ossf/scorecard
1
1
Fork 0
mirror of https://github.com/ossf/scorecard.git synced 2024-09-19 13:07:17 +03:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity

Fix-Using Roundrobin tokens across multiple calls (#284)

Browse Source 
The GitHub tokens are picked from a list for each call using Roundrobin approach.
This commit is contained in:
Naveen 2021-03-17 17:41:29 -04:00 committed by GitHub
parent 8333f1e328
commit 7ff09db2ed
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 27 additions and 21 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
pkg/scorecard.go
View File

@ -81,6 +81,12 @@ func (r *RepoURL) Set(s string) error {
func RunScorecards(ctx context.Context, logger *zap.SugaredLogger,
repo RepoURL, checksToRun []checker.NamedCheck) <-chan Result {
resultsCh := make(chan Result)
wg := sync.WaitGroup{}
for _, check := range checksToRun {
check := check
wg.Add(1)
go func() {
// Use our custom roundtripper
rt := roundtripper.NewTransport(ctx, logger)
@ -98,13 +104,6 @@ func RunScorecards(ctx context.Context, logger *zap.SugaredLogger,
Repo: repo.Repo,
GraphClient: graphClient,
}
resultsCh := make(chan Result)
wg := sync.WaitGroup{}
for _, check := range checksToRun {
check := check
wg.Add(1)
go func() {
defer wg.Done()
runner := checker.Runner{Checker: c}
r := runner.Run(check.Fn)

13
roundtripper/roundtripper.go
View File

@ -44,6 +44,8 @@ const (
BucketURL = "BLOB_URL"
)
var counter int64
// RateLimitRoundTripper is a rate-limit aware http.Transport for Github.
type RateLimitRoundTripper struct {
Logger *zap.SugaredLogger
@ -51,13 +53,16 @@ type RateLimitRoundTripper struct {
}
type RoundRobinTokenSource struct {
counter int64
AccessTokens []string
log *zap.SugaredLogger
}
func (r *RoundRobinTokenSource) Token() (*oauth2.Token, error) {
c := atomic.AddInt64(&r.counter, 1)
index := c % int64(len(r.AccessTokens))
c := atomic.AddInt64(&counter, 1)
// not locking it because it is never modified
l := len(r.AccessTokens)
index := c % int64(l)
r.log.Infof("using token %d of total %d.", index, l)
return &oauth2.Token{
AccessToken: r.AccessTokens[index],
}, nil
@ -70,6 +75,7 @@ func NewTransport(ctx context.Context, logger *zap.SugaredLogger) http.RoundTrip
if token := os.Getenv(GithubAuthToken); token != "" {
ts := &RoundRobinTokenSource{
AccessTokens: strings.Split(token, ","),
log: logger,
}
transport = oauth2.NewClient(ctx, ts).Transport
} else if keyPath := os.Getenv(GithubAppKeyPath); keyPath != "" { // Also try a GITHUB_APP
@ -171,5 +177,6 @@ func (gh *RateLimitRoundTripper) RoundTrip(r *http.Request) (*http.Response, err
gh.Logger.Warnf("Rate limit exceeded. Retrying...")
return gh.RoundTrip(r)
}
return resp, nil
}