mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 212 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
12507 Commits
17 Branches
Tree: 0ac845042e
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '0ac845042e'
${ noResults }
gitea/vendor/github.com/caddyserver/certmagic/ratelimiter.go

ratelimiter.go 6.6KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243 
  1. // Copyright 2015 Matthew Holt

  2. //

  3. // Licensed under the Apache License, Version 2.0 (the "License");

  4. // you may not use this file except in compliance with the License.

  5. // You may obtain a copy of the License at

  6. //

  7. //     http://www.apache.org/licenses/LICENSE-2.0

  8. //

  9. // Unless required by applicable law or agreed to in writing, software

  10. // distributed under the License is distributed on an "AS IS" BASIS,

  11. // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  12. // See the License for the specific language governing permissions and

  13. // limitations under the License.

  14. 

  15. package certmagic

  16. 

  17. import (

  18. 	"context"

  19. 	"log"

  20. 	"runtime"

  21. 	"sync"

  22. 	"time"

  23. )

  24. 

  25. // NewRateLimiter returns a rate limiter that allows up to maxEvents

  26. // in a sliding window of size window. If maxEvents and window are

  27. // both 0, or if maxEvents is non-zero and window is 0, rate limiting

  28. // is disabled. This function panics if maxEvents is less than 0 or

  29. // if maxEvents is 0 and window is non-zero, which is considered to be

  30. // an invalid configuration, as it would never allow events.

  31. func NewRateLimiter(maxEvents int, window time.Duration) *RingBufferRateLimiter {

  32. 	if maxEvents < 0 {

  33. 		panic("maxEvents cannot be less than zero")

  34. 	}

  35. 	if maxEvents == 0 && window != 0 {

  36. 		panic("invalid configuration: maxEvents = 0 and window != 0 would not allow any events")

  37. 	}

  38. 	rbrl := &RingBufferRateLimiter{

  39. 		window:  window,

  40. 		ring:    make([]time.Time, maxEvents),

  41. 		started: make(chan struct{}),

  42. 		stopped: make(chan struct{}),

  43. 		ticket:  make(chan struct{}),

  44. 	}

  45. 	go rbrl.loop()

  46. 	<-rbrl.started // make sure loop is ready to receive before we return

  47. 	return rbrl

  48. }

  49. 

  50. // RingBufferRateLimiter uses a ring to enforce rate limits

  51. // consisting of a maximum number of events within a single

  52. // sliding window of a given duration. An empty value is

  53. // not valid; use NewRateLimiter to get one.

  54. type RingBufferRateLimiter struct {

  55. 	window  time.Duration

  56. 	ring    []time.Time // maxEvents == len(ring)

  57. 	cursor  int         // always points to the oldest timestamp

  58. 	mu      sync.Mutex  // protects ring, cursor, and window

  59. 	started chan struct{}

  60. 	stopped chan struct{}

  61. 	ticket  chan struct{}

  62. }

  63. 

  64. // Stop cleans up r's scheduling goroutine.

  65. func (r *RingBufferRateLimiter) Stop() {

  66. 	close(r.stopped)

  67. }

  68. 

  69. func (r *RingBufferRateLimiter) loop() {

  70. 	defer func() {

  71. 		if err := recover(); err != nil {

  72. 			buf := make([]byte, stackTraceBufferSize)

  73. 			buf = buf[:runtime.Stack(buf, false)]

  74. 			log.Printf("panic: ring buffer rate limiter: %v\n%s", err, buf)

  75. 		}

  76. 	}()

  77. 

  78. 	for {

  79. 		// if we've been stopped, return

  80. 		select {

  81. 		case <-r.stopped:

  82. 			return

  83. 		default:

  84. 		}

  85. 

  86. 		if len(r.ring) == 0 {

  87. 			if r.window == 0 {

  88. 				// rate limiting is disabled; always allow immediately

  89. 				r.permit()

  90. 				continue

  91. 			}

  92. 			panic("invalid configuration: maxEvents = 0 and window != 0 does not allow any events")

  93. 		}

  94. 

  95. 		// wait until next slot is available or until we've been stopped

  96. 		r.mu.Lock()

  97. 		then := r.ring[r.cursor].Add(r.window)

  98. 		r.mu.Unlock()

  99. 		waitDuration := time.Until(then)

  100. 		waitTimer := time.NewTimer(waitDuration)

  101. 		select {

  102. 		case <-waitTimer.C:

  103. 			r.permit()

  104. 		case <-r.stopped:

  105. 			waitTimer.Stop()

  106. 			return

  107. 		}

  108. 	}

  109. }

  110. 

  111. // Allow returns true if the event is allowed to

  112. // happen right now. It does not wait. If the event

  113. // is allowed, a ticket is claimed.

  114. func (r *RingBufferRateLimiter) Allow() bool {

  115. 	select {

  116. 	case <-r.ticket:

  117. 		return true

  118. 	default:

  119. 		return false

  120. 	}

  121. }

  122. 

  123. // Wait blocks until the event is allowed to occur. It returns an

  124. // error if the context is cancelled.

  125. func (r *RingBufferRateLimiter) Wait(ctx context.Context) error {

  126. 	select {

  127. 	case <-ctx.Done():

  128. 		return context.Canceled

  129. 	case <-r.ticket:

  130. 		return nil

  131. 	}

  132. }

  133. 

  134. // MaxEvents returns the maximum number of events that

  135. // are allowed within the sliding window.

  136. func (r *RingBufferRateLimiter) MaxEvents() int {

  137. 	r.mu.Lock()

  138. 	defer r.mu.Unlock()

  139. 	return len(r.ring)

  140. }

  141. 

  142. // SetMaxEvents changes the maximum number of events that are

  143. // allowed in the sliding window. If the new limit is lower,

  144. // the oldest events will be forgotten. If the new limit is

  145. // higher, the window will suddenly have capacity for new

  146. // reservations. It panics if maxEvents is 0 and window size

  147. // is not zero.

  148. func (r *RingBufferRateLimiter) SetMaxEvents(maxEvents int) {

  149. 	newRing := make([]time.Time, maxEvents)

  150. 	r.mu.Lock()

  151. 	defer r.mu.Unlock()

  152. 

  153. 	if r.window != 0 && maxEvents == 0 {

  154. 		panic("invalid configuration: maxEvents = 0 and window != 0 would not allow any events")

  155. 	}

  156. 

  157. 	// only make the change if the new limit is different

  158. 	if maxEvents == len(r.ring) {

  159. 		return

  160. 	}

  161. 

  162. 	// the new ring may be smaller; fast-forward to the

  163. 	// oldest timestamp that will be kept in the new

  164. 	// ring so the oldest ones are forgotten and the

  165. 	// newest ones will be remembered

  166. 	sizeDiff := len(r.ring) - maxEvents

  167. 	for i := 0; i < sizeDiff; i++ {

  168. 		r.advance()

  169. 	}

  170. 

  171. 	if len(r.ring) > 0 {

  172. 		// copy timestamps into the new ring until we

  173. 		// have either copied all of them or have reached

  174. 		// the capacity of the new ring

  175. 		startCursor := r.cursor

  176. 		for i := 0; i < len(newRing); i++ {

  177. 			newRing[i] = r.ring[r.cursor]

  178. 			r.advance()

  179. 			if r.cursor == startCursor {

  180. 				// new ring is larger than old one;

  181. 				// "we've come full circle"

  182. 				break

  183. 			}

  184. 		}

  185. 	}

  186. 

  187. 	r.ring = newRing

  188. 	r.cursor = 0

  189. }

  190. 

  191. // Window returns the size of the sliding window.

  192. func (r *RingBufferRateLimiter) Window() time.Duration {

  193. 	r.mu.Lock()

  194. 	defer r.mu.Unlock()

  195. 	return r.window

  196. }

  197. 

  198. // SetWindow changes r's sliding window duration to window.

  199. // Goroutines that are already blocked on a call to Wait()

  200. // will not be affected. It panics if window is non-zero

  201. // but the max event limit is 0.

  202. func (r *RingBufferRateLimiter) SetWindow(window time.Duration) {

  203. 	r.mu.Lock()

  204. 	defer r.mu.Unlock()

  205. 	if window != 0 && len(r.ring) == 0 {

  206. 		panic("invalid configuration: maxEvents = 0 and window != 0 would not allow any events")

  207. 	}

  208. 	r.window = window

  209. }

  210. 

  211. // permit allows one event through the throttle. This method

  212. // blocks until a goroutine is waiting for a ticket or until

  213. // the rate limiter is stopped.

  214. func (r *RingBufferRateLimiter) permit() {

  215. 	for {

  216. 		select {

  217. 		case r.started <- struct{}{}:

  218. 			// notify parent goroutine that we've started; should

  219. 			// only happen once, before constructor returns

  220. 			continue

  221. 		case <-r.stopped:

  222. 			return

  223. 		case r.ticket <- struct{}{}:

  224. 			r.mu.Lock()

  225. 			defer r.mu.Unlock()

  226. 			if len(r.ring) > 0 {

  227. 				r.ring[r.cursor] = time.Now()

  228. 				r.advance()

  229. 			}

  230. 			return

  231. 		}

  232. 	}

  233. }

  234. 

  235. // advance moves the cursor to the next position.

  236. // It is NOT safe for concurrent use, so it must

  237. // be called inside a lock on r.mu.

  238. func (r *RingBufferRateLimiter) advance() {

  239. 	r.cursor++

  240. 	if r.cursor >= len(r.ring) {

  241. 		r.cursor = 0

  242. 	}

  243. }