Merge lp:~dave-cheney/juju-core/go-cmd-jujud-firewaller into lp:~juju/juju-core/trunk
Proposed by
Dave Cheney
Status: | Rejected |
---|---|
Rejected by: | Gustavo Niemeyer |
Proposed branch: | lp:~dave-cheney/juju-core/go-cmd-jujud-firewaller |
Merge into: | lp:~juju/juju-core/trunk |
Diff against target: |
209 lines (+194/-0) 3 files modified
worker/firewaller/export_test.go (+7/-0) worker/firewaller/firewaller.go (+72/-0) worker/firewaller/firewaller_test.go (+115/-0) |
To merge this branch: | bzr merge lp:~dave-cheney/juju-core/go-cmd-jujud-firewaller |
Related bugs: |
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
The Go Language Gophers | Pending | ||
Review via email: mp+112007@code.launchpad.net |
Description of the change
cmd/jujud: add firewaller outline
This proposal adds a skeletal firewaller service to complete the
provisioning agent. The firewaller only reacts to changes in the
environment configuration at the moment because it needs the following
(unwritten) pieces:
* the ability to watch all services
* an interface into firewalling services in the environs.Environ interface
To post a comment you must log in.
Unmerged revisions
- 273. By Dave Cheney
-
final tweaks
- 272. By Dave Cheney
-
responding to review feedback
- 271. By Dave Cheney
-
responding to review feedback
- 270. By Dave Cheney
-
merge from trunk
- 269. By Dave Cheney
-
merge from trunk
- 268. By Dave Cheney
-
merge from trunk
- 267. By Dave Cheney
-
gofmt
- 266. By Dave Cheney
-
responding to review feedback
- 265. By Dave Cheney
-
merge from trunk
- 264. By Dave Cheney
-
tweaks
A few thoughts/ questions. ..
https:/ /codereview. appspot. com/6333067/ diff/2001/ cmd/jujud/ firewall. go firewall. go (right):
File cmd/jujud/
https:/ /codereview. appspot. com/6333067/ diff/2001/ cmd/jujud/ firewall. go#newcode13 firewall. go:13: type Firewaller struct {
cmd/jujud/
A comment would be good, but maybe it's redundant at this stage.
("Firewaller doesn't do anything yet"? ;))
https:/ /codereview. appspot. com/6333067/ diff/2001/ cmd/jujud/ firewall. go#newcode24 firewall. go:24: st, err := state.Open(info)
cmd/jujud/
Why do we need a whole new *State for a single component? It feels
somewhat wasteful at best, and at worst actively dangerous (surely,
given that 2 separate connections will not necessarily have remotely
consistent views of state, any non-zk-mediated data flow between
components with separate connections is potentially problematic...).
https:/ /codereview. appspot. com/6333067/ diff/2001/ cmd/jujud/ firewall. go#newcode38 firewall. go:38: defer f.st.Close() r.Stop( )
cmd/jujud/
defer f.environWatche
https:/ /codereview. appspot. com/6333067/ diff/2001/ cmd/jujud/ firewall. go#newcode50 firewall. go:50: return Kill(mustErr( f.environWatche r))` (see
cmd/jujud/
Equivalent of `f.tomb.
state/watcher.go) would I think be better.
https:/ /codereview. appspot. com/6333067/ diff/2001/ cmd/jujud/ firewall_ test.go firewall_ test.go (right):
File cmd/jujud/
https:/ /codereview. appspot. com/6333067/ diff/2001/ cmd/jujud/ firewall_ test.go# newcode28 firewall_ test.go: 28: _, err = env.Write()
cmd/jujud/
I don't see what this is actually testing... surely we should at least
check the log messages?
https:/ /codereview. appspot. com/6333067/