Join GitHub today
GitHub is home to over 31 million developers working together to host and review code, manage projects, and build software together.Sign up
core: Unidirectional routing mode #132
For an existing application like Ansible where we are aiming to provide a drop-in replacement for its lower layers, some of Mitogen's functionality is not only unnecessary, but may cause it fail a security review because of the new communication modes that are enabled.
The most obvious of these is the ability for siblings to momentarily be able to communicate. Even if the library is otherwise secure, it is possible to have an existing Ansible configuration that, for example, deploys to 2 simultaneous regions, where those regions are intended to have zero connectivity between each other.
One very simple (and actually quite comforting) change to the library would be to prevent children from communicating with anyone except their parents. This supports all the communication styles required for Ansible today, along with all of the features I'd like to implement in future.
This ticket is to add some kind of routing policy to the library, to control where a child can deliver messages.
"EASY" label guide: