Clean up lockfiles on takeLock step failure

We don't want any Supervisor lockfiles to remain on the device when a takeLock step fails because this would interfere with the user app. Signed-off-by: Christina Ying Wang <christina@balena.io>
2025-04-16 23:38:52 +00:00 · 2024-03-14 01:08:27 -07:00 · 2024-03-14 01:08:27 -07:00 · fd7d58f89a
commit fd7d58f89a
parent fb1bd33ab6
2 changed files with 52 additions and 0 deletions
--- a/src/lib/update-lock.ts
+++ b/src/lib/update-lock.ts
@ -103,7 +103,16 @@ export async function takeLock(
 			actuallyLocked.push(service);
 		}
 		return actuallyLocked;
+	} catch (err) {
+		// If something errors while taking the lock, we should remove any
+		// lockfiles that may have been created so that all services return
+		// to unlocked status.
+		await dispose(appId, release);
+		// Re-throw error to be handled in caller
+		throw err;
 	} finally {
+		// If not already released from catch, released the RW process lock.
+		// If already released, this will not error.
 		release();
 	}
 }
--- a/test/integration/lib/update-lock.spec.ts
+++ b/test/integration/lib/update-lock.spec.ts
@ -4,6 +4,7 @@ import { promises as fs } from 'fs';
 import { testfs } from 'mocha-pod';
 import type { TestFs } from 'mocha-pod';
 import { setTimeout } from 'timers/promises';
+import { watch } from 'chokidar';

 import * as updateLock from '~/lib/update-lock';
 import { UpdatesLockedError } from '~/lib/errors';
@ -604,6 +605,48 @@ describe('lib/update-lock', () => {
 					serviceLockPaths[1],
 				);
 			});
+
+			it('should release locks when takeLock step errors to return services to unlocked state', async () => {
+				const svcs = ['server', 'client'];
+
+				// Take lock for second service of two services
+				await lockfile.lock(`${lockdir}/1/${svcs[1]}/updates.lock`);
+				expect(await lockfile.getLocksTaken(lockdir)).to.deep.include.members([
+					`${lockdir}/1/${svcs[1]}/updates.lock`,
+				]);
+
+				// Watch for added files, as Supervisor-taken locks should be added
+				// then removed within updateLock.takeLock
+				const addedFiles: string[] = [];
+				const watcher = watch(lockdir).on('add', (p) => addedFiles.push(p));
+
+				// updateLock.takeLock should error
+				await expect(updateLock.takeLock(1, svcs, false)).to.be.rejectedWith(
+					UpdatesLockedError,
+				);
+
+				// Service without user lock should have been locked by Supervisor..
+				expect(addedFiles).to.deep.include.members([
+					`${lockdir}/1/${svcs[0]}/updates.lock`,
+					`${lockdir}/1/${svcs[0]}/resin-updates.lock`,
+				]);
+
+				// ..but upon error, Supervisor-taken locks should have been cleaned up
+				expect(
+					await lockfile.getLocksTaken(lockdir),
+				).to.not.deep.include.members([
+					`${lockdir}/1/${svcs[0]}/updates.lock`,
+					`${lockdir}/1/${svcs[0]}/resin-updates.lock`,
+				]);
+
+				// User lock should be left behind
+				expect(await lockfile.getLocksTaken(lockdir)).to.deep.include.members([
+					`${lockdir}/1/${svcs[1]}/updates.lock`,
+				]);
+
+				// Clean up watcher
+				await watcher.close();
+			});
 		});

 		describe('releaseLock', () => {