timesimp 1.0.0

Simple sans-io timesync client and server
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335

//! Simple sans-io timesync client and server.
//!
//! Timesimp is based on the averaging method described in [Simpson (2002), A Stream-based Time
//! Synchronization Technique For Networked Computer Games][paper], but with a corrected delta
//! calculation. Compared to NTP, it's a simpler and less accurate time synchronisation algorithm
//! that is usable over network streams, rather than datagrams. Simpson asserts they were able to
//! achieve accuracies of 100ms or better, which is sufficient in many cases; my testing gets
//! accuracies well below 5ms. The main limitation of the algorithm is that round-trip-time is
//! assumed to be symmetric: if the forward trip time is different from the return trip time, then
//! an error is induced equal to the value of the difference in trip times.
//!
//! This library provides a sans-io implementation: you bring in your async runtime, your transport,
//! and your storage; timesimp gives you time offsets.
//!
//! If the local clock goes backward during a synchronisation, the invalid delta is discarded; this
//! may cause the sync attempt to fail, especially if the `samples` count is lowered to its minimum
//! of 3. This is a deliberate design decision: you should handle failure and retry, and the sync
//! will proceed correctly when the clock is stable.
//!
//! [paper]: https://web.archive.org/web/20160310125700/http://mine-control.com/zack/timesync/timesync.html
//!
//! # Example
//!
//! ```no_run
//! use std::{convert::Infallible, time::Duration};
//! use reqwest::{Client, Url};
//! use timesimp::{SignedDuration, Timesimp};
//!
//! struct ServerSimp;
//! impl Timesimp for ServerSimp {
//!     type Err = Infallible;
//!
//!     async fn load_offset(&self) -> Result<Option<SignedDuration>, Self::Err> {
//!         // server time is correct
//!         Ok(Some(SignedDuration::ZERO))
//!     }
//!
//!     async fn store_offset(&mut self, _offset: SignedDuration) -> Result<(), Self::Err> {
//!         // as time is correct, no need to store offset
//!         unimplemented!()
//!     }
//!
//!     async fn query_server(
//!         &self,
//!         _request: timesimp::Request,
//!     ) -> Result<timesimp::Response, Self::Err> {
//!         // server has no upstream timesimp
//!         unimplemented!()
//!     }
//!
//!     async fn sleep(duration: std::time::Duration) {
//!         tokio::time::sleep(duration).await;
//!     }
//! }
//!
//! // Not shown: serving ServerSimp from a URL
//!
//! struct ClientSimp {
//!     offset: Option<SignedDuration>,
//!     url: Url,
//! }
//!
//! impl Timesimp for ClientSimp {
//!     type Err = reqwest::Error;
//!
//!     async fn load_offset(&self) -> Result<Option<SignedDuration>, Self::Err> {
//!         Ok(self.offset)
//!     }
//!
//!     async fn store_offset(&mut self, offset: SignedDuration) -> Result<(), Self::Err> {
//!         self.offset = Some(offset);
//!         Ok(())
//!     }
//!
//!     async fn query_server(
//!         &self,
//!         request: timesimp::Request,
//!     ) -> Result<timesimp::Response, Self::Err> {
//!         let resp = Client::new()
//!             .post(self.url.clone())
//!             .body(request.to_bytes().to_vec())
//!             .send()
//!             .await?
//!             .error_for_status()?
//!             .bytes()
//!             .await?;
//!         Ok(timesimp::Response::try_from(&resp[..]).unwrap())
//!     }
//!
//!     async fn sleep(duration: std::time::Duration) {
//!         tokio::time::sleep(duration).await;
//!     }
//! }
//!
//! #[tokio::main]
//! async fn main() {
//!     let mut client = ClientSimp {
//!         offset: None,
//!         url: "https://timesimp.server".try_into().unwrap(),
//!     };
//!
//!     loop {
//!         if let Ok(Some(offset)) = client.attempt_sync(Default::default()).await {
//!             println!(
//!                 "Received offset: {offset:?}; current time is {}",
//!                 client.adjusted_timestamp().await.unwrap(),
//!             );
//!         }
//!         tokio::time::sleep(Duration::from_secs(300)).await;
//!     }
//! }
//! ```

use std::time::Duration;

pub use jiff::{SignedDuration, Timestamp};

mod delta;
use delta::*;

mod messages;
pub use messages::*;

mod settings;
pub use settings::*;

/// A time sync client and/or server.
///
/// You must implement the four required functions and not override the others.
///
/// Then, use `answer_client()` to implement a time sync server, and/or use `attempt_sync()` to
/// implement a time sync client.
#[allow(async_fn_in_trait)]
pub trait Timesimp {
    /// Error for your required methods.
    type Err: std::error::Error;

    /// Load the current time offset.
    ///
    /// This must return the current stored time offset, or `None` if no time offset is currently
    /// stored.
    ///
    /// As this expects a `SignedDuration`, you are free to load whatever precision you wish, so
    /// long as `store_offset()` agrees. Microseconds should be enough for most purposes.
    async fn load_offset(&self) -> Result<Option<SignedDuration>, Self::Err>;

    /// Store the current time offset.
    ///
    /// This must store the given time offset, typically in some kind of database.
    ///
    /// As this is given a `SignedDuration`, you are free to store whatever precision you wish, so
    /// long as `load_offset()` agrees. Microseconds should be enough for most purposes.
    ///
    /// Additionally, once `store_offset` has been called once, `load_offset` should return `Some`.
    async fn store_offset(&mut self, offset: SignedDuration) -> Result<(), Self::Err>;

    /// Query a timesimp server endpoint.
    ///
    /// This must query in some manner a timesimp server, by sending the given [`Request`] and
    /// obtaining a [`Response`]. Both [`Request`] and [`Response`] can be parsed from and
    /// serialized to bytes. The query implementation should do as little else as possible to
    /// avoid adding unnecessary latency.
    ///
    /// If using a connecting protocol, such as TCP or QUIC, it's recommended to keep the
    /// connection alive if practicable, with a timeout longer than the
    /// [`Settings.jitter`](Settings) value. That should result in all but the first sample being
    /// approximately a single round trip, eliminating the handshake delay.
    async fn query_server(&self, request: Request) -> Result<Response, Self::Err>;

    /// Sleep for a [`Duration`].
    ///
    /// This is usually something like `tokio::time::sleep` or equivalent.
    async fn sleep(duration: Duration);

    /// Obtain an adjusted timestamp.
    ///
    /// Do not override.
    ///
    /// This simply loads the offset and applies it to the current local timestamp.
    ///
    /// It is provided as convenience for simple use; you may want to implement your own.
    async fn adjusted_timestamp(&self) -> Result<Timestamp, Self::Err> {
        let offset = self.load_offset().await?.unwrap_or_default();
        Ok(Timestamp::now() + offset)
    }

    /// The implementation of the server endpoint.
    ///
    /// Do not override.
    ///
    /// Use this in your server endpoint implementation. Both [`Request`] and [`Response`] can be
    /// parsed from and serialized to bytes. The endpoint should do as little else as possible to
    /// avoid adding unnecessary latency.
    async fn answer_client(&self, request: Request) -> Result<Response, Self::Err> {
        Ok(Response {
            client: request.client,
            server: self.adjusted_timestamp().await?,
        })
    }

    /// The main client state driver. Call this in a loop.
    ///
    /// You're expected to sleep for a while after calling this, or to run it on a schedule. Take
    /// care to compute your schedule on your raw system monotonic clock or equivalent, so it does
    /// not get influenced by the offset, which could make it jump around or even spin.
    ///
    /// If `load_offset()` returns `Ok(None)`, this method will attempt to `store_offset()` the
    /// first delta it gets from the server. This lets you get an "accurate enough" timestamp
    /// pretty quickly, instead of waiting for a full round of samples. Errors from that store are
    /// ignored silently.
    ///
    /// If this returns `Ok(None)`, not enough samples were obtained to have enough confidence in
    /// the result, likely because the `server_query()` method encountered an error for most tries.
    /// Errors from `server_query()` are not returned, but instead are logged using tracing.
    ///
    /// Do not override.
    ///
    /// # Example
    ///
    /// ```ignore
    /// loop {
    ///     match simp.attempt_sync(Settings::default()).await {
    ///         Err(err) => eprintln!("{err}"),
    ///         Ok(None) => eprintln!("did not get enough samples to have confidence"),
    ///         Ok(Some(offset)) => {
    ///             println!("Obtained offset: {offset:?}");
    ///             println!("The adjusted time is {}", simp.adjusted_timestamp().unwrap());
    ///         }
    ///     }
    ///     sleep(Duration::from_secs(60));
    /// }
    /// ```
    async fn attempt_sync(
        &mut self,
        settings: Settings,
    ) -> Result<Option<SignedDuration>, Self::Err> {
        let Settings { samples, jitter } = settings.clamp();
        let current_offset = self.load_offset().await?.unwrap_or_default();
        tracing::trace!(?samples, ?current_offset, "starting delta collection");

        let mut gap = Duration::ZERO;
        let mut responses: Vec<Delta> = Vec::with_capacity(samples.into());
        for _ in 0..settings.samples {
            tracing::trace!(delay=?gap, max_jitter=?jitter, "sleeping to spread out requests");
            Self::sleep(gap).await;

            // compute the next gap before we query, so if query_server errors we don't immediately reloop
            gap = Duration::from_nanos(rand::random_range(
                0..=u64::try_from(jitter.as_nanos()).unwrap(),
            ));
            // UNWRAP: jitter has been clamped to 0..=10 seconds, so nanos will never reach u64::MAX

            let response = match self
                .query_server(Request {
                    client: Timestamp::now(),
                })
                .await
            {
                Ok(response) => response,
                Err(err) => {
                    tracing::error!(?err, "query_server failed");
                    continue;
                }
            };

            let Some(packet) = Delta::new(response, Timestamp::now()) else {
                tracing::error!("local clock went backwards! skipping this sampling");
                continue;
            };

            tracing::trace!(latency=?packet.latency, delta=?packet.delta, "obtained raw offset from server");
            responses.push(packet);

            if self.load_offset().await?.is_none() {
                tracing::debug!(offset=?packet.delta, "no offset stored, storing initial delta");
                let _ = self.store_offset(packet.delta).await;
            }
        }

        if !responses.is_empty() && responses.len() % 2 == 0 {
            // if we have an even number of responses, we need to discard one
            // the first response is most likely to be an outlier due to connection establishment
            responses.remove(0);
        }

        if responses.len() < 3 {
            tracing::debug!(
                count = responses.len(),
                "not enough responses for confidence"
            );
            return Ok(None);
        }

        responses.sort_by_key(|r| r.latency);
        let deltas = responses
            .iter()
            .map(|r| r.delta.as_millis_f64())
            .collect::<Vec<_>>();
        tracing::trace!(?deltas, "response deltas sorted by latency");

        let median_idx = deltas.len() / 2;
        let median = deltas[median_idx];

        let mean: f64 = deltas.iter().copied().sum::<f64>() / deltas.len() as f64;
        let variance: f64 = deltas
            .iter()
            .copied()
            .map(|d| (d - mean).powi(2))
            .sum::<f64>()
            / ((deltas.len() - 1) as f64);
        let stddev: f64 = variance.sqrt();
        tracing::trace!(
            ?median,
            ?mean,
            ?variance,
            ?stddev,
            "statistics about response deltas"
        );

        let inliers = deltas
            .iter()
            .copied()
            .filter(|d| *d >= median - stddev && *d <= median + stddev)
            .collect::<Vec<_>>();
        tracing::trace!(?inliers, "eliminated outliers");

        let offset = SignedDuration::from_micros(
            ((inliers.iter().sum::<f64>() / (inliers.len() as f64)) * 1000.0) as i64,
        );

        tracing::debug!(?offset, "storing calculated offset");
        self.store_offset(offset).await?;
        Ok(Some(offset))
    }
}