IETF Logo Mail Archive

Re: [Sip] RE: Identity after reinvite

Paul Kyzivat <pkyzivat@cisco.com> Tue, 16 November 2004 20:27 UTC

Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id PAA09225 for <sip-web-archive@ietf.org>; Tue, 16 Nov 2004 15:27:47 -0500 (EST)
Received: from megatron.ietf.org ([132.151.6.71]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1CU9xp-00078S-HL for sip-web-archive@ietf.org; Tue, 16 Nov 2004 15:30:09 -0500
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1CU9rz-0002Ej-AO; Tue, 16 Nov 2004 15:24:07 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1CU9nG-0007FV-I7 for sip@megatron.ietf.org; Tue, 16 Nov 2004 15:19:14 -0500
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id PAA08395 for <sip@ietf.org>; Tue, 16 Nov 2004 15:19:12 -0500 (EST)
Received: from sj-iport-2-in.cisco.com ([171.71.176.71] helo=sj-iport-2.cisco.com) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1CU9pW-0006wV-Ls for sip@ietf.org; Tue, 16 Nov 2004 15:21:35 -0500
Received: from sj-core-5.cisco.com (171.71.177.238) by sj-iport-2.cisco.com with ESMTP; 16 Nov 2004 12:31:44 -0800
Received: from flask.cisco.com (IDENT:mirapoint@flask.cisco.com [161.44.122.62]) by sj-core-5.cisco.com (8.12.10/8.12.6) with ESMTP id iAGKIfOx006162; Tue, 16 Nov 2004 12:18:41 -0800 (PST)
Received: from cisco.com ([161.44.79.125]) by flask.cisco.com (MOS 3.4.6-GR) with ESMTP id ANB81995; Tue, 16 Nov 2004 15:18:39 -0500 (EST)
Message-ID: <419A609E.2070406@cisco.com>
Date: Tue, 16 Nov 2004 15:18:38 -0500
From: Paul Kyzivat <pkyzivat@cisco.com>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.1) Gecko/20020826
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Jonathan Rosenberg <jdrosen@cisco.com>
Subject: Re: [Sip] RE: Identity after reinvite
References: <BDBF7902.1A871%fluffy@cisco.com> <FE5FEF81-37FD-11D9-AD99-000A95C73842@cisco.com> <419A5291.20002@cisco.com>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 093efd19b5f651b2707595638f6c4003
Content-Transfer-Encoding: 7bit
Cc: sip <sip@ietf.org>, David R Oran <oran@cisco.com>
X-BeenThere: sip@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Session Initiation Protocol <sip.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:sip@ietf.org>
List-Help: <mailto:sip-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=subscribe>
Sender: sip-bounces@ietf.org
Errors-To: sip-bounces@ietf.org
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 8fbbaa16f9fd29df280814cb95ae2290
Content-Transfer-Encoding: 7bit


Jonathan Rosenberg wrote:
> 
> 
> David R Oran wrote:
> 
>> I have a strong preference for (1). I intensely dislike accumulated 
>> hacks and entropy in a protocol. Backward compatibility is an 
>> important property, but 2543 compatibility is fast becoming a a 
>> concrete block chained to our legs.
>>
>> We should declare a day that 2543 SIP implementations don't have to 
>> work right any more. I suggest we make that when 3261 goes to draft 
>> standard. 
> 
> Cough... cough... [clutching chest as heart attack ensues]
> 
> Draft standard? After the pain we went through to get rfc3261 issued I 
> can't imagine doing that again...
> 
> Practically speaking, based on the current rules for normative 
> references, we are never going to be able to get to draft because 
> RFC3261 has too many normative dependencies on protocols that are not at 
> draft standard.
> 
> I agree we should take approach (1). We could spec it in a backwards 
> compatible way, too. If you change the From field in a request you send 
> mid-dialog, and you get a 481, you know that something along the way got 
> confused about the dialog identifiers. You can then retry, using the 
>  From URI from the original INVITE, and include some kind of flag to 
> signal to the identity service not to try and insert the Identity header.

The situation is a little more difficult to detect if you change the To 
in the response to the INVITE, which I was suggesting. Error responses 
don't help in this case. The to-from-change option would however help to 
know you could do this.

But as you point out below, that doesn't help if the proxies on the path 
get upset. To get around that problem we could use Proxy-Require, but 
that is pretty heavy handed. Or we could use some more cooperative 
option negotiation, where all the proxies must concur before the UAS can 
use the feature.

> Paul wrote:
> 
>> We could define an option to be announced in Supported that indicates 
>> ability to do this. Could end up with:
>>
>>     INVITE ...
>>     To: sip:bob@biloxi.com
>>     From: sip:alice@atlanta.com;tag=alice
>>     Supported: to-from-change
>>     Identity: aaaaaaaa (signed over From)
>>     Identity-Info: https://atlanta.com/cert
>>     ...
>>
>>     180 ...
>>     To: sip:charlie@chicago.com;tag=charlie
>>     From: sip:alice@atlanta.com;tag=alice
>>     Supported: to-from-change
>>     Identity: cccccccc (signed over To)
>>     Identity-Info: https://chicago.com/cert
>>     ...
>>
>>     200 ...
>>     To: sip:charlie@chicago.com;tag=charlie
>>     From: sip:alice@atlanta.com;tag=alice
>>     Supported: to-from-change
>>     Identity: cccccccc (signed over To)
>>     Identity-Info: https://chicago.com/cert
>>     ...
>>
>>     ACK ...
>>     To: sip:charlie@chicago.com;tag=charlie
>>     From: sip:alice@atlanta.com;tag=alice
>>     Supported: to-from-change
>>     Identity: aaaaaaaa (signed over From)
>>     Identity-Info: https://atlanta.com/cert
>>     ...
>>
>>     UPDATE ...
>>     To: sip:alice@atlanta.com;tag=alice
>>     From: sip:charlie@chicago.com;tag=charlie
>>     Supported: to-from-change
>>     Identity: cccccccc (signed over From)
>>     Identity-Info: https://chicago.com/cert
>>     ...
>>
>>     200 ...
>>     To: sip:alice@atlanta.com;tag=alice
>>     From: sip:charlie@chicago.com;tag=charlie
>>     Supported: to-from-change
>>     Identity: aaaaaaaa (signed over To)
>>     Identity-Info: https://atlanta.com/cert
>>     ...
>>
>> (Above shown as they look to receiving UA.) 
> 
> 
> This helps

By "this" I assume you mean the to-from-change option?

 > only if you assume that the problem lies in the UA; I would
> be worred about other nasties along the way.

For changing on subsequent requests within the dialog, what nasties are 
you thinking of? I think only a call stateful proxy would notice, and it 
seems there aren't many of those. Of course there are B2BUAs, but they 
at least *ought* to be UAs and behave as such.

Maybe there would be problems with SBCs, and with "transparent" B2BUAs 
that normally act as proxy but morph into UAs on occasion. But I think 
these nasties will have other problems with Identity too. I suppose we 
must however confront these.

> In any case, I don't see a need for a Supported header field. The 
> feature is supposed to work with any rfc3261 client out there.

Other than just hoping for the best, why would we expect existing 3261 
clients to work with this change?

	Paul


_______________________________________________
Sip mailing list  https://www1.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use sip-implementors@cs.columbia.edu for questions on current sip
Use sipping@ietf.org for new developments on the application of sip

v2.23.0 | Report a Bug | By Email