From 31074bf5022737a06d03872032fae82efa8f7752 Mon Sep 17 00:00:00 2001
From: "nieznany.sprawiciel" <nieznany.sprawiciel@gmail.com>
Date: Wed, 16 Oct 2024 13:33:57 +0200
Subject: [PATCH] Await agreement locks

---
 core/payment/src/api/debit_notes.rs | 9 ++++++++-
 core/payment/src/api/invoices.rs    | 9 ++++++++-
 2 files changed, 16 insertions(+), 2 deletions(-)

diff --git a/core/payment/src/api/debit_notes.rs b/core/payment/src/api/debit_notes.rs
index bf60f12da..eb2edac0a 100644
--- a/core/payment/src/api/debit_notes.rs
+++ b/core/payment/src/api/debit_notes.rs
@@ -318,7 +318,14 @@ async fn accept_debit_note(
     };
 
     // Required to serialize complex DB access patterns related to debit note / invoice acceptances.
-    let _agreement_lock = agreement_lock.lock(debit_note.agreement_id.clone());
+    let _agreement_lock = agreement_lock.lock(debit_note.agreement_id.clone()).await;
+
+    // Query the DebitNote again. We waited under lock, so it could have changed in the meantime.
+    let debit_note: DebitNote = match dao.get(debit_note_id.clone(), node_id).await {
+        Ok(Some(debit_note)) => debit_note,
+        Ok(None) => return response::not_found(),
+        Err(e) => return response::server_error(&e),
+    };
 
     if debit_note.total_amount_due != acceptance.total_amount_accepted {
         return response::bad_request(&"Invalid amount accepted");
diff --git a/core/payment/src/api/invoices.rs b/core/payment/src/api/invoices.rs
index 81f8df64f..850e10e13 100644
--- a/core/payment/src/api/invoices.rs
+++ b/core/payment/src/api/invoices.rs
@@ -426,7 +426,14 @@ async fn accept_invoice(
     };
 
     // Required to serialize complex DB access patterns related to debit note / invoice acceptances.
-    let _agreement_lock = agreement_lock.lock(invoice.agreement_id.clone());
+    let _agreement_lock = agreement_lock.lock(invoice.agreement_id.clone()).await;
+
+    // Query the Invoice again. We waited under lock, so it could have changed in the meantime.
+    let invoice = match dao.get(invoice_id.clone(), node_id).await {
+        Ok(Some(invoice)) => invoice,
+        Ok(None) => return response::not_found(),
+        Err(e) => return response::server_error(&e),
+    };
 
     if invoice.amount != acceptance.total_amount_accepted {
         return response::bad_request(&"Invalid amount accepted");