Re: [MMUSIC] SDP connection attribute optional [was: DTLS-SDP: TLS support added]
Christer Holmberg <christer.holmberg@ericsson.com> Mon, 10 April 2017 19:40 UTC
Return-Path: <christer.holmberg@ericsson.com>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7E0B0127241; Mon, 10 Apr 2017 12:40:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.22
X-Spam-Level:
X-Spam-Status: No, score=-4.22 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id q7uzHWebEKyw; Mon, 10 Apr 2017 12:40:25 -0700 (PDT)
Received: from sesbmg22.ericsson.net (sesbmg22.ericsson.net [193.180.251.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 35F86129AB6; Mon, 10 Apr 2017 12:40:24 -0700 (PDT)
X-AuditID: c1b4fb30-ea83298000006667-a0-58ebdfa648b0
Received: from ESESSHC002.ericsson.se (Unknown_Domain [153.88.183.24]) by (Symantec Mail Security) with SMTP id 2B.29.26215.6AFDBE85; Mon, 10 Apr 2017 21:40:22 +0200 (CEST)
Received: from ESESSMB102.ericsson.se ([169.254.2.218]) by ESESSHC002.ericsson.se ([153.88.183.24]) with mapi id 14.03.0339.000; Mon, 10 Apr 2017 21:40:20 +0200
From: Christer Holmberg <christer.holmberg@ericsson.com>
To: Christer Holmberg <christer.holmberg@ericsson.com>, Roman Shpount <roman@telurix.com>
CC: "mmusic-chairs@ietf.org" <mmusic-chairs@ietf.org>, "mmusic (E-mail)" <mmusic@ietf.org>, Ben Campbell <ben@nostrum.com>
Thread-Topic: [MMUSIC] SDP connection attribute optional [was: DTLS-SDP: TLS support added]
Thread-Index: AdKyNUrA9tbRCyqiRcKnD0Le75fq9gAATjfw///QToD//8rxoP//k0Sg
Date: Mon, 10 Apr 2017 19:40:53 +0000
Message-ID: <7594FB04B1934943A5C02806D1A2204B4CB5E2AA@ESESSMB102.ericsson.se>
References: <7594FB04B1934943A5C02806D1A2204B4CB5E1CC@ESESSMB102.ericsson.se> <7594FB04B1934943A5C02806D1A2204B4CB5E219@ESESSMB102.ericsson.se> <CAD5OKxvT79-42J4EkEkriZTuRzfVN96GF7PEhbBP_3XwsJhJNw@mail.gmail.com> <7594FB04B1934943A5C02806D1A2204B4CB5E275@ESESSMB102.ericsson.se>
In-Reply-To: <7594FB04B1934943A5C02806D1A2204B4CB5E275@ESESSMB102.ericsson.se>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [153.88.183.150]
Content-Type: multipart/alternative; boundary="_000_7594FB04B1934943A5C02806D1A2204B4CB5E2AAESESSMB102erics_"
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFlrIIsWRmVeSWpSXmKPExsUyM2K7hO6y+68jDB62qFrM7zzNbnF+53om i6nLH7NYzLgwldmBxWPJkp9MHrN2PmHxuDWlIIA5issmJTUnsyy1SN8ugSvj2boljAWz/jJW 7Ht/mqWB8cQ3xi5GDg4JAROJ2Qciuhi5OIQE1jNK9HxYwAjhLGGUuLHzA1gRm4CFRPc/7S5G Tg4RgWiJDx8WMIHYzAI1Eu+vTWUEsYUFYiQ6lj9khqiJldg7fzELhO0msW3RFrB6FgFViZVd J9lAbF4BX4klR6YyQ+yawyTRO/EVWDOngJ/EroMbwYoYBcQkvp9aA7VMXOLWk/lgtoSAgMSS PeeZIWxRiZeP/7FC2EoSK7ZfAruZWSBf4sHjIohdghInZz5hmcAoMgvJpFkIVbOQVEGENSXW 79KHqFaUmNL9kB3C1pBonTOXHVl8ASP7KkbR4tTipNx0IyO91KLM5OLi/Dy9vNSSTYzAiDu4 5bfBDsaXzx0PMQpwMCrx8D7ofx0hxJpYVlyZe4hRgoNZSYRX7xBQiDclsbIqtSg/vqg0J7X4 EKM0B4uSOK/jvgsRQgLpiSWp2ampBalFMFkmDk6pBsbFtjsnFJxedbV1sUiM07M6c/vzi2y0 Ly2s94t/vCzEqK4pNUBmK9Os5Z+SLpx6kPXhvNEp7WPX+abxHd2r4HekdZrfydBDKSUiPnKs KzvsSya/N1lmsGxL2/dzv/bvkjt96JduUW3/sfPdKtyNh7ewfW9stLAUCWst7n8lPc1amaH8 /IpfExiVWIozEg21mIuKEwGvPWDjtAIAAA==
Archived-At: <https://mailarchive.ietf.org/arch/msg/mmusic/Ojob-RlQOQR5VGc0FJ5nq4C7xjg>
Subject: Re: [MMUSIC] SDP connection attribute optional [was: DTLS-SDP: TLS support added]
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mmusic/>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Apr 2017 19:40:27 -0000
I suggest to add something like the following, to make sure it’s clear: “An offerer and answerer MUST use the SDP 'connection' attribute even if it is known that both support the SDP 'tls-id' attribute. NOTE: As defined in [RFC4145], if the SDP 'connection' attribute is not explicitly present, the implicit default value is 'new'.” Regards, Christer From: mmusic [mailto:mmusic-bounces@ietf.org] On Behalf Of Christer Holmberg Sent: 10 April 2017 22:32 To: Roman Shpount <roman@telurix.com> Cc: mmusic-chairs@ietf.org; mmusic (E-mail) <mmusic@ietf.org>; Ben Campbell <ben@nostrum.com> Subject: Re: [MMUSIC] SDP connection attribute optional [was: DTLS-SDP: TLS support added] Hi, >A think for all the normal cases m=connection attribute must be specified when >TLS is used. There is no way to know if remote party supports tls-id when offer >is sent, so if m=connection is not specified, then it is unclear how the offer is >going to be processed. I was thinking more about subsequent offers and answers, when it is known whether both endpoints support tls-id. But, I am fine to keep using the connection attribute also in that case, together with tls-id. So, if the connection attribute is not present, is shall be interpreted as ‘new’, according to RFC 4145. Regards, Christer On Mon, Apr 10, 2017 at 3:10 PM, Christer Holmberg <christer.holmberg@ericsson.com<mailto:christer.holmberg@ericsson.com>> wrote: And XXX stands for section 5.1 :) From: Christer Holmberg Sent: 10 April 2017 22:10 To: Christer Holmberg <christer.holmberg@ericsson.com<mailto:christer.holmberg@ericsson.com>>; mmusic (E-mail) <mmusic@ietf.org<mailto:mmusic@ietf.org>> Cc: mmusic-chairs@ietf.org<mailto:mmusic-chairs@ietf.org>; Ben Campbell <ben@nostrum.com<mailto:ben@nostrum.com>> Subject: SDP connection attribute optional [was: DTLS-SDP: TLS support added] Hi, Section XXX of RFC 4145 says: “When an offerer generates an 'm' line that uses TCP, it SHOULD provide a connection attribute for the 'm' line unless the application using the 'm' line has other means to deal with connection reestablishment.” Now, if both endpoints support the ‘tls-id’ attribute, that would be “other means”. However, section of RFC 4145 says: “The default value of the connection attribute in both offers and answers is 'new'.” So, I think we need to say something. Either: 1) If both endpoints support tls-id, they don’t need to care about the connection attribute (or the default value in case the attribute is not present); OR 2) We mandate that the connection attribute is present, with an ‘existing’ value, whenever an existing connection is to be maintained. Option 2) seems most safe, i.e., we continue using the ‘connection’ attribute and its semantics even if both endpoints support the ‘tls-id’ attribute. Comments? Regards, Christer From: mmusic [mailto:mmusic-bounces@ietf.org] On Behalf Of Christer Holmberg Sent: 09 April 2017 10:15 To: mmusic (E-mail) <mmusic@ietf.org<mailto:mmusic@ietf.org>> Cc: mmusic-chairs@ietf.org<mailto:mmusic-chairs@ietf.org>; Ben Campbell <ben@nostrum.com<mailto:ben@nostrum.com>> Subject: [MMUSIC] DTLS-SDP: TLS support added Hi, Based on the decision in Chicago to allow usage of the SDP ‘dtls-id’ attribute also for TLS connections, I have created a pull request: https://github.com/cdh4u/draft-dtls-sdp/pull/26 Note that the name of the attribute has now been changed to ‘tls-id’. The approach I’ve taken is: rather than talking about both DTLS and TLS throughout the document, I’ve basically added a section describing the TLS-specific considerations – mainly regarding the interaction with the SDP ‘connection’ attribute. Now, I think we do need some text on WHY we also cover TLS connections since, as far as creating new connections is concerned, the ‘connection’ attribute can be used. We know that it would be needed for draft-thomson-avtcore-sdp-uks (https://datatracker.ietf.org/doc/draft-thomson-avtcore-sdp-uks/). But, AFAIK that work has not been adopted yet, so I don’t think we can use it as justification at this point? Note that this pull request does NOT include any of the changes to be done based on the gen-art/sec-dir reviews. I have updated the 4572-update reference, though. Regards, Christer _______________________________________________ mmusic mailing list mmusic@ietf.org<mailto:mmusic@ietf.org> https://www.ietf.org/mailman/listinfo/mmusic
- Re: [MMUSIC] SDP connection attribute optional [w… Roman Shpount
- Re: [MMUSIC] SDP connection attribute optional [w… Christer Holmberg
- Re: [MMUSIC] SDP connection attribute optional [w… Christer Holmberg
- Re: [MMUSIC] SDP connection attribute optional [w… Roman Shpount
- Re: [MMUSIC] SDP connection attribute optional [w… Christer Holmberg
- [MMUSIC] SDP connection attribute optional [was: … Christer Holmberg