Fix race condition in job status updates #196

New Issue

Closed

opened 2026-02-02 17:27:09 +00:00 by jason.woltje · 0 comments

jason.woltje commented 2026-02-02 17:27:09 +00:00

Owner

Copy Link

Problem

Job status updates use read-then-update pattern that allows concurrent updates to violate state machine invariants.

Location

apps/api/src/coordinator-integration/coordinator-integration.service.ts:103-152

// T1: Read current status
const job = await this.prisma.runnerJob.findUnique({...});

// T2: Validate transition  
if (!this.isValidStatusTransition(job.status, dto.status)) {
  throw new BadRequestException();
}

// T3: Update (RACE: Another request could update between read and write)
const updatedJob = await this.prisma.runnerJob.update({...});

Race Scenario

Time | Request A (→RUNNING)    | Request B (→CANCELLED)
-----|-------------------------|------------------------
T1   | Read: status=PENDING    |
T2   |                         | Read: status=PENDING
T3   | Validate: PENDING→RUNNING ✓ |
T4   |                         | Validate: PENDING→CANCELLED ✓
T5   | Update: RUNNING         |
T6   |                         | Update: CANCELLED ✓
T7   | Job=CANCELLED (wrong!)  |

Impact

• Invalid state transitions allowed
• Lost updates (RUNNING overwritten by stale CANCELLED)
• Event ordering confusion
• Herald broadcasts conflicting statuses

Acceptance Criteria

• Implement optimistic locking with database constraint
• Use atomic check-and-set operations
• Return conflict errors with current state
• Add tests for concurrent updates
• Add retry logic in coordinator

Implementation

async updateJobStatus(jobId: string, dto: UpdateJobStatusDto) {
  // Atomic check-and-set with raw SQL
  const result = await this.prisma.$executeRaw`
    UPDATE runner_jobs 
    SET status = ${dto.status}, updated_at = NOW()
    WHERE id = ${jobId} 
      AND status = ${expectedCurrentStatus}
    RETURNING *
  `;
  
  if (result.rowCount === 0) {
    const current = await this.prisma.runnerJob.findUnique({...});
    throw new ConflictException(
      `Status changed from ${expectedCurrentStatus} to ${current.status}`
    );
  }
  
  await this.emitStatusChange(jobId, dto.status);
}

Testing

• Test concurrent updates cause conflicts
• Test retry succeeds with current state
• Test valid transitions allowed
• Test invalid transitions blocked

References

M4.2-Infrastructure verification report (2026-02-02)

## Problem Job status updates use read-then-update pattern that allows concurrent updates to violate state machine invariants. ## Location apps/api/src/coordinator-integration/coordinator-integration.service.ts:103-152 ```typescript // T1: Read current status const job = await this.prisma.runnerJob.findUnique({...}); // T2: Validate transition if (!this.isValidStatusTransition(job.status, dto.status)) { throw new BadRequestException(); } // T3: Update (RACE: Another request could update between read and write) const updatedJob = await this.prisma.runnerJob.update({...}); ``` ## Race Scenario ``` Time | Request A (→RUNNING) | Request B (→CANCELLED) -----|-------------------------|------------------------ T1 | Read: status=PENDING | T2 | | Read: status=PENDING T3 | Validate: PENDING→RUNNING ✓ | T4 | | Validate: PENDING→CANCELLED ✓ T5 | Update: RUNNING | T6 | | Update: CANCELLED ✓ T7 | Job=CANCELLED (wrong!) | ``` ## Impact - Invalid state transitions allowed - Lost updates (RUNNING overwritten by stale CANCELLED) - Event ordering confusion - Herald broadcasts conflicting statuses ## Acceptance Criteria - [ ] Implement optimistic locking with database constraint - [ ] Use atomic check-and-set operations - [ ] Return conflict errors with current state - [ ] Add tests for concurrent updates - [ ] Add retry logic in coordinator ## Implementation ```typescript async updateJobStatus(jobId: string, dto: UpdateJobStatusDto) { // Atomic check-and-set with raw SQL const result = await this.prisma.$executeRaw` UPDATE runner_jobs SET status = ${dto.status}, updated_at = NOW() WHERE id = ${jobId} AND status = ${expectedCurrentStatus} RETURNING * `; if (result.rowCount === 0) { const current = await this.prisma.runnerJob.findUnique({...}); throw new ConflictException( `Status changed from ${expectedCurrentStatus} to ${current.status}` ); } await this.emitStatusChange(jobId, dto.status); } ``` ## Testing - [ ] Test concurrent updates cause conflicts - [ ] Test retry succeeds with current state - [ ] Test valid transitions allowed - [ ] Test invalid transitions blocked ## References M4.2-Infrastructure verification report (2026-02-02)

jason.woltje added this to the M4.2-Infrastructure (0.0.4) milestone 2026-02-02 17:27:09 +00:00

jason.woltje added the p2apiapi labels 2026-02-02 17:27:09 +00:00

jason.woltje closed this issue 2026-02-02 18:51:42 +00:00

jason.woltje referenced this issue from a commit 2026-02-02 19:00:53 +00:00

fix(#196): fix race condition in job status updates

jason.woltje referenced this issue from a commit 2026-02-02 19:32:41 +00:00

fix(#196, #199): Fix TypeScript errors from race condition and throttler changes

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

fix/orchestrator-widget-endpoints

fix/dashboard-widget-mock-data

fix/ci-glibc-image

fix/dockerfile-npmrc

fix/matrix-native-binary

fix/kaniko-cache

fix/base-image-kaniko-v2

fix/base-image-kaniko

feat/custom-base-image

ci/pnpm-cache

fix/interceptor-tests

fix/kanban-tests

feat/wire-chat

feat/usage-widget

fix/security-hardening

fix/project-domain-v2

feat/kanban-add-task

fix/project-domain-attach

fix/logs-page-clean

fix/workspace-members

fix/ci-lint-632

fix/file-manager-tags

fix/csrf-debug-log

fix/controller-type-imports

fix/system-admin-env

fix/gateway-cors-trusted-origins

feat/project-detail-page

fix/fleet-provider-form-dto-v2

fix/ms22-audit

fix/orchestrator-widgets

fix/fleet-provider-form-dto

fix/csrf-bearer-bypass

fix/ms22-missing-authmodule-imports

fix/container-lifecycle-config-module

fix/swarm-compose-ms22-vars

chore/ms22-p1-complete

feat/ms22-p1h-settings-ui

feat/ms22-p1f-onboarding-ui

feat/ms22-p1i-chat-proxy

feat/ms22-p1k-idle-reaper

feat/ms22-p1j-docker

feat/ms22-p1e-onboarding-api

feat/ms22-p1g-settings-api

feat/ms22-p1d-container-mgr

feat/ms22-p1c-config-api

chore/ms22-prd-tracking

feat/ms22-p1a-schema

feat/ms22-p1b-crypto

chore/ms22-p1-tasks

docs/ms22-architecture

feat/ms22-openclaw-docker

feat/ms22-openclaw-gateway-module

chore/ms21-complete

chore/ms21-final-tasks-done

fix/ms21-ui-001-qa

test/ms21-ui-tests

chore/ms21-tasks-sync

chore/ms22-phase0-complete

feat/ms22-ingest-clean

feat/ms21-ui-users-members

feat/ms22-task-agent

chore/tasks-final

chore/tasks-update

feat/ms21-session-invalidation

feat/ms21-rbac-settings

feat/ms21-teams-page

feat/ms21-users-page

feat/ms19-terminal-persistence

v0.0.21

v0.20.0

v0.0.15

v0.0.2

Labels

Clear labels

ai

AI/LLM integration

api

Backend/API work

api

auth

Authentication

database

database

Database/schema work

devops

Docker/deployment

docs

Documentation

frontend

graph

knowledge-module

migration

Data migration

orchestrator

Orchestrator service (apps/orchestrator/)

p0

Critical priority

p1

High priority

p2

Medium priority

p3

Low priority

performance

Performance work

phase-1

phase-2

phase-3

phase-4

phase-5

plugin

MoltBot plugin work

search

security

Security-related

setup

Initial setup

testing

Testing/QA

web

Frontend work

No Label api api p2

Milestone

No items

No Milestone M4.2-Infrastructure (0.0.4)

Projects

Clear projects

No project

Assignees

Clear assignees

jason.woltje

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: mosaic/stack#196