Re: [rtcweb] Unsolicited DTLS Handshake

Justin Uberti <juberti@google.com> Thu, 04 December 2014 05:47 UTC

Return-Path: <juberti@google.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 286DA1A88C3 for <rtcweb@ietfa.amsl.com>; Wed, 3 Dec 2014 21:47:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.788
X-Spam-Level:
X-Spam-Status: No, score=-0.788 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, J_CHICKENPOX_111=0.6, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NrUgtGLVXJpb for <rtcweb@ietfa.amsl.com>; Wed, 3 Dec 2014 21:47:22 -0800 (PST)
Received: from mail-vc0-x22a.google.com (mail-vc0-x22a.google.com [IPv6:2607:f8b0:400c:c03::22a]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 937B01A87AD for <rtcweb@ietf.org>; Wed, 3 Dec 2014 21:47:22 -0800 (PST)
Received: by mail-vc0-f170.google.com with SMTP id hy4so7664131vcb.1 for <rtcweb@ietf.org>; Wed, 03 Dec 2014 21:47:21 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; bh=Vq549Z6/vGT9BcjXQzJeQfi3jeWKIuDrgtApG09A85Y=; b=ALoRy+236Ob8iGC75m69uvDUyRgUnqKF6jCaRPUixN/j0Pck1yRWT+2wFI6x8vXmpH O8Egk1h+bRj7Z/hls+z6ST+lN8/34txw/ZmrDO0A2G+TiLUXmpflr4eca0Vt2MAHuy4l lGhtrKXcjw84l85GvKO6D1PEVoTrnNBUqa7+qAbVjeZhAs8t+9/Ls5kt9KJEaPD8Fze5 NZnhGp3s3W5rmXw3RlVtVHL2jkIU0uoqgfOXCaqzaN4yUtu1AlMCi2wMENpyi7SS/6nc EhQcOnSpu9ODrxkcWEuqf6e0ybSdlYHAV4m29gJw7orf1llBQNfDBvKeym/kcOUMEW46 PrKQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-type; bh=Vq549Z6/vGT9BcjXQzJeQfi3jeWKIuDrgtApG09A85Y=; b=lRFnjwwKzh4fKKz1c+BnTtEyYqm1rNkH3rbs1TfOY7tbgpwZv9CV3NjxwOzEoLpMq0 AktdJkQ/TpT5/WuJ9wYNSG8Jek4Aa3AS3mp34JRAzvakaEjeh13EviuZiQrh6mRsSTjt ET9sTROipc+iB2JczqzjSaaeh0HebKUEj716tTwSjNksDGoiTHisvrQzfB/3OOdg/P9/ 8BzPOXKoOJxOg8CmlkiOOUZAk6xFiGCZX/hNncHA9flN6dZn7Vc6s30y5jPI7gNoFHaQ m37evi0PJxDM6FnQuI7xVi3cwtP89eO9RVGxsxRUvjarFrCuYu5Bslk9at99O3itXXrk GZqQ==
X-Gm-Message-State: ALoCoQlmUWDiDiiRfbXbnY4uejH5uRGCApZrJ6GljjzzEiaei2br89P/rRn/7bxfuEGJuMFWx8eK
X-Received: by 10.52.136.80 with SMTP id py16mr4116470vdb.54.1417672041531; Wed, 03 Dec 2014 21:47:21 -0800 (PST)
MIME-Version: 1.0
Received: by 10.52.237.130 with HTTP; Wed, 3 Dec 2014 21:47:01 -0800 (PST)
In-Reply-To: <7594FB04B1934943A5C02806D1A2204B1D5773BD@ESESSMB209.ericsson.se>
References: <CAD5OKxtyy2Djh5ssE69qLJq7deQU9LP=J2vpn_Y3eO=4D2vpmg@mail.gmail.com> <CALiegfnh3pHA=Z6O_PYuhoECzzex3quDh1fUk=yRvbFp+xKGNQ@mail.gmail.com> <CABkgnnUppq01v1vo8H6WY80nS5XUhf+mjuNMreYyCQagKFgOGQ@mail.gmail.com> <CAD5OKxsbt4O8xuphthvEJqEYgPfubhpvY1sNDi_GkzcyEQXkyw@mail.gmail.com> <CABkgnnX8ufq1YQm+6S1xE+zDMQ42qAcvYiViKmAdG49Tj3HXUA@mail.gmail.com> <CAD5OKxv9SZUCwZT81QgPHs_TLyLiMJLKt1WU+2F0oH+gKQAJoA@mail.gmail.com> <7594FB04B1934943A5C02806D1A2204B1D56EA42@ESESSMB209.ericsson.se> <CAD5OKxvjbqNhszkDUjMaSJB2+Pnc4qQdmQQKfNT+Ypnz5yR2yw@mail.gmail.com> <1447FA0C20ED5147A1AA0EF02890A64B1D0EDF50@ESESSMB209.ericsson.se> <7594FB04B1934943A5C02806D1A2204B1D573154@ESESSMB209.ericsson.se> <CAD5OKxu5QNJVfu4qUXvKQuMiF8t-Zw==JaxjBkuC8USHscjBZA@mail.gmail.com> <CALiegfmeJUHvXtguSqy=U4uBvtXz0pg+AjGN3ygJ_Mwc8qak=g@mail.gmail.com> <7594FB04B1934943A5C02806D1A2204B1D5773BD@ESESSMB209.ericsson.se>
From: Justin Uberti <juberti@google.com>
Date: Wed, 3 Dec 2014 21:47:01 -0800
Message-ID: <CAOJ7v-0KhjuxK6LDrr9V_fBGWoS2pZuumdSQ_fcc+d_U5GS8vw@mail.gmail.com>
To: Christer Holmberg <christer.holmberg@ericsson.com>
Content-Type: multipart/alternative; boundary=bcaec52d4dad71a98e05095d7e2e
Archived-At: http://mailarchive.ietf.org/arch/msg/rtcweb/TJaBkxfxcJrkH_yXAfMG74b2-XU
Cc: "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] Unsolicited DTLS Handshake
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Dec 2014 05:47:24 -0000

That sounds like a 5763-bis.

On Wed, Dec 3, 2014 at 8:41 PM, Christer Holmberg <
christer.holmberg@ericsson.com> wrote:

>   Hi Inaki,
>
> My intention is not to be able to do everything with O/A.
>
> I am trying to figure out what can be done with O/A, and how/if O/A
> affects existing DTLS connections.
>
> If something can NOT be done, I think it would be good to document
> somewhere.
>
> I am willing to start drafting a "TLS with SDP O/A" draft, if people think
> such would be useful.
>
> Regards,
>
> Christer
>
> Sent from my Windows Phone
>  ------------------------------
> From: Iñaki Baz Castillo <ibc@aliax.net>
> Sent: ‎03/‎12/‎2014 17:01
> To: Roman Shpount <roman@telurix.com>
> Cc: Christer Holmberg <christer.holmberg@ericsson.com>om>; rtcweb@ietf.org
> Subject: Re: [rtcweb] Unsolicited DTLS Handshake
>
>   2014-12-03 15:43 GMT+01:00 Roman Shpount <roman@telurix.com>om>:
> > If the transport parameter have NOT changed, can the fingerprint be
> changed?
>
>
> Correct me if I'm wrong, but during a DTLS/TLS session certificates
> are sent just once, at the beginning. Changing the a=fingerprint
> attribute in a new SDP O/A round-trip without forcing a new DTLS
> session should just be considered an error.
>
> Again: we are trying to signal too much in the SDP.
>
> --
> Iñaki Baz Castillo
> <ibc@aliax.net>
>
> _______________________________________________
> rtcweb mailing list
> rtcweb@ietf.org
> https://www.ietf.org/mailman/listinfo/rtcweb
>
>