IETF Logo Mail Archive

Re: [rtcweb] Unsolicited DTLS Handshake

Christer Holmberg <christer.holmberg@ericsson.com> Thu, 04 December 2014 04:41 UTC

Return-Path: <christer.holmberg@ericsson.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 504061A0039 for <rtcweb@ietfa.amsl.com>; Wed, 3 Dec 2014 20:41:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.3
X-Spam-Level:
X-Spam-Status: No, score=-3.3 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, J_CHICKENPOX_111=0.6, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GB5qy8f6LIxH for <rtcweb@ietfa.amsl.com>; Wed, 3 Dec 2014 20:41:30 -0800 (PST)
Received: from sesbmg23.ericsson.net (sesbmg23.ericsson.net [193.180.251.37]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 347A41A0047 for <rtcweb@ietf.org>; Wed, 3 Dec 2014 20:41:30 -0800 (PST)
X-AuditID: c1b4fb25-f791c6d00000617b-5b-547fe5f8607e
Received: from ESESSHC015.ericsson.se (Unknown_Domain [153.88.253.124]) by sesbmg23.ericsson.net (Symantec Mail Security) with SMTP id B5.DC.24955.8F5EF745; Thu, 4 Dec 2014 05:41:28 +0100 (CET)
Received: from ESESSMB209.ericsson.se ([169.254.9.189]) by ESESSHC015.ericsson.se ([153.88.183.63]) with mapi id 14.03.0195.001; Thu, 4 Dec 2014 05:41:27 +0100
From: Christer Holmberg <christer.holmberg@ericsson.com>
To: Iñaki Baz Castillo <ibc@aliax.net>, Roman Shpount <roman@telurix.com>
Thread-Topic: [rtcweb] Unsolicited DTLS Handshake
Thread-Index: AQHQDbgwjr0wkzj8TUKVKwdS4+MXBJx9xuEggAAb0wCAAAUYAIAA9eU6
Date: Thu, 04 Dec 2014 04:41:27 +0000
Message-ID: <7594FB04B1934943A5C02806D1A2204B1D5773BD@ESESSMB209.ericsson.se>
References: <CAD5OKxtyy2Djh5ssE69qLJq7deQU9LP=J2vpn_Y3eO=4D2vpmg@mail.gmail.com> <CALiegfnh3pHA=Z6O_PYuhoECzzex3quDh1fUk=yRvbFp+xKGNQ@mail.gmail.com> <CABkgnnUppq01v1vo8H6WY80nS5XUhf+mjuNMreYyCQagKFgOGQ@mail.gmail.com> <CAD5OKxsbt4O8xuphthvEJqEYgPfubhpvY1sNDi_GkzcyEQXkyw@mail.gmail.com> <CABkgnnX8ufq1YQm+6S1xE+zDMQ42qAcvYiViKmAdG49Tj3HXUA@mail.gmail.com> <CAD5OKxv9SZUCwZT81QgPHs_TLyLiMJLKt1WU+2F0oH+gKQAJoA@mail.gmail.com> <7594FB04B1934943A5C02806D1A2204B1D56EA42@ESESSMB209.ericsson.se> <CAD5OKxvjbqNhszkDUjMaSJB2+Pnc4qQdmQQKfNT+Ypnz5yR2yw@mail.gmail.com> <1447FA0C20ED5147A1AA0EF02890A64B1D0EDF50@ESESSMB209.ericsson.se> <7594FB04B1934943A5C02806D1A2204B1D573154@ESESSMB209.ericsson.se> <CAD5OKxu5QNJVfu4qUXvKQuMiF8t-Zw==JaxjBkuC8USHscjBZA@mail.gmail.com>, <CALiegfmeJUHvXtguSqy=U4uBvtXz0pg+AjGN3ygJ_Mwc8qak=g@mail.gmail.com>
In-Reply-To: <CALiegfmeJUHvXtguSqy=U4uBvtXz0pg+AjGN3ygJ_Mwc8qak=g@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Content-Type: multipart/alternative; boundary="_000_7594FB04B1934943A5C02806D1A2204B1D5773BDESESSMB209erics_"
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrPLMWRmVeSWpSXmKPExsUyM+Jvje6Pp/UhBh0rpC2m77OxmHFhKrPF 2n/t7A7MHuca3rN7LFnyk8nj1pSCAOYoLpuU1JzMstQifbsEroyH63qZC/7oVLyYspu1gfGK dhcjJ4eEgIlE98utTBC2mMSFe+vZuhi5OIQEjjBK9N9axArhLGaUWH96N0sXIwcHm4CFRPc/ sGYRgUSJJTNns4PYzALqEncWnwOzhQUMJKZPms4MUWMo0Xz6LAuE7SbxpHU3WA2LgIrEg7Zn YHFeAV+Jdy3ToXZdYpOY1T8bLMEpECix4/NVMJsR6Lrvp9YwQSwTl2j6spIV4moBiSV7zjND 2KISLx//YwW5k1kgX2LnhHiI+YISJ2c+YZnAKDILSfcshKpZSKogwpoS63fpQ1QrSkzpfsgO YWtItM6Zy44svoCRfRWjaHFqcVJuupGxXmpRZnJxcX6eXl5qySZGYIwd3PJbdQfj5TeOhxgF OBiVeHgNztWHCLEmlhVX5h5ilOZgURLnXXhuXrCQQHpiSWp2ampBalF8UWlOavEhRiYOTqkG xnrr5bqzBPcuFPN8PXdO5gbb1Q+t71xQEY05svx7Ygu7Rn/k0QRZ59rGhedPZb0QKZXnYbly L3pd2/+r33bNWrnzk1bY9J+Ne9mmrPa9lTiFn8mrkdXUX8wpjm9NkOh6zV6bHbdXnbhl+uYR 81Wuh1HiOfUFQjYHNnGV3lvjmX3+uMXKF+8u9SixFGckGmoxFxUnAgAt3S9rkgIAAA==
Archived-At: http://mailarchive.ietf.org/arch/msg/rtcweb/nshXXZIvh-8IlpIsgo8aROP8wfs
Cc: "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] Unsolicited DTLS Handshake
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Dec 2014 04:41:33 -0000

Hi Inaki,

My intention is not to be able to do everything with O/A.

I am trying to figure out what can be done with O/A, and how/if O/A affects existing DTLS connections.

If something can NOT be done, I think it would be good to document somewhere.

I am willing to start drafting a "TLS with SDP O/A" draft, if people think such would be useful.

Regards,

Christer

Sent from my Windows Phone
________________________________
From: Iñaki Baz Castillo<mailto:ibc@aliax.net>
Sent: ‎03/‎12/‎2014 17:01
To: Roman Shpount<mailto:roman@telurix.com>
Cc: Christer Holmberg<mailto:christer.holmberg@ericsson.com>; rtcweb@ietf.org<mailto:rtcweb@ietf.org>
Subject: Re: [rtcweb] Unsolicited DTLS Handshake

2014-12-03 15:43 GMT+01:00 Roman Shpount <roman@telurix.com>:
> If the transport parameter have NOT changed, can the fingerprint be changed?


Correct me if I'm wrong, but during a DTLS/TLS session certificates
are sent just once, at the beginning. Changing the a=fingerprint
attribute in a new SDP O/A round-trip without forcing a new DTLS
session should just be considered an error.

Again: we are trying to signal too much in the SDP.

--
Iñaki Baz Castillo
<ibc@aliax.net>

v2.23.0 | Report a Bug | By Email