[chore] Fix race in the launcher

[cedric-cordenier]

Flagged by @jmank88 , there's a potential race in the launcher where we add to subservices and try to read them at the same time.

[github-actions]

👋 cedric-cordenier, thanks for creating this pull request!

To help reviewers, please consider creating future PRs as drafts first. This allows you to self-review and make any final changes before notifying the team.

Once you're ready, you can mark it as "Ready for review" to request feedback. Thanks!

[github-actions]

I see you updated files related to core. Please run make gocs in the root directory to add a changeset as well as in the text include at least one of the following tags:

• #added For any new functionality added.
• #breaking_change For any functionality that requires manual action for the node to boot.
• #bugfix For bug fixes.
• #changed For any change to the existing functionality.
• #db_update For any feature that introduces updates to database schema.
• #deprecation_notice For any upcoming deprecation functionality.
• #internal For changesets that need to be excluded from the final changelog.
• #nops For any feature that is NOP facing and needs to be in the official Release Notes for the release.
• #removed For any functionality/config that is removed.
• #updated For any functionality that is updated.
• #wip For any change that is not ready yet and external communication about it should be held off till it is feature complete.

[github-actions]

✅ No conflicts with other open PRs targeting develop

[Copilot]

Pull request overview

Risk Rating: MEDIUM (concurrency change in core capabilities launcher shutdown/service lifecycle)

This PR addresses a data race in the capabilities launcher by synchronizing access to the subServices slice, which is used to track started sub-services for later shutdown.

Changes:

• Add a mutex (subServicesMux) to guard concurrent reads/writes to launcher.subServices.
• Route all subServices appends through a new helper (appendSubService) that takes the write lock.
• Add locking in Close() to prevent concurrent modification while iterating sub-services.

[Copilot]

Close() holds subServicesMux.RLock() while calling s.Close() on each sub-service. Calling into external code while holding a lock can lead to lock contention and potential deadlocks; it also blocks concurrent appendSubService calls for the duration of every sub-service close. Consider copying w.subServices under the lock, releasing the lock, and then iterating/closing the snapshot.

Suggested change

	defer w.subServicesMux.RUnlock()
	for _, s := range w.subServices {
	subServices := make([]services.ServiceCtx, 0, len(w.subServices))
	subServices = append(subServices, w.subServices...)
	w.subServicesMux.RUnlock()
	for _, s := range subServices {

[Copilot]

This PR introduces new synchronization around subServices, but there isn't a regression test covering concurrent Close() vs. sub-service registration. Since the repo runs Go race tests, consider adding a unit test that concurrently calls appendSubService/receiver start paths and Close() to ensure this race stays fixed (and to avoid future refactors reintroducing it).

[cl-sonarqube-production]

Quality Gate passed

Issues
0 New issues
0 Fixed issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube

[trunk-io]

     

View Full Report ↗︎ ⋅ Docs