Race Conditions Will Ruin Your Weekend

Last year our food delivery app double-booked riders three times in one week. Two orders assigned to the same person. Angry customers. Refunds. The on-call engineer (me) debugging at 2am.

The bug was simple: two app servers checked if a rider was available at the same millisecond. Both saw "available." Both assigned the order.

This is the classic race condition, and it breaks more systems than you'd expect.

The Naive Approach (Don't Do This)

Here's what our code looked like:

Looks reasonable. Check first, then update. The problem: another server can run the same SELECT between your SELECT and UPDATE. Both think they won.

This pattern is called "check-then-act" and it's broken by design in concurrent systems.

Atomic Operations Fix This

The solution is making the check and update a single atomic operation:

If the row was already booked, zero rows affected. If available, one row updated. No race window.

Check the affected row count. If it's zero, the rider was already taken—find another one.

Distributed Locks (When You Need More)

Sometimes a single SQL statement isn't enough. Maybe you need to check inventory, validate payment, and reserve stock—all atomically.

This is where distributed locks come in. Redis with SET key value NX PX 30000 gives you a lock with expiration. Acquire the lock, do your work, release it.

The NX flag means "only set if not exists"—atomic check-and-set.

Database Constraints as Safety Nets

Even with proper locking, add database constraints. They're your last line of defense:

Now even if your application code has a bug, the database won't let you double-book.

The Pattern

Every time you have a shared resource that can only be assigned once:

Never check-then-act in separate operations
Use atomic updates with WHERE conditions
Add distributed locks for multi-step operations
Add database constraints as backup

The rider problem shows up everywhere. Payment processing. Inventory management. Seat reservations. Event tickets. Any scarce resource.

Get it wrong and you're debugging at 2am. Get it right and you sleep through the night.

Check-then-act is not atomic. That's the whole lesson.

— blanho

Distributed Locks (When You Need More)

Sometimes a single SQL statement isn't enough. Maybe you need to check inventory, validate payment, and reserve stock—all atomically.

This is where distributed locks come in. Redis with SET key value NX PX 30000 gives you a lock with expiration. Acquire the lock, do your work, release it.

The NX flag means "only set if not exists"—atomic check-and-set.

The Pattern

Every time you have a shared resource that can only be assigned once:

Never check-then-act in separate operations

Use atomic updates with WHERE conditions

Add distributed locks for multi-step operations

Add database constraints as backup

The rider problem shows up everywhere. Payment processing. Inventory management. Seat reservations. Event tickets. Any scarce resource.

Get it wrong and you're debugging at 2am. Get it right and you sleep through the night.

Check-then-act is not atomic. That's the whole lesson.

— blanho

Race Conditions Will Ruin Your Weekend

The Naive Approach (Don't Do This)

Atomic Operations Fix This

Distributed Locks (When You Need More)

Database Constraints as Safety Nets

The Pattern

Related Posts

Why Distributed Systems Break

Database Transactions: Everything You Think You Know Is Probably Wrong

Stop Defaulting to UUIDs

Race Conditions Will Ruin Your Weekend

The Naive Approach (Don't Do This)

Atomic Operations Fix This

Distributed Locks (When You Need More)

Database Constraints as Safety Nets

The Pattern

Related Posts

Why Distributed Systems Break

Database Transactions: Everything You Think You Know Is Probably Wrong

Stop Defaulting to UUIDs