Procházet zdrojové kódy

construct rate limit

Vladislav Yarmak před 2 roky
rodič
revize
00344d01e6
3 změnil soubory, kde provedl 34 přidání a 1 odebrání
  1. 28 0
      cmd/dtlspipe/main.go
  2. 2 1
      go.mod
  3. 4 0
      go.sum

+ 28 - 0
cmd/dtlspipe/main.go

@@ -5,6 +5,7 @@ import (
 	"flag"
 	"fmt"
 	"log"
+	"net/netip"
 	"os"
 	"os/signal"
 	"runtime/pprof"
@@ -17,6 +18,7 @@ import (
 	"github.com/Snawoot/dtlspipe/keystore"
 	"github.com/Snawoot/dtlspipe/server"
 	"github.com/Snawoot/dtlspipe/util"
+	"github.com/Snawoot/rlzone"
 )
 
 const (
@@ -58,6 +60,30 @@ func (l *curvelistArg) Set(s string) error {
 	return nil
 }
 
+type ratelimitArg struct {
+	value rlzone.Ratelimiter[netip.Addr]
+}
+
+func (r *ratelimitArg) String() string {
+	if r == nil || r.value == nil {
+		return ""
+	}
+	return r.value.String()
+}
+
+func (r *ratelimitArg) Set(s string) error {
+	if s == "" {
+		r.value = nil
+		return nil
+	}
+	rl, err := rlzone.FromString[netip.Addr](s)
+	if err != nil {
+		return err
+	}
+	r.value = rl
+	return nil
+}
+
 var (
 	version = "undefined"
 
@@ -73,12 +99,14 @@ var (
 	curves          = curvelistArg{}
 	staleMode       = util.EitherStale
 	timeLimit       = flag.Duration("time-limit", 0, "hard time limit for each session")
+	rateLimit       = ratelimitArg{rlzone.Must(rlzone.NewSmallest[netip.Addr](1*time.Minute, 20))}
 )
 
 func init() {
 	flag.Var(&ciphersuites, "ciphers", "colon-separated list of ciphers to use")
 	flag.Var(&curves, "curves", "colon-separated list of curves to use")
 	flag.Var(&staleMode, "stale-mode", "which stale side of connection makes whole session stale (both, either, left, right)")
+	flag.Var(&rateLimit, "rate-limit", "limit for incoming connections rate. Format: <limit>/<time duration> or empty string to disable")
 }
 
 func usage() {

+ 2 - 1
go.mod

@@ -1,8 +1,9 @@
 module github.com/Snawoot/dtlspipe
 
-go 1.21.0
+go 1.21.1
 
 require (
+	github.com/Snawoot/rlzone v0.2.0 // indirect
 	github.com/pion/dtls/v2 v2.2.7 // indirect
 	github.com/pion/logging v0.2.2 // indirect
 	github.com/pion/transport/v2 v2.2.1 // indirect

+ 4 - 0
go.sum

@@ -1,3 +1,7 @@
+github.com/Snawoot/rlzone v0.1.0 h1:C1TH+KzURJ4dGVPiXpzP4Jh9vmfSE6TRy4LsqazqU+Y=
+github.com/Snawoot/rlzone v0.1.0/go.mod h1:5yK8f9nJSOAPizq2LZ35arkortJhjFx1eO6ckOQCnwQ=
+github.com/Snawoot/rlzone v0.2.0 h1:l/Gl8ncAdCjdalZlE7THD4xlwCnvn6jCF3hsiL4SmWQ=
+github.com/Snawoot/rlzone v0.2.0/go.mod h1:5yK8f9nJSOAPizq2LZ35arkortJhjFx1eO6ckOQCnwQ=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/pion/dtls/v2 v2.2.7 h1:cSUBsETxepsCSFSxC3mc/aDo14qQLMSL+O6IjG28yV8=