L1OAI=; b=fbMqbKK9ESN3dPr3HOCxxTgEEGZYcJNTal5nLeirT8QQqwieW5/irnysSraUWtPkDg /YGJul8+MyLCft6Laulw3vw6dz0U0OXhkMltiocqgoEBh0LkQL1MeVHDzDvTo0R4pdbF iNxeqo/FkWAdsYfambmmH5eRixVBgv7Ue/4LSPHRaOgErMmvMdx0sCBwiCXzcU1o1E5Q 9xcnNx/OQIOp2bfVK67GTyYtimJfkgfOojm90QqvQrmdB7LciSn9pUMr/TNLhrRL/C0m QvFYpZ4EZCe4eDjM1c7aw+hraisCngBZvFCteDclOD5beQNic5yyO0St3kufN/5ph+/B RjdA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=dmb+hk54Jw8PZG44RYcPNmPsXiI63H9+KrrEU/L1OAI=; b=P8ia9r/dHAcT7QAV3FPnq3aFTibvgDJ4th6L8qogv3p8FiDY/X4Qjcd9MtZ6DbBZUF npcojkRoRl5d8y0GtNe0hXBSS2WxlUzy2C9ZzdwAI/HGHgQ6uu784JP//zwducCqdNuJ AwB5j0TGkIT2gUcl4K3kx7dkLZQ7jhWsO+FtEX/hvBonkByta5NrCe2tzarXVa+W0lAF RtyDGbj2PmSvdHI/daHah3YeQsNjIskEGy3v/mIovKXhy0XFSeOv7t/ZF42RXGqfshLn 28cF6PMM/6ZoYG0FsBaXnw4pVPNOrqRfqlsnobUEhBBkXKl8bnGSxfUn0SxJmsrbbJaZ VxlQ==
X-Gm-Message-State: AD7BkJL5/b2QgkJiiAZ302P9WyBN4G9IYFYbnn7Rwz3qPy0GIU/3uIrqehIS211/RVIbZadS6gQD0KZv5zTfrA==
X-Received: by 10.55.49.11 with SMTP id x11mr6475926qkx.86.1457047318531; Thu, 03 Mar 2016 15:21:58 -0800 (PST)
MIME-Version: 1.0
Received: by 10.55.6.13 with HTTP; Thu, 3 Mar 2016 15:21:39 -0800 (PST)
In-Reply-To: <CABcZeBNJ6jdL7SfLaatfr28X83dVOafpi=jrM6bSJ-qpmj4RuA@mail.gmail.com>
References: <CABcZeBNJ6jdL7SfLaatfr28X83dVOafpi=jrM6bSJ-qpmj4RuA@mail.gmail.com>
From: Ted Hardie <ted.ietf@gmail.com>
Date: Thu, 03 Mar 2016 15:21:39 -0800
Message-ID: <CA+9kkMB6+j8eT3u68PXA-OeoJ-puOiLKvzQQGMe0NRY09nGKsg@mail.gmail.com>
To: Eric Rescorla <ekr@rtfm.com>
Content-Type: multipart/alternative; boundary="001a11478078d794c4052d2d43c0"
Archived-At: <http://mailarchive.ietf.org/arch/msg/mmusic/3wW2D8zpLL3IpOD29pVe1FvHs6c>
Cc: mmusic WG <mmusic@ietf.org>
Subject: Re: [MMUSIC] Thoughts on draft-ietf-mmusic-dtls-sdp-10 semantics
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mmusic/>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Mar 2016 23:22:01 -0000

Howdy,

On Thu, Mar 3, 2016 at 3:05 PM, Eric Rescorla <ekr@rtfm.com> wrote:

> I’ve been going over draft-ietf-mmusic-dtls-sdp-10 and would like to
> suggest some changes.
>
> Here are my starting assumptions:
>
>
>    -
>
>    We do want the ability to do an ICE restart without a DTLS reconnect.
>    -
>
>    It’s not safe to do a DTLS reconnect without an ICE restart (and new
>    transport parameters) because you would need to demux the connections.
>    -
>
>    Although RFC 5763 says that ICE restart implies a DTLS reconnect,
>    that’s not something people actually do.
>    -
>
>    There are cases where people want to do a DTLS reconnect without
>    changing fingerprints.
>
>
Can you unpack what these cases are?  I'm a little worried with the
interaction with ICE, especially in the convergence case described in 6.7.1
of RFC 5763.  That already gives a case where the IP address associated
with a DTLS handshake can shift; in a reconnect, is this supported?


>
>    -
>
>    It needs to be safe to repeatedly apply the same description (e.g.,
>    setLocalDescription() idempotently) in WebRTC.
>
>
> Accordingly, I think we can get away with a something simpler:
>
>
>    -
>
>    Remove the requirement in RFC 5763 to DTLS reconnect on ICE restart.
>    -
>
>    A DTLS reconnect is required if *either*
>    -
>
>       The fingerprint changes
>
>
If it is not changing on reconnect, what causes it to change?  Someone
explicitly calling SetRemoteFingerprint?



>
>    -
>
>       A (TBD, see below) indicator indicator is in the SDP
>       -
>
>    Require that if a DTLS reconnect is done for any reason you also do an
>    ICE restart and it’s an error to have either of the two conditions above
>    without also changing the ICE credentials.
>
>
> I believe this meets all the actual use cases while discarding the legacy
> use cases that are in protocol documents but not actually implemented.
>
>
> Assuming you are comfortable with the above, I think the indicator we want
> is some sort of “connection-id” parameter, either as a standalone value or
> as a value which is unique in association with the fingerprint. This seems
> cleaner than having a “new” versus “reuse” token. The semantics would be
> that if you see a new identifier that means you need to form a new
> association but that multiple replays of the same identifier mean that you
> reuse the same association (i.e., do not DTLS reconnect).
>
> This resolves the idempotency concern that present with the existing
> proposal, and also makes backwards compatibility simpler; a change in
> either a=fingerprint or a=dtls-connection-id will trigger a new DTLS
> connection.
>
> What do people think of this?
>

Off-list because I don't want to rock a boat that's moving, but I don't
think this message motivated the change that well.


> -Ekr
>
>
> _______________________________________________
> mmusic mailing list
> mmusic@ietf.org
> https://www.ietf.org/mailman/listinfo/mmusic
>
>

v2.23.0 | Report a Bug | By Email