RE: Operations in invalid states: Exceptions don't make sense. from Jim Barnett on 2013-05-22 (public-webrtc@w3.org from May 2013)

From: Jim Barnett <Jim.Barnett@genesyslab.com>
Date: Wed, 22 May 2013 18:59:22 +0000
To: Adam Roach <adam@nostrum.com>, "public-webrtc@w3.org" <public-webrtc@w3.org>
Message-ID: <57A15FAF9E58F841B2B1651FFE16D2810409B2@GENSJZMBX02.msg.int.genesyslab.com>

I think that this is correct.  A similar problem exists in the Recording spec.  We should check state when the queued operation begins, and not when the operation is queued.  And that would  rule out using Exceptions, given our current definitions.

-          Jim

From: Adam Roach [mailto:adam@nostrum.com]
Sent: Wednesday, May 22, 2013 3:32 AM
To: public-webrtc@w3.org
Subject: Operations in invalid states: Exceptions don't make sense.

Currently, the WebRTC spec has some implication that a PeerConnection's signalingState should be checked at the time an operation (e.g., setRemoteDescription) is enqueued, and an that an exception should be thrown if the state is not appropriate for the indicated operation at that time, regardless of how the already-enqueued operations may change that state.

This is covered in section 4.6.1 (Error Handling / General Principles): " An exception MUST be thrown... [if a] function call was made when the RTCPeerConnection is in an invalid state, or a state in which that particular function is not allowed to be executed."

This interacts badly with the conceptual model that we currently have around operations, which is that scripts are allowed to make several calls on the PeerConnection without first waiting for the prior one to complete (with the result being that the PeerConnection queues such operations until the previous one completes).

Roughly speaking, this means that the PC state can be okay at the time an operation is enqueued, but invalid by the time the operation is executed. Conversely, the PC state may be invalid at the time an operation is attempted, but be changed to an invalid state by the time the operation is to be run.

The first set of circumstances requires us to allow async error callbacks for invalid states.

The second set of circumstances means that synchronous checks will, under some circumstances, throw exceptions when it is inappropriate to do so.

In other words, I think this points to an absolute requirement to check states async and an absolute prohibition on checking them synchronously.

The specific change I'm requesting is:

  *   Remove the second bullet from section 4.6.1
  *   Change step 1 of "addStream" in section 4.3.2.2 to end with "...abort these steps, and call the addStream error callback with an RTCError of  INVALID_STATE"
  *   Remove step 1 from "close" in section 4.3.2.2
  *   Change step 2 of "addStream" in section 4.3.2.2 to end with "...abort these steps, and call the removeStream error callback with an RTCError of  INVALID_STATE"
  *   Change the first bullet of "setLocalDescription" in section 4.3.2.2 to end with "...abort these steps, and call the setLocalDescription error callback with an RTCError of  INVALID_STATE"
  *   Change step 1 of section 5.1.2 to end with "...call the createDataChannel error callback with an RTCError of INVALID_STATE."
  *   Remove step 2 from section 5.2.3 (for this reason and for the reason that readyState no longer exists)
  *   Change step 1 of section 7.2.1 to end with "...call the getStats error callback with an RTCError of INVALID_STATE."
  *   Change step 1 of section 8.2.2, setIdentityProvider to end with "...abort these steps, and call the setIdentityProvider error callback with an RTCError of  INVALID_STATE"

/a

Received on Wednesday, 22 May 2013 18:59:51 UTC