Add delivery timeouts #449
Conversation
The timeouts in this PR are defined to to ensure that the invariant properties implied by the object delivery preference are maintained, e.g. if stream-per-group is used, it is impossible to accidentally timeout an object in the middle of the group. Fixes moq-wg#440
draft-ietf-moq-transport.md
Outdated
| a relay should attempt forwarding objects, or zero to indicate that no such | ||
| time limit is provided. The specific semantics of this field depend on the | ||
| forwarding preference ({{object-message-formats}}) used by the objects on the | ||
| track in question: |
There was a problem hiding this comment.
clarification question:
Since the Delivery Timeout is in the SubscribeOK, how does the relay expected to know it's value ?
There was a problem hiding this comment.
Assuming the objects the relay has to serve were delivered to it via moq subscriptions, it can cache and use the value it received when it performed the upstream subscription. This will work if the value is immutable per track.
There's a corner case here, where the relay receives an object from upstream before the upstream Subscribe OK. There's no way to know if the object has passed its delivery timeout. It's probably ok to assume the object is valid to deliver in this case.
There was a problem hiding this comment.
@afrind thanks ..
I am trying to wrap my head around the right set of requirements :
- what is a object property VS
- what is per subscription property
DeliveryTimeout seems to be object property as defined by the publisher. It doesn't change per subscription ? OR do we expect these to change per subscription ? If not, CacheDuration PR seems to be heading the right direction
draft-ietf-moq-transport.md
Outdated
| a relay should attempt forwarding objects, or zero to indicate that no such | ||
| time limit is provided. The specific semantics of this field depend on the | ||
| forwarding preference ({{object-message-formats}}) used by the objects on the | ||
| track in question: |
There was a problem hiding this comment.
Assuming the objects the relay has to serve were delivered to it via moq subscriptions, it can cache and use the value it received when it performed the upstream subscription. This will work if the value is immutable per track.
There's a corner case here, where the relay receives an object from upstream before the upstream Subscribe OK. There's no way to know if the object has passed its delivery timeout. It's probably ok to assume the object is valid to deliver in this case.
I am not sure what would be issue .. isn't its application's choice rather than transport requirement ? Just trying to understand the constraint better |
|
Individual Comment:
I agree this should be more clear in this PR. I'm assuming this is an immutable track property reported in Subscribe OK. @vasilvv can you clarify?
I think this highlights something that may require additional discussion; I get the sense different wg members have different assumptions about how streams move through relays. My view is that when a publisher chooses to deliver objects in stream-per-group or stream-per-track modes, it is doing so because it wants the reliability and ordering guarantees QUIC provides to streams. Therefore, a relay can't remove an object from the middle of such a stream, since this changes the reliability properties my app depends on. The current draft has language reflecting this:
With this in mind, I'm inclined to agree with the stream-per-group restrictions in this PR - if a relay is delivering a group on a stream, and encounters an object that has exceeded the delivery timeout and won't deliver it, the only option is to close the stream and move on. I'm also in favor of some kind of restriction on dropping objects using stream-per-track (either disallowing it entirely, or closing the stream). If reordering or dropping objects at relays is important to application behavior, I would think the publisher would choose datagram or stream-per-object forwarding preferences. Is there a use case for using stream-per-group/track, but allowing the relay to drop or reorder objects? If so, how is it better than using a stream-per-object or datagram mapping? |
This is not entirely true. If the application wants no objects to be dropped end to end across relats, it will set the duration to reflect its slowest subscriber ( in the case where there is a mix of different subscriber types ???) . This is done regardless of delivery mechanisms (stream mapping) being used . |
Delivery timeout only applies for real-time transmission, prioritizing data freshness over reliability. For DVR usecase(relays don't send this object more than 30 minutes after it was produced), 100% reliability is desired. This is more related to content policy: #448 |
From what i read, a delivery timeout of 0 means , no restrictions . yes , i do agree the some of the concerns is auth/policy related , as in, until when origin thinks the content is valid. |
draft-ietf-moq-transport.md
Outdated
| in question, and SHOULD reset all existing streams if those have been | ||
| already opened. | ||
| - If the Object Forwarding Preference is `Group`, once the specified number | ||
| of milliseconds has passed since the final object of the group was fully |
There was a problem hiding this comment.
Interesting that this is based on the final object; I really like it.
Absolutely not. Never attempt to reorder or introduce a gap in a QUIC stream. Use multiple streams at drop/reorder boundaries instead. The application chooses these boundaries via the stream mapping. If you're using a stream per group, then you've forfeited the ability to drop/reorder individual objects which is entirely the point. Now the decoder doesn't need to deal with that possibility. |
Takes an opinionated approach to adding 'Fetch' style functionality within the existing mechanisms. Can be improved once various TTL/etc PRs land. For example, we can add a 3rd mode where In Order is preferred within a client specified Delivery Timeout. (#449). Pulls in concepts from #428 Fixes #269 Fixes #326 Fixes #350 Closes #421
Did that (also since it's a parameter now, zero is no longer a special value). |
| milliseconds has passed since the final object of the group was fully | ||
| received, the relay SHOULD NOT open new streams for the group in question, | ||
| and SHOULD reset all existing streams if those have been already opened. | ||
| - If the Object Forwarding Preference is `Track`, this parameter MUST NOT be |
There was a problem hiding this comment.
In the current design, this means the forwarding preference of the track must be known by the subscriber. Perhaps it's better to a) ignore it or b) reset the stream after the timeout.
There was a problem hiding this comment.
Should we necessarily design around the requirement of it being not known in advance, or a mismatch? I feel like if the subscriber expects something like stream-per-track, and it gets datagrams instead, it's going to have a bad time.
There was a problem hiding this comment.
That's why I made Stream per track only used by the 'Strict In Order' mode in: #452
There was a problem hiding this comment.
If we did this, I think track could be handled the same way of group and simply reset the stream and end the track if time has been exceeded.
There was a problem hiding this comment.
Due to the DOS stuff discussed in Seattle, I think we should update this so that in all cases the time starts at when start receiving the first bytes
There was a problem hiding this comment.
For this to make sense as a way to not get things that are outside the jitter buffer, I don't think this works to use the end of the steam. For the jitter buffer use case, it seems like we want this to work with datagrams and perhaps the other stream modes.
This would be better if it was limited to only be meaningful for final subscriber to relay. But if that relay is downstream of constrained link, then this does not solve the problem.
| @@ -862,6 +862,32 @@ information in a SUBSCRIBE or ANNOUNCE message. This parameter is populated for | |||
| cases where the authorization is required at the track level. The value is an | |||
| ASCII string. | |||
|
|
|||
| #### DELIVERY TIMEOUT Parameter {#delivery-timeout} | |||
There was a problem hiding this comment.
It seems like what this actually is a stream reset time
|
From the interim discussions:
|
|
From an individual perspective, I think this functionality is interesting, though I realize there are more edge cases than I first thought. For example, we're doing Object per stream, and there are 5 Objects in a group and they arrive in reverse order (for whatever reason), is the real intent that the last Object expires first? Similar question for any single Object that arrives late due to loss/etc. Differences on the order of an RTT or two will occur fairly regularly I expect, so it'd be good to clarify the expected behavior. The other observation is that if one is willing to send frequent SUBSCRIBE_UPDATE messages that increase the Start, you can achieve very similar behavior without any direct reliance upon time and dealing with the question I just posed. Besides the annoyance of sending and processing SUBSCRIBE_UPDATE messages, is there a reason SUBSCRIBE_UPDATE can't solve the same problems? |
|
|
||
| - If the Object Forwarding Preference is `Datagram`, once the specified number | ||
| of milliseconds has passed since the datagram was received via this | ||
| subscription, the relay SHOULD NOT forward that datagram. |
There was a problem hiding this comment.
"received via this subscription" does not make sense to me.
| milliseconds has passed since the final object of the group was fully | ||
| received, the relay SHOULD NOT open new streams for the group in question, | ||
| and SHOULD reset all existing streams if those have been already opened. | ||
| - If the Object Forwarding Preference is `Track`, this parameter MUST NOT be |
There was a problem hiding this comment.
If we did this, I think track could be handled the same way of group and simply reset the stream and end the track if time has been exceeded.
| duration for which the relay should attempt forwarding objects. The specific | ||
| semantics of this field depend on the forwarding preference | ||
| ({{object-message-formats}}) used by the objects on the track in question: | ||
|
|
There was a problem hiding this comment.
I think all these case could be exactly the same which is if the time is exceeded, the stream in use (if any) gets reset and for stream per track that implies no more of the track will be sent, for stream per group that imples no more of the group will be sent.
|
|
||
| DELIVERY TIMEOUT parameter (key 0x03) MAY appear in a SUBSCRIBE or a | ||
| SUBSCRIBE_UDPATE message. It is a number of milliseconds indicating the | ||
| duration for which the relay should attempt forwarding objects. The specific |
There was a problem hiding this comment.
Give this does not somehow propagate to upstream relays, I don't think this will meet work for the use cases where the last relay is downstream of the congested link.
|
Closing this in favor of #486 |
The timeouts in this PR are defined to to ensure that the invariant properties implied by the object delivery preference are maintained, e.g. if stream-per-group is used, it is impossible to accidentally timeout an object in the middle of the group.
Fixes #440