refactor(ports): refactor port service state

[jack-w-shaw]

The initial implementation of the ports domain included far too much business logic in the state layer. This was made particularly bad given the usage of RunAtomic.

Hoist all of this business logic out of the state layer and into the service layer. Do this by re-writing the domain

This PR essentially represents an entire re-write of the domain. It might be easiest for you to just clone the branch and review it from scratch

Checklist

• Code style: imports ordered, good names, simple structure, etc
• Comments saying why design decisions were made
• Go unit tests, with comments saying what you're testing

QA steps

Unit tests pass

[gfouillet]

I have some suggestion. My general feeling is that it could be more comprehensive by chosing better name.

Moreover, I think we should have a special focus on the wildcard reconciliation, which is complicated. However I don't have a strong conviction that it may be improved outside my few comments.

My feeling is that it is made utterly complicated by mixing both open and close ports in UpdateUnitPort (amho, we should have 3 function, on which open ports, one which close ports, and one which "update ports", meaning, force all ports to follow whatever configuration passed (it will actually open and close ports, but we won't need such differenciation about what we are closing and what we are opening, because it would be "closed unless updated to be open", with only one map of portrange).

[gfouillet]

praise: I was wondering how to assert that one without introducing a dependency between service and domain. Putting it as a test seems a good idea !

[SimonRichardson]

Remove this.

State should not know about service and service should not know about state.

[gfouillet]

todo: For me it is not spelled correcty. Should be GetUnitOpenedPortUUIDs

[jack-w-shaw]

Some extra clarity could be useful here. PortRangeUUID sounds like the uuid of a port range, not the port range and uuid.

So I've gone for GetUnitOpenedPortsWithUUIDs

[gfouillet]

question: Is it possible to have both wildcardOpen != nil and wildcardClose != nil

[jack-w-shaw]

Technically yes. However, in reality, it is probably never going to happen

[gfouillet]

mmmh. It is why it is never tested, i suppose :D

[jack-w-shaw]

I'll make sure to add one now

[gfouillet]

suggestion: I don't think ensureEndpoints is a good abstraction, because I need to check the implementation or the doc to understand what is going on.

An helper function func collectEndpoint(portRanges ... network.GroupedPortRanges) []string and a method func (s *Service) addMissingEndpoint(ctx domain.AtomicContext, endpointNames []string) would be more readable.

[jack-w-shaw]

I think you're right this name is a little misleading, but I don't think your suggestion quite solves the problem.

I've gone for something slightly different to your suggestion, as we need to get the uuids of all endpoints, both existing and new here.

[SimonRichardson]

I'm still understanding this, but here is a first pass.

[SimonRichardson]

Don't pass core types to state. The types should be serialised to domain level values. These values can live in domain/port/types.go.

[jack-w-shaw]

Ignoring for now after chatting with @SimonRichardson. These types should be moved out of core into domain/ports/types.go, but doesn't need to be changed now.

[SimonRichardson]

I don't like the fact that a service method knows about an atomic context. I'm ok with functions knowing about these things, but not methods.

Also, I'm unsure why the error can't be returned at the state layer.

[SimonRichardson]

I'm more of a fan of creating a new type of things you want to keep, rather than modify out what you don't want to keep, esp. because you don't own that original type.

[SimonRichardson]

I'll be honest, there was a lot more clarity when it was in state.

[manadart]

You seem to have agreed with some of the review comments, and resolved the conversations, but not made the associated changes.

[jack-w-shaw]

You seem to have agreed with some of the review comments, and resolved the conversations, but not made the associated changes.

A new fixup commit is on it's way. Admittedly, resolving them may have been premature

[jack-w-shaw]

I think we should have a special focus on the wildcard reconciliation, which is complicated. However I don't have a strong conviction that it may be improved outside my few comments.

Agree. It is necessarily complex unfortunately. I have gone through an made comments more detailed.

My feeling is that it is made utterly complicated by mixing both open and close ports in UpdateUnitPort (amho, we should have 3 function, on which open ports, one which close ports, and one which "update ports", meaning, force all ports to follow whatever configuration passed (it will actually open and close ports, but we won't need such differenciation about what we are closing and what we are opening, because it would be "closed unless updated to be open", with only one map of portrange).

I'm not convinced this will make things any simpler. Unfortunately, as a result of wildcard reconciliation, a simple operation which just opens XOR closes some port ranges, may end up opening and closing some port ranges.

As such, these proposed methods would be very similar, so the simplest implementation would probably see all methods calling out to a common private generic handler method early on

[jack-w-shaw]

@gfouillet @SimonRichardson

I have just appended a new commit responding to your comments.

However, we may need to new approach entirely. So this change is being put on hold until then

[jack-w-shaw]

Another change:

Before this PR, if you open and close the same port range on an endpoint, in Mongo these operations cancel out. However, it does not in DQLite.

Remember to evaluate this case when re-evaluating the domain with RunAtomic & all that

https://github.com/juju/juju/pull/18185/files#r1787772899

[SimonRichardson]

Another pass.

[SimonRichardson]

Remove this.

State should not know about service and service should not know about state.

[SimonRichardson]

Suggested change

	ctx domain.AtomicContext, unitUUID unit.UUID, currentEndpoints []port.Endpoint, openPorts, closePorts network.GroupedPortRanges,
	ctx domain.AtomicContext,
	unitUUID unit.UUID,
	currentEndpoints []port.Endpoint,
	openPorts, closePorts network.GroupedPortRanges,

[SimonRichardson]

Exit out early.

Suggested change

	if len(newEndpointNames) > 0 {
	var err error
	newEndpoints, err = s.st.AddEndpoints(ctx, unitUUID, newEndpointNames)
	if err != nil {
	return nil, errors.Errorf("failed to add endpoints for unit %s: %w", unitUUID, err)
	}
	}
	return newEndpoints, nil
	if len(newEndpointNames) == 0 {
	return newEndpoints, nil
	}
	var err error
	newEndpoints, err = s.st.AddEndpoints(ctx, unitUUID, newEndpointNames)
	if err != nil {
	return nil, errors.Errorf("failed to add endpoints for unit %s: %w", unitUUID, err)
	}

[SimonRichardson]

Between service and state, we should have re-modeled the wildcard endpoint so that means something other than the absence of a value. Then in the future, we could start trickling that out to the API.

[SimonRichardson]

Suggested change

	// That is, if we open a port range on the wildcard endpoint, we will open it as
	// If we open a port range on the wildcard endpoint, we will open it as

[SimonRichardson]

Same here, I'm unsure if we need to iterate the portRanges everytime?

[SimonRichardson]

I want to see tests around your helper methods. I want to lock in behavior. This includes the wildcard reconcile and the filter methods.

[SimonRichardson]

This should be a view.

[SimonRichardson]

Missing comment.

[SimonRichardson]

No. This should be in domain/port/errors

Also, add a comment.