Merge pull request #5702 from oasisprotocol/kostko/fix/rt-abort-incor…

…rect go/runtime/host: Ignore stale abort requests
oasisprotocol · May 24, 2024 · 7f4cb9a · 7f4cb9a
2 parents 6a6ea9e + 6124eb5
commit 7f4cb9a
Show file tree

Hide file tree

Showing 2 changed files with 30 additions and 2 deletions.
diff --git a/.changelog/5702.bugfix.md b/.changelog/5702.bugfix.md
@@ -0,0 +1 @@
+go/runtime/host: Ignore stale abort requests
diff --git a/go/runtime/host/sandbox/sandbox.go b/go/runtime/host/sandbox/sandbox.go
@@ -237,12 +237,21 @@ func (r *sandboxedRuntime) Start() {
 
 // Implements host.Runtime.
 func (r *sandboxedRuntime) Abort(ctx context.Context, force bool) error {
+	// Ignore abort requests when connection is not available.
+	r.RLock()
+	if r.conn == nil {
+		r.RUnlock()
+		return nil
+	}
+	r.RUnlock()
+
 	// Send internal request to the manager goroutine.
 	ch := make(chan error, 1)
 	select {
 	case r.ctrlCh <- &abortRequest{ch: ch, force: force}:
-	case <-ctx.Done():
-		return ctx.Err()
+	default:
+		// If the command channel is full, do not queue more abort requests.
+		return fmt.Errorf("command channel is full")
 	}
 
 	// Wait for response from the manager goroutine.
@@ -564,6 +573,24 @@ func (r *sandboxedRuntime) manager() {
 
 				continue
 			}
+
+			// Ensure the command queue is empty to avoid processing any stale requests after the
+			// runtime restarts.
+		drainLoop:
+			for {
+				select {
+				case grq := <-r.ctrlCh:
+					switch rq := grq.(type) {
+					case *abortRequest:
+						rq.ch <- fmt.Errorf("runtime restarted")
+						close(rq.ch)
+					default:
+						// Ignore unknown requests.
+					}
+				default:
+					break drainLoop
+				}
+			}
 		}
 
 		// Wait for either the runtime or the runtime manager to terminate.