[encrypted-media] Specify `generateRequest()` failures caused by lack of resources (#483) from Xiaohan Wang via GitHub on 2021-04-06 (public-html-media@w3.org from April 2021)

From: Xiaohan Wang via GitHub <sysbot+gh@w3.org>
Date: Tue, 06 Apr 2021 23:33:08 +0000
To: public-html-media@w3.org
Message-ID: <issues.opened-851881584-1617751986-sysbot+gh@w3.org>

xhwang-chromium has just created a new issue for https://github.com/w3c/encrypted-media:

== Specify `generateRequest()` failures caused by lack of resources ==
When using hardware-backed CDMs, it's common that there's a limit on how many sessions the CDM can open, mostly because each session is backed by some hardware resource (e.g. in TEE), and there's a limit on such resource. The limit is often global for the device, so a JS player can hit this issue even if it only opens a few sessions, e.g. if other native applications or other sites on the same browser have outstanding sessions open.

Currently the spec doesn't say what the user agent should do for this case. The closest one is in `generateRequest()`, step 10.10.1:
> If any of the preceding steps failed, reject promise with a new DOMException whose name is the appropriate error name.

In practice, implementations could choose any exception it chooses. For example, Chromium on Android chooses `NOT_SUPPORTED_ERROR`, and on Windows it could return `INVALID_STATE_ERROR`.

I propose that we add an explicit step for `generateRequest()` in the spec:
- If `generateRequest()` failed due to lack of resources, return a promise rejected with a newly created QuotaExceededError.
- Also update QuotaExceededError under [6.5 Exceptions](https://www.w3.org/TR/encrypted-media/#exceptions) to include this case.

Note that the CDM implementation could choose to actively evict older sessions as an alternative solution to this issue. In that case, `generateRequest()` on new session will succeed, but an older session will be closed automatically. This is covered under [6.4.4 Session Closed](https://www.w3.org/TR/encrypted-media/#session-closed) algorithm:
> The CDM may close a session at any point, such as when the session is no longer needed or when system resources are lost. In that case, the Monitor for CDM Changes algorithm detects the change and runs this algorithm.

[Issue  473](https://github.com/w3c/encrypted-media/issues/473) further proposes to add a `Reason` to the `closed` attribute so the exact reason for the closure can be returned.

Please view or discuss this issue at https://github.com/w3c/encrypted-media/issues/483 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Tuesday, 6 April 2021 23:33:10 UTC