fix: malformed SSO cache (#4569)

nkomonen-amazon · web-flow · commit 91258729a8fa · 2024-03-21T16:56:36.000-04:00
Problem:

With some good debugging from Lei, it was discovered that we were getting errors during auth but that they were being lost.

The errors we now see indicate that during a read of the SSO cache, the JSON is malformed.

Solution:

A guess is that multiple writes to a file can happen at the same time.

To mitigate this, when writing cache we will make it more atomic by writing all the content to a temp file, then renaming the temp file to the actual target.

Now, if there is a race condition each write will either fully make it in or be overwritten by the following write. We should now avoid the malformed JSON.

Other findings:

If we do multiple token refreshes in rapid succession, both refreshed access tokens will be valid by the looks of it. I guess there isn't a max of 1 active token. So if we have a race condition for the last access token to be saved to cache it doesn't really matter.

Signed-off-by: Nikolas Komonen &lt;nkomonen@amazon.com&gt;
diff --git a/packages/core/src/shared/utilities/cacheUtils.ts b/packages/core/src/shared/utilities/cacheUtils.ts
@@ -7,6 +7,9 @@ import * as vscode from 'vscode'
 import { dirname } from 'path'
 import { ToolkitError, isFileNotFoundError } from '../errors'
 import { SystemUtilities } from '../systemUtilities'
+import { promises as fsPromises } from 'fs'
+import { isWeb } from '../../common/webUtils'
+import crypto from 'crypto'
 
 // TODO(sijaden): further generalize this concept over async references (maybe create a library?)
 // It's pretty clear that this interface (and VSC's `Memento`) reduce down to what is essentially
@@ -124,7 +127,17 @@ export function createDiskCache<T, K>(
 
             try {
                 await SystemUtilities.createDirectory(dirname(target))
-                await SystemUtilities.writeFile(target, JSON.stringify(data), { mode: 0o600 })
+                if (isWeb()) {
+                    // There is no web-compatible rename() method. So do a regular write.
+                    await SystemUtilities.writeFile(target, JSON.stringify(data), { mode: 0o600 })
+                } else {
+                    // With SSO cache we noticed malformed JSON on read. A guess is that multiple writes
+                    // are occuring at the same time. The following is a bandaid that ensures an all-or-nothing
+                    // write, though there can still be race conditions with which version remains after overwrites.
+                    const tempFile = `${target}.tmp-${crypto.randomBytes(4).toString('hex')}`
+                    await SystemUtilities.writeFile(tempFile, JSON.stringify(data), { mode: 0o600 })
+                    await fsPromises.rename(tempFile, target)
+                }
             } catch (error) {
                 throw ToolkitError.chain(error, `Failed to save "${target}"`, {
                     code: 'FSWriteFailed',
