add back tracking of forwarded ports to avoid race condition (#1780)

Author: nkubala

pkg/skaffold/event/server.go

@@ -20,6 +20,7 @@ import (
 	"context"
 	"fmt"
 	"net"
+	"sync"
 
 	"github.com/GoogleContainerTools/skaffold/pkg/skaffold/constants"
 	"github.com/GoogleContainerTools/skaffold/pkg/skaffold/event/proto"
@@ -69,7 +70,7 @@ func newStatusServer(originalPort int) (func() error, error) {
 	if originalPort == -1 {
 		return func() error { return nil }, nil
 	}
-	port := util.GetAvailablePort(originalPort)
+	port := util.GetAvailablePort(originalPort, &sync.Map{})
 	if port != originalPort && originalPort != constants.DefaultRPCPort {
 		logrus.Warnf("provided port %d already in use: using %d instead", originalPort, port)
 	}

pkg/skaffold/kubernetes/port_forward.go

@@ -23,6 +23,7 @@ import (
 	"io"
 	"os/exec"
 	"strconv"
+	"sync"
 
 	"github.com/GoogleContainerTools/skaffold/pkg/skaffold/color"
 	"github.com/GoogleContainerTools/skaffold/pkg/skaffold/event"
@@ -45,6 +46,9 @@ type PortForwarder struct {
 
 	// forwardedPods is a map of portForwardEntry.key() (string) -> portForwardEntry
 	forwardedPods map[string]*portForwardEntry
+
+	// forwardedPorts serves as a synchronized set of ports we've forwarded.
+	forwardedPorts *sync.Map
 }
 
 type portForwardEntry struct {
@@ -69,7 +73,6 @@ type kubectlForwarder struct{}
 var (
 	// For testing
 	retrieveAvailablePort = util.GetAvailablePort
-	isPortAvailable       = util.IsPortAvailable
 )
 
 // Forward port-forwards a pod using kubectl port-forward
@@ -121,11 +124,12 @@ func (*kubectlForwarder) Terminate(p *portForwardEntry) {
 // NewPortForwarder returns a struct that tracks and port-forwards pods as they are created and modified
 func NewPortForwarder(out io.Writer, podSelector PodSelector, namespaces []string) *PortForwarder {
 	return &PortForwarder{
-		Forwarder:     &kubectlForwarder{},
-		output:        out,
-		podSelector:   podSelector,
-		namespaces:    namespaces,
-		forwardedPods: make(map[string]*portForwardEntry),
+		Forwarder:      &kubectlForwarder{},
+		output:         out,
+		podSelector:    podSelector,
+		namespaces:     namespaces,
+		forwardedPods:  make(map[string]*portForwardEntry),
+		forwardedPorts: &sync.Map{},
 	}
 }
 
@@ -225,7 +229,7 @@ func (p *PortForwarder) getCurrentEntry(pod *v1.Pod, c v1.Container, port v1.Con
 	}
 
 	// retrieve an open port on the host
-	entry.localPort = int32(retrieveAvailablePort(int(port.ContainerPort)))
+	entry.localPort = int32(retrieveAvailablePort(int(port.ContainerPort), p.forwardedPorts))
 	return entry
 }
 
@@ -248,7 +252,7 @@ func (p *PortForwarder) forward(ctx context.Context, entry *portForwardEntry) er
 
 // Key is an identifier for the lock on a port during the skaffold dev cycle.
 func (p *portForwardEntry) key() string {
-	return fmt.Sprintf("%s-%d", p.containerName, p.port)
+	return fmt.Sprintf("%s-%s-%s-%d", p.containerName, p.podName, p.namespace, p.port)
 }
 
 // String is a utility function that returns the port forward entry as a user-readable string

pkg/skaffold/kubernetes/port_forward_test.go

@@ -21,6 +21,7 @@ import (
 	"fmt"
 	"io/ioutil"
 	"reflect"
+	"sync"
 	"testing"
 
 	"github.com/GoogleContainerTools/skaffold/pkg/skaffold/util"
@@ -47,9 +48,9 @@ func (f *testForwarder) Terminate(pfe *portForwardEntry) {
 	delete(f.forwardedPorts, pfe.port)
 }
 
-func mockRetrieveAvailablePort(taken map[int]struct{}, availablePorts []int) func(int) int {
+func mockRetrieveAvailablePort(taken map[int]struct{}, availablePorts []int) func(int, *sync.Map) int {
 	// Return first available port in ports that isn't taken
-	return func(int) int {
+	return func(int, *sync.Map) int {
 		for _, p := range availablePorts {
 			if _, ok := taken[p]; ok {
 				continue
@@ -61,22 +62,6 @@ func mockRetrieveAvailablePort(taken map[int]struct{}, availablePorts []int) fun
 	}
 }
 
-func mockIsPortAvailable(taken map[int]struct{}, availablePorts []int) func(int) bool {
-	// Return true if p is in availablePorts and is not in taken
-	return func(p int) bool {
-		if _, ok := taken[p]; ok {
-			return false
-		}
-		for _, port := range availablePorts {
-			if p == port {
-				taken[p] = struct{}{}
-				return true
-			}
-		}
-		return false
-	}
-}
-
 func newTestForwarder(forwardErr error) *testForwarder {
 	return &testForwarder{
 		forwardedEntries: map[string]*portForwardEntry{},
@@ -102,10 +87,11 @@ func TestPortForwardPod(t *testing.T) {
 			},
 			availablePorts: []int{8080},
 			expectedEntries: map[string]*portForwardEntry{
-				"containername-8080": {
+				"containername-podname-namespace-8080": {
 					resourceVersion: 1,
 					podName:         "podname",
 					containerName:   "containername",
+					namespace:       "namespace",
 					port:            8080,
 					localPort:       8080,
 				},
@@ -115,6 +101,7 @@ func TestPortForwardPod(t *testing.T) {
 					ObjectMeta: metav1.ObjectMeta{
 						Name:            "podname",
 						ResourceVersion: "1",
+						Namespace:       "namespace",
 					},
 					Spec: v1.PodSpec{
 						Containers: []v1.Container{
@@ -137,10 +124,11 @@ func TestPortForwardPod(t *testing.T) {
 				9000: true,
 			},
 			expectedEntries: map[string]*portForwardEntry{
-				"containername-8080": {
+				"containername-podname-namespace-8080": {
 					resourceVersion: 1,
 					podName:         "podname",
 					containerName:   "containername",
+					namespace:       "namespace",
 					port:            8080,
 					localPort:       9000,
 				},
@@ -151,6 +139,7 @@ func TestPortForwardPod(t *testing.T) {
 					ObjectMeta: metav1.ObjectMeta{
 						Name:            "podname",
 						ResourceVersion: "1",
+						Namespace:       "namespace",
 					},
 					Spec: v1.PodSpec{
 						Containers: []v1.Container{
@@ -178,6 +167,7 @@ func TestPortForwardPod(t *testing.T) {
 					ObjectMeta: metav1.ObjectMeta{
 						Name:            "podname",
 						ResourceVersion: "10000000000a",
+						Namespace:       "namespace",
 					},
 					Spec: v1.PodSpec{
 						Containers: []v1.Container{
@@ -203,10 +193,11 @@ func TestPortForwardPod(t *testing.T) {
 			shouldErr:      true,
 			availablePorts: []int{8080},
 			expectedEntries: map[string]*portForwardEntry{
-				"containername-8080": {
+				"containername-podname-namespace-8080": {
 					resourceVersion: 1,
 					podName:         "podname",
 					containerName:   "containername",
+					namespace:       "namespace",
 					port:            8080,
 					localPort:       8080,
 				},
@@ -216,6 +207,7 @@ func TestPortForwardPod(t *testing.T) {
 					ObjectMeta: metav1.ObjectMeta{
 						Name:            "podname",
 						ResourceVersion: "1",
+						Namespace:       "namespace",
 					},
 					Spec: v1.PodSpec{
 						Containers: []v1.Container{
@@ -240,17 +232,19 @@ func TestPortForwardPod(t *testing.T) {
 			},
 			availablePorts: []int{8080, 50051},
 			expectedEntries: map[string]*portForwardEntry{
-				"containername-8080": {
+				"containername-podname-namespace-8080": {
 					resourceVersion: 1,
 					podName:         "podname",
 					containerName:   "containername",
+					namespace:       "namespace",
 					port:            8080,
 					localPort:       8080,
 				},
-				"containername2-50051": {
+				"containername2-podname2-namespace2-50051": {
 					resourceVersion: 1,
 					podName:         "podname2",
 					containerName:   "containername2",
+					namespace:       "namespace2",
 					port:            50051,
 					localPort:       50051,
 				},
@@ -260,6 +254,7 @@ func TestPortForwardPod(t *testing.T) {
 					ObjectMeta: metav1.ObjectMeta{
 						Name:            "podname",
 						ResourceVersion: "1",
+						Namespace:       "namespace",
 					},
 					Spec: v1.PodSpec{
 						Containers: []v1.Container{
@@ -278,6 +273,7 @@ func TestPortForwardPod(t *testing.T) {
 					ObjectMeta: metav1.ObjectMeta{
 						Name:            "podname2",
 						ResourceVersion: "1",
+						Namespace:       "namespace2",
 					},
 					Spec: v1.PodSpec{
 						Containers: []v1.Container{
@@ -302,17 +298,19 @@ func TestPortForwardPod(t *testing.T) {
 			},
 			availablePorts: []int{8080, 9000},
 			expectedEntries: map[string]*portForwardEntry{
-				"containername-8080": {
+				"containername-podname-namespace-8080": {
 					resourceVersion: 1,
 					podName:         "podname",
 					containerName:   "containername",
+					namespace:       "namespace",
 					port:            8080,
 					localPort:       8080,
 				},
-				"containername2-8080": {
+				"containername2-podname2-namespace2-8080": {
 					resourceVersion: 1,
 					podName:         "podname2",
 					containerName:   "containername2",
+					namespace:       "namespace2",
 					port:            8080,
 					localPort:       9000,
 				},
@@ -322,6 +320,7 @@ func TestPortForwardPod(t *testing.T) {
 					ObjectMeta: metav1.ObjectMeta{
 						Name:            "podname",
 						ResourceVersion: "1",
+						Namespace:       "namespace",
 					},
 					Spec: v1.PodSpec{
 						Containers: []v1.Container{
@@ -340,6 +339,7 @@ func TestPortForwardPod(t *testing.T) {
 					ObjectMeta: metav1.ObjectMeta{
 						Name:            "podname2",
 						ResourceVersion: "1",
+						Namespace:       "namespace2",
 					},
 					Spec: v1.PodSpec{
 						Containers: []v1.Container{
@@ -363,10 +363,11 @@ func TestPortForwardPod(t *testing.T) {
 			},
 			availablePorts: []int{8080},
 			expectedEntries: map[string]*portForwardEntry{
-				"containername-8080": {
+				"containername-podname-namespace-8080": {
 					resourceVersion: 2,
 					podName:         "podname",
 					containerName:   "containername",
+					namespace:       "namespace",
 					port:            8080,
 					localPort:       8080,
 				},
@@ -376,6 +377,7 @@ func TestPortForwardPod(t *testing.T) {
 					ObjectMeta: metav1.ObjectMeta{
 						Name:            "podname",
 						ResourceVersion: "1",
+						Namespace:       "namespace",
 					},
 					Spec: v1.PodSpec{
 						Containers: []v1.Container{
@@ -394,6 +396,7 @@ func TestPortForwardPod(t *testing.T) {
 					ObjectMeta: metav1.ObjectMeta{
 						Name:            "podname",
 						ResourceVersion: "2",
+						Namespace:       "namespace",
 					},
 					Spec: v1.PodSpec{
 						Containers: []v1.Container{
@@ -422,12 +425,6 @@ func TestPortForwardPod(t *testing.T) {
 				retrieveAvailablePort = originalGetAvailablePort
 			}()
 
-			originalIsPortAvailable := isPortAvailable
-			isPortAvailable = mockIsPortAvailable(taken, test.availablePorts)
-			defer func() {
-				isPortAvailable = originalIsPortAvailable
-			}()
-
 			p := NewPortForwarder(ioutil.Discard, NewImageList(), []string{""})
 			if test.forwarder == nil {
 				test.forwarder = newTestForwarder(nil)

pkg/skaffold/util/port.go

@@ -19,6 +19,7 @@ package util
 import (
 	"fmt"
 	"net"
+	"sync"
 
 	"github.com/sirupsen/logrus"
 )
@@ -29,21 +30,25 @@ import (
 // If not, return a random port, which hopefully won't collide with any future containers
 
 // See https://www.iana.org/assignments/service-names-port-numbers/service-names-port-numbers.txt,
-func GetAvailablePort(port int) int {
-	if IsPortAvailable(port) {
+func GetAvailablePort(port int, forwardedPorts *sync.Map) int {
+	if isPortAvailable(port, forwardedPorts) {
+		forwardedPorts.Store(port, true)
 		return port
 	}
 
 	// try the next 10 ports after the provided one
-	for port = 0; port < 10; port++ {
-		if IsPortAvailable(port) {
+	for i := 0; i < 10; i++ {
+		port++
+		if isPortAvailable(port, forwardedPorts) {
 			logrus.Debugf("found open port: %d", port)
+			forwardedPorts.Store(port, true)
 			return port
 		}
 	}
 
 	for port = 4503; port <= 4533; port++ {
-		if IsPortAvailable(port) {
+		if isPortAvailable(port, forwardedPorts) {
+			forwardedPorts.Store(port, true)
 			return port
 		}
 	}
@@ -55,10 +60,15 @@ func GetAvailablePort(port int) int {
 	if err != nil {
 		return -1
 	}
-	return l.Addr().(*net.TCPAddr).Port
+	p := l.Addr().(*net.TCPAddr).Port
+	forwardedPorts.Store(p, true)
+	return p
 }
 
-func IsPortAvailable(p int) bool {
+func isPortAvailable(p int, forwardedPorts *sync.Map) bool {
+	if _, ok := forwardedPorts.Load(p); ok {
+		return false
+	}
 	l, err := net.Listen("tcp", fmt.Sprintf(":%d", p))
 	if l != nil {
 		defer l.Close()