Fuchsia Networking welcomes contributions from all. This document defines contribution guidelines where they differ from or refine on the guidelines that apply to Fuchsia as a whole.
Consult the getting started document to set up your development environment.
Consult the contribute changes document for general contribution guidance and project-wide best practices. The remainder of this document describes best practices specific to Fuchsia Networking.
This section is inspired by Flutter's style guide, which contains many general principles that you should apply to all your programming work. Read it. The below calls out specific aspects that we feel are particularly important.
Do not implement features you don‘t need. It is hard to correctly design unused code. This is closely related to the commit sizing advice given above; adding a new data structure to be used in some future commit is akin to adding a feature you don’t need - it is exceedingly hard for your code reviewer to determine if you‘ve designed the structure correctly because they (and you!) can’t see how it is to be used.
You will occasionally encounter behaviour that surprises you or seems wrong. It probably is! Invest the time to find the root cause - you will either learn something, or fix something, and both are worth your time. Do not work around behaviour you don't understand.
Avoid duplicating code whenever possible. In cases where existing code is not exposed in a manner suitable to your needs, prefer to extract the necessary parts into a common dependency.
Avoid unhandled errors and APIs which inherently disallow proper error handling; for a common example, consider fuchsia_async::executor::spawn
. spawn
inherently precludes error passing (since the flow of execution is severed). In most cases spawn
can be replaced with a future that is later included in a select
expression (example commit) or simply await
ed on directly (example commit).
Prefer type safety over runtime invariant checking. In other words, arrange your abstractions such that they cannot express invalid conditions rather than relying on assertions at runtime.
Write testable code; testable code is modular and its dependencies are easily injected.
Avoid magic numbers.
When writing comments, take a moment to consider the future reader of your comment. Ensure that your comments are complete sentences with proper grammar and punctuation. Note that adding more comments or more verbose comments is not always better; for example, avoid comments that repeat the code they're anchored on.
Documentation comments should be self-contained; in other words, do not assume that the reader is aware of documentation in adjacent files or on adjacent structures. Avoid documentation comments on types which describe instances of the type; for example, AddressSet is a set of client addresses.
is a comment that describes a field of type AddressSet
, but the type may be used to hold any kind of Address
, not just a client's.
Phrase your comments to avoid references that might become stale; for example: do not mention a variable or type by name when possible (certain doc comments are necessary exceptions). Also avoid references to past or future versions of or past or future work surrounding the item being documented; explain things from first principles rather than making external references (including past revisions).
When writing TODOs:
TODO(https://fxbug.dev/1245):
When an implementation is following some specification/document (e.g. RFCs), include a comment with both a quote and citation of the relevant portion(s) of the document near the implementation. The quote lets readers know why something is being done and the citation allows a reader to get more context.
As with code comments, consider the future reader of the error messages emitted by your code. Ensure that your error messages are actionable. For example, avoid test failure messages such as “unexpected value” - always include the unexpected value; another example is “expected <variable>
to be empty, was non-empty” - this message would be much more useful if it included the unexpected elements.
Always consider: what will the reader do with this message?
Consult the testability rubrics for general guidelines on test-writing and testability reviews on Fuchsia. In Fuchsia Networking, we define the following test classes:
qemu
).Consider the following guidelines when writing tests:
Always add tests for new features or bug fixes.
Consider the guidelines in Error Messages when writing test assertions.
Tests must be deterministic. Threaded or time-dependent code, Random Number Generators (RNGs), and cross-component communication are common sources of nondeterminism. See Write reproducible, deterministic tests for tips.
Avoid tests with hard-coded timeouts. Prefer relying on the framework/fixture to time out tests.
Prefer hermetic tests; test set-up routines should be explicit and deterministic. Be mindful of test fixtures that run cases in parallel (such as Rust's) when using “ambient” services. Prefer to explicitly inject component dependencies that are vital to the test.
Prefer virtual devices and networks for non-end-to-end tests. See netemul for guidance on virtual network environments.
Avoid change detector tests; tests that are unnecessarily sensitive to changes, especially ones external to the code under test, can hamper feature development and refactoring.
Do not encode implementation details in tests, prefer testing through a module's public API.
When unwrapping a Result<_, fidl::Error>
returned from a FIDL method call, restate the function being called in the panic message to make it easier to track down the callsite. Don't repeat the type of the error, which is already included in the panic output. For example:
// Bad: let foo_result = proxy .foo() // `foo` returns a `Result<_, fidl::Error>`. .await .expect("FIDL error"); // Doesn't provide any new information. // Good: let foo_result = proxy .foo() // `foo` returns a `Result<_, fidl::Error>`. .await .expect("calling foo"); // Restate the function being called.
Commits should be arranged for ease of reading; that is, incidental changes such as code movement or formatting changes should be committed separately from actual code changes.
Commits should always be focused. For example, a commit could add a feature, fix a bug, or refactor code, but not a mixture.
Commits should be thoughtfully sized; avoid overly large or complex commits which can be logically separated, but also avoid overly separated commits that require code reviews to load multiple commits into their mental working memory in order to properly understand how the various pieces fit together. If your changes require multiple commits, consider whether those changes warrant a design doc or RFC.
Commit messages should be concise but self-contained (avoid relying on issue references as explanations for changes) and written such that they are helpful to people reading in the future (include rationale and any necessary context).
Avoid superfluous details or narrative.
Commit messages should consist of a brief subject line and a separate explanatory paragraph in accordance with the following:
The body may be omitted if the subject is self-explanatory; e.g. when fixing a typo. The git book contains a Commit Guidelines section with much of the same advice, and the list above is part of a blog post by Chris Beams.
Commit messages should make use of issue tracker integration. See Commit-log message integration in the monorail documentation.
When using issue tracker integration, don't omit necessary context that may also be included in the relevant issue (see “Commit messages should be concise but self-contained” above). Many issues are Google-internal, and any given issue tracker is not guaranteed to be usable at the time that the commit history is read.
Commit messages should never contain references to any of:
Adding a Test:
line to the commit message is encouraged. A Test:
line should:
For example: Test: Added new unit tests. `fx test netstack-gotests`
.
The following code review guidelines are adopted within the Netstack team:
Authors:
src/connectivity/network/OWNERS
. This should happen simultaneously to requesting review from owners. You can choose any team member you want, consider the following criteria:src/connectivity/network/tests/integration/common/OWNERS
if the CL consists primarily of changes to netemul integration tests.Reviewers:
Note that this scheme can increase latency for reviews, which is a negative side effect we‘d like to minimize. Try to decrease your latency when either being asked for review or addressing comments. We strive to keep latency under 24h for both authors and reviewers. Don’t be afraid to ping if it‘s been over 24h. Gerrit notification settings and smart e-mail filters can be a big help to drive those interrupts. Also, don’t be afraid to ping for reviews.
Area owners are encouraged to create Gerrit notification filters for their areas of interest to help enforce these guidelines and design vision.
fx set
Run the following command to build all tests and their dependencies:
fx set core.x64 --with //src/connectivity/network:tests
If you're working on changes that affect fdio
and third_party/go
, add:
--with //sdk/lib/fdio:tests --with //third_party/go:go_stdlib_tests