implement sync.Map and atomic values with benchmark

This commit is contained in:
kirari04 2024-06-11 16:40:04 +02:00
parent e3f8c99ed3
commit 6026c4fd53
No known key found for this signature in database
GPG Key ID: 373DF6E799D233FD
5 changed files with 254 additions and 1 deletions

View File

@ -120,7 +120,7 @@ func handleRateLimit(w http.ResponseWriter, r *http.Request, pe *ProxyEndpoint)
return errors.New("rate limit exceeded")
}
log.Println("Rate limit check", ip, ipTable.GetCount(ip))
// log.Println("Rate limit check", ip, ipTable.GetCount(ip))
return nil
}

View File

@ -0,0 +1,92 @@
package dynamicproxy
import (
"net/http"
"net/http/httptest"
"sync"
"testing"
)
func BenchmarkRateLimitSyncMapInt64(b *testing.B) {
ipTableSyncMapInt64 = IpTableSyncMapInt64{} // Reset the table
handler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
handleRateLimitSyncMapInt64(w, r, &ProxyEndpoint{RateLimiting: 10})
})
request := httptest.NewRequest("GET", "/", nil)
request.RemoteAddr = "192.168.1.1:1234"
b.ResetTimer()
for i := 0; i < b.N; i++ {
recorder := httptest.NewRecorder()
handler.ServeHTTP(recorder, request)
}
}
func BenchmarkRateLimitSyncMapAtomicInt64(b *testing.B) {
ipTableSyncMapAtomicInt64 = IpTableSyncMapAtomicInt64{} // Reset the table
handler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
handleRateLimitSyncMapAtomicInt64(w, r, &ProxyEndpoint{RateLimiting: 10})
})
request := httptest.NewRequest("GET", "/", nil)
request.RemoteAddr = "192.168.1.1:1234"
b.ResetTimer()
for i := 0; i < b.N; i++ {
recorder := httptest.NewRecorder()
handler.ServeHTTP(recorder, request)
}
}
func BenchmarkRateLimitSyncMapInt64Concurrent(b *testing.B) {
ipTableSyncMapInt64 = IpTableSyncMapInt64{} // Reset the table
handler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
handleRateLimitSyncMapInt64(w, r, &ProxyEndpoint{RateLimiting: 10})
})
request := httptest.NewRequest("GET", "/", nil)
request.RemoteAddr = "192.168.1.1:1234"
b.ResetTimer()
var wg sync.WaitGroup
for i := 0; i < b.N; i++ {
wg.Add(1)
go func() {
defer wg.Done()
recorder := httptest.NewRecorder()
handler.ServeHTTP(recorder, request)
}()
}
wg.Wait()
}
func BenchmarkRateLimitSyncMapAtomicInt64Concurrent(b *testing.B) {
ipTableSyncMapAtomicInt64 = IpTableSyncMapAtomicInt64{} // Reset the table
handler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
handleRateLimitSyncMapAtomicInt64(w, r, &ProxyEndpoint{RateLimiting: 10})
})
request := httptest.NewRequest("GET", "/", nil)
request.RemoteAddr = "192.168.1.1:1234"
b.ResetTimer()
var wg sync.WaitGroup
for i := 0; i < b.N; i++ {
wg.Add(1)
go func() {
defer wg.Done()
recorder := httptest.NewRecorder()
handler.ServeHTTP(recorder, request)
}()
}
wg.Wait()
}

View File

@ -0,0 +1,79 @@
package dynamicproxy
import (
"errors"
"log"
"net"
"net/http"
"sync"
"time"
)
// IpTableSyncMapInt64 is a rate limiter implementation using sync.Map with int64
type IpTableSyncMapInt64 struct {
table sync.Map
}
// Increment the count of requests for a given IP
func (t *IpTableSyncMapInt64) Increment(ip string) {
v, _ := t.table.LoadOrStore(ip, new(int64))
count := v.(*int64)
*count++
}
// Check if the IP is in the table and if it is, check if the count is less than the limit
func (t *IpTableSyncMapInt64) Exceeded(ip string, limit int64) bool {
v, ok := t.table.Load(ip)
if !ok {
return false
}
count := v.(*int64)
return *count >= limit
}
// Get the count of requests for a given IP
func (t *IpTableSyncMapInt64) GetCount(ip string) int64 {
v, ok := t.table.Load(ip)
if !ok {
return 0
}
count := v.(*int64)
return *count
}
// Clear the IP table
func (t *IpTableSyncMapInt64) Clear() {
t.table.Range(func(key, value interface{}) bool {
t.table.Delete(key)
return true
})
}
var ipTableSyncMapInt64 = IpTableSyncMapInt64{}
func handleRateLimitSyncMapInt64(w http.ResponseWriter, r *http.Request, pe *ProxyEndpoint) error {
ip, _, err := net.SplitHostPort(r.RemoteAddr)
if err != nil {
w.WriteHeader(500)
log.Println("Error resolving remote address", r.RemoteAddr, err)
return errors.New("internal server error")
}
ipTableSyncMapInt64.Increment(ip)
if ipTableSyncMapInt64.Exceeded(ip, 10) {
w.WriteHeader(429)
return errors.New("rate limit exceeded")
}
// log.Println("Rate limit check", ip, ipTableSyncMapInt64.GetCount(ip))
return nil
}
func InitRateLimitSyncMapInt64() {
for {
ipTableSyncMapInt64.Clear()
time.Sleep(time.Second)
}
}

View File

@ -0,0 +1,78 @@
package dynamicproxy
import (
"errors"
"log"
"net"
"net/http"
"sync"
"sync/atomic"
"time"
)
// IpTableSyncMapAtomicInt64 is a rate limiter implementation using sync.Map with atomic int64
type IpTableSyncMapAtomicInt64 struct {
table sync.Map
}
// Increment the count of requests for a given IP
func (t *IpTableSyncMapAtomicInt64) Increment(ip string) {
v, _ := t.table.LoadOrStore(ip, new(int64))
atomic.AddInt64(v.(*int64), 1)
}
// Check if the IP is in the table and if it is, check if the count is less than the limit
func (t *IpTableSyncMapAtomicInt64) Exceeded(ip string, limit int64) bool {
v, ok := t.table.Load(ip)
if !ok {
return false
}
count := atomic.LoadInt64(v.(*int64))
return count >= limit
}
// Get the count of requests for a given IP
func (t *IpTableSyncMapAtomicInt64) GetCount(ip string) int64 {
v, ok := t.table.Load(ip)
if !ok {
return 0
}
return atomic.LoadInt64(v.(*int64))
}
// Clear the IP table
func (t *IpTableSyncMapAtomicInt64) Clear() {
t.table.Range(func(key, value interface{}) bool {
t.table.Delete(key)
return true
})
}
var ipTableSyncMapAtomicInt64 = IpTableSyncMapAtomicInt64{}
func handleRateLimitSyncMapAtomicInt64(w http.ResponseWriter, r *http.Request, pe *ProxyEndpoint) error {
ip, _, err := net.SplitHostPort(r.RemoteAddr)
if err != nil {
w.WriteHeader(500)
log.Println("Error resolving remote address", r.RemoteAddr, err)
return errors.New("internal server error")
}
ipTableSyncMapAtomicInt64.Increment(ip)
if ipTableSyncMapAtomicInt64.Exceeded(ip, 10) {
w.WriteHeader(429)
return errors.New("rate limit exceeded")
}
// log.Println("Rate limit check", ip, ipTableSyncMapAtomicInt64.GetCount(ip))
return nil
}
func InitRateLimitSyncMapAtomicInt64() {
for {
ipTableSyncMapAtomicInt64.Clear()
time.Sleep(time.Second)
}
}

View File

@ -124,6 +124,10 @@ type ProxyEndpoint struct {
BasicAuthCredentials []*BasicAuthCredentials //Basic auth credentials
BasicAuthExceptionRules []*BasicAuthExceptionRule //Path to exclude in a basic auth enabled proxy target
// Rate Limiting
EnableRateLimiting bool
RateLimiting int // Rate limit in requests per second
//Access Control
AccessFilterUUID string //Access filter ID