fix: address review findings — relay serialization, pagination state, query counter, dialog guard

datlechin · datlechin · commit 1a2c348a6ce9 · 2026-03-16T11:35:37.000+07:00
diff --git a/TablePro/Core/Database/DatabaseManager.swift b/TablePro/Core/Database/DatabaseManager.swift
@@ -44,7 +44,7 @@ final class DatabaseManager {
     /// Tracks connections with user queries currently in-flight.
     /// The health monitor skips pings while a query is running to avoid
     /// racing on non-thread-safe driver connections.
-    private var queriesInFlight: Set<UUID> = []
+    private var queriesInFlight: [UUID: Int] = [:]
 
     /// Current session (computed from currentSessionId)
     var currentSession: ConnectionSession? {
@@ -320,8 +320,14 @@ final class DatabaseManager {
             throw DatabaseError.notConnected
         }
 
-        queriesInFlight.insert(sessionId)
-        defer { queriesInFlight.remove(sessionId) }
+        queriesInFlight[sessionId, default: 0] += 1
+        defer {
+            if let count = queriesInFlight[sessionId], count > 1 {
+                queriesInFlight[sessionId] = count - 1
+            } else {
+                queriesInFlight.removeValue(forKey: sessionId)
+            }
+        }
         return try await driver.execute(query: query)
     }
 
@@ -461,7 +467,7 @@ final class DatabaseManager {
                 guard let self else { return false }
                 // Skip ping while a user query is in-flight to avoid racing
                 // on the same non-thread-safe driver connection.
-                guard await !self.queriesInFlight.contains(connectionId) else { return true }
+                guard await self.queriesInFlight[connectionId] == nil else { return true }
                 guard let mainDriver = await self.activeSessions[connectionId]?.driver else {
                     return false
                 }
diff --git a/TablePro/Core/SSH/LibSSH2Tunnel.swift b/TablePro/Core/SSH/LibSSH2Tunnel.swift
@@ -34,6 +34,10 @@ internal final class LibSSH2Tunnel: @unchecked Sendable {
     /// libssh2 is not thread-safe per session, so every call must be serialized.
     private let sessionQueue: DispatchQueue
 
+    /// Concurrent queue for relay I/O (poll, send, recv — no libssh2 calls).
+    /// Individual libssh2 calls within each relay are dispatched to `sessionQueue`.
+    private let relayQueue: DispatchQueue
+
     /// Dedicated queue for the accept loop (poll + accept only, no libssh2 calls).
     private let acceptQueue: DispatchQueue
 
@@ -62,6 +66,11 @@ internal final class LibSSH2Tunnel: @unchecked Sendable {
             label: "com.TablePro.ssh.session.\(connectionId.uuidString)",
             qos: .utility
         )
+        self.relayQueue = DispatchQueue(
+            label: "com.TablePro.ssh.relay.\(connectionId.uuidString)",
+            qos: .utility,
+            attributes: .concurrent
+        )
         self.acceptQueue = DispatchQueue(
             label: "com.TablePro.ssh.accept.\(connectionId.uuidString)",
             qos: .utility
@@ -98,29 +107,25 @@ internal final class LibSSH2Tunnel: @unchecked Sendable {
                             break
                         }
 
-                        // Open channel and spawn relay on the session queue
-                        // to serialize libssh2 calls
-                        let semaphore = DispatchSemaphore(value: 0)
-                        self.sessionQueue.async {
-                            let channel = self.openDirectTcpipChannel(
+                        // Open channel on sessionQueue (serialized libssh2 call),
+                        // then hand off relay to relayQueue (concurrent I/O).
+                        let channel: OpaquePointer? = self.sessionQueue.sync {
+                            self.openDirectTcpipChannel(
                                 remoteHost: remoteHost,
                                 remotePort: remotePort
                             )
+                        }
 
-                            guard let channel else {
-                                Self.logger.error("Failed to open direct-tcpip channel")
-                                Darwin.close(clientFD)
-                                semaphore.signal()
-                                return
-                            }
-
-                            Self.logger.debug(
-                                "Client connected, relaying to \(remoteHost):\(remotePort)"
-                            )
-                            self.spawnRelay(clientFD: clientFD, channel: channel)
-                            semaphore.signal()
+                        guard let channel else {
+                            Self.logger.error("Failed to open direct-tcpip channel")
+                            Darwin.close(clientFD)
+                            continue
                         }
-                        semaphore.wait()
+
+                        Self.logger.debug(
+                            "Client connected, relaying to \(remoteHost):\(remotePort)"
+                        )
+                        self.spawnRelay(clientFD: clientFD, channel: channel)
                     }
 
                     Self.logger.info("Forwarding loop ended for port \(self.localPort)")
@@ -306,7 +311,8 @@ internal final class LibSSH2Tunnel: @unchecked Sendable {
     }
 
     /// Bidirectional relay between a client socket and an SSH channel.
-    /// The relay loop runs on `sessionQueue` to serialize all libssh2 calls.
+    /// The relay loop runs on `relayQueue` (concurrent). Individual libssh2 calls
+    /// are dispatched to `sessionQueue` (serial) for thread safety.
     private func spawnRelay(clientFD: Int32, channel: OpaquePointer) {
         let task = Task.detached { [weak self] in
             guard let self else {
@@ -315,7 +321,7 @@ internal final class LibSSH2Tunnel: @unchecked Sendable {
             }
 
             await withCheckedContinuation { (continuation: CheckedContinuation<Void, Never>) in
-                self.sessionQueue.async { [weak self] in
+                self.relayQueue.async { [weak self] in
                     defer { continuation.resume() }
                     guard let self else {
                         Darwin.close(clientFD)
@@ -332,15 +338,17 @@ internal final class LibSSH2Tunnel: @unchecked Sendable {
         }
     }
 
-    /// Blocking relay loop. Must only be called on `sessionQueue`.
+    /// Blocking relay loop. Runs on `relayQueue`; libssh2 calls go through `sessionQueue`.
     private func runRelay(clientFD: Int32, channel: OpaquePointer) {
         let buffer = UnsafeMutablePointer<CChar>.allocate(capacity: Self.relayBufferSize)
         defer {
             buffer.deallocate()
             Darwin.close(clientFD)
             if self.isRunning {
-                libssh2_channel_close(channel)
-                libssh2_channel_free(channel)
+                sessionQueue.sync {
+                    libssh2_channel_close(channel)
+                    libssh2_channel_free(channel)
+                }
             }
         }
 
@@ -353,52 +361,29 @@ internal final class LibSSH2Tunnel: @unchecked Sendable {
             let pollResult = poll(&pollFDs, 2, 100) // 100ms timeout
             if pollResult < 0 { break }
 
-            // Only read from SSH channel when the SSH socket has data ready
-            if pollFDs[1].revents & Int16(POLLIN) != 0 {
-                let channelRead = tablepro_libssh2_channel_read(
-                    channel, buffer, Self.relayBufferSize
-                )
-                if channelRead > 0 {
-                    var totalSent = 0
-                    while totalSent < Int(channelRead) {
-                        let sent = send(
-                            clientFD,
-                            buffer.advanced(by: totalSent),
-                            Int(channelRead) - totalSent,
-                            0
-                        )
-                        if sent <= 0 { return }
-                        totalSent += sent
-                    }
-                } else if channelRead == 0 || libssh2_channel_eof(channel) != 0 {
-                    return
-                } else if channelRead != Int(LIBSSH2_ERROR_EAGAIN) {
-                    return
+            // Read from SSH channel when the SSH socket has data or on timeout
+            // (libssh2 may have internally buffered data)
+            if pollFDs[1].revents & Int16(POLLIN) != 0 || pollResult == 0 {
+                let readResult: Int = sessionQueue.sync {
+                    Int(tablepro_libssh2_channel_read(channel, buffer, Self.relayBufferSize))
                 }
-            }
-
-            // Also attempt a non-blocking channel read when poll timed out,
-            // because libssh2 may have buffered data internally
-            if pollResult == 0 {
-                let channelRead = tablepro_libssh2_channel_read(
-                    channel, buffer, Self.relayBufferSize
-                )
-                if channelRead > 0 {
+                if readResult > 0 {
                     var totalSent = 0
-                    while totalSent < Int(channelRead) {
+                    while totalSent < readResult {
                         let sent = send(
                             clientFD,
                             buffer.advanced(by: totalSent),
-                            Int(channelRead) - totalSent,
+                            readResult - totalSent,
                             0
                         )
                         if sent <= 0 { return }
                         totalSent += sent
                     }
-                } else if channelRead == 0 || libssh2_channel_eof(channel) != 0 {
+                } else if readResult == 0 || sessionQueue.sync({ libssh2_channel_eof(channel) }) != 0 {
+                    return
+                } else if readResult != Int(LIBSSH2_ERROR_EAGAIN) {
                     return
                 }
-                // Ignore EAGAIN on timeout read — no data buffered
             }
 
             // Read from client -> write to SSH channel
@@ -408,13 +393,15 @@ internal final class LibSSH2Tunnel: @unchecked Sendable {
 
                 var totalWritten = 0
                 while totalWritten < Int(clientRead) {
-                    let written = tablepro_libssh2_channel_write(
-                        channel,
-                        buffer.advanced(by: totalWritten),
-                        Int(clientRead) - totalWritten
-                    )
+                    let written: Int = sessionQueue.sync {
+                        Int(tablepro_libssh2_channel_write(
+                            channel,
+                            buffer.advanced(by: totalWritten),
+                            Int(clientRead) - totalWritten
+                        ))
+                    }
                     if written > 0 {
-                        totalWritten += Int(written)
+                        totalWritten += written
                     } else if written == Int(LIBSSH2_ERROR_EAGAIN) {
                         _ = self.waitForSocket(
                             session: self.session,
diff --git a/TablePro/Views/Main/Extensions/MainContentCoordinator+ChangeGuard.swift b/TablePro/Views/Main/Extensions/MainContentCoordinator+ChangeGuard.swift
@@ -21,6 +21,11 @@ extension MainContentCoordinator {
             return
         }
 
+        guard !isShowingConfirmAlert else {
+            completion(false)
+            return
+        }
+
         Task { @MainActor in
             let window = NSApp.keyWindow
             let confirmed = await confirmDiscardChanges(action: action, window: window)
diff --git a/TablePro/Views/Main/Extensions/MainContentCoordinator+Pagination.swift b/TablePro/Views/Main/Extensions/MainContentCoordinator+Pagination.swift
@@ -13,53 +13,47 @@ extension MainContentCoordinator {
     /// Navigate to next page
     func goToNextPage() {
         guard let tabIndex = tabManager.selectedTabIndex,
-              tabIndex < tabManager.tabs.count else { return }
-
-        var tab = tabManager.tabs[tabIndex]
-        guard tab.pagination.hasNextPage else { return }
+              tabIndex < tabManager.tabs.count,
+              tabManager.tabs[tabIndex].pagination.hasNextPage else { return }
 
-        tab.pagination.goToNextPage()
-        tabManager.tabs[tabIndex] = tab
-        reloadCurrentPage()
+        paginateAfterConfirmation(tabIndex: tabIndex) { pagination in
+            pagination.goToNextPage()
+        }
     }
 
     /// Navigate to previous page
     func goToPreviousPage() {
         guard let tabIndex = tabManager.selectedTabIndex,
-              tabIndex < tabManager.tabs.count else { return }
-
-        var tab = tabManager.tabs[tabIndex]
-        guard tab.pagination.hasPreviousPage else { return }
+              tabIndex < tabManager.tabs.count,
+              tabManager.tabs[tabIndex].pagination.hasPreviousPage else { return }
 
-        tab.pagination.goToPreviousPage()
-        tabManager.tabs[tabIndex] = tab
-        reloadCurrentPage()
+        paginateAfterConfirmation(tabIndex: tabIndex) { pagination in
+            pagination.goToPreviousPage()
+        }
     }
 
     /// Navigate to first page
     func goToFirstPage() {
         guard let tabIndex = tabManager.selectedTabIndex,
-              tabIndex < tabManager.tabs.count else { return }
-
-        var tab = tabManager.tabs[tabIndex]
-        guard tab.pagination.currentPage != 1 else { return }
+              tabIndex < tabManager.tabs.count,
+              tabManager.tabs[tabIndex].pagination.currentPage != 1 else { return }
 
-        tab.pagination.goToFirstPage()
-        tabManager.tabs[tabIndex] = tab
-        reloadCurrentPage()
+        paginateAfterConfirmation(tabIndex: tabIndex) { pagination in
+            pagination.goToFirstPage()
+        }
     }
 
     /// Navigate to last page
     func goToLastPage() {
         guard let tabIndex = tabManager.selectedTabIndex,
               tabIndex < tabManager.tabs.count else { return }
 
-        var tab = tabManager.tabs[tabIndex]
+        let tab = tabManager.tabs[tabIndex]
         guard tab.pagination.currentPage != tab.pagination.totalPages else { return }
 
-        tab.pagination.goToLastPage()
-        tabManager.tabs[tabIndex] = tab
-        reloadCurrentPage()
+        paginateAfterConfirmation(tabIndex: tabIndex) { pagination in
+            pagination.goToLastPage()
+        }
     }
 
     /// Update page size (limit) and reload
@@ -68,8 +62,9 @@ extension MainContentCoordinator {
               tabIndex < tabManager.tabs.count,
               newSize > 0 else { return }
 
-        tabManager.tabs[tabIndex].pagination.updatePageSize(newSize)
-        reloadCurrentPage()
+        paginateAfterConfirmation(tabIndex: tabIndex) { pagination in
+            pagination.updatePageSize(newSize)
+        }
     }
 
     /// Update offset and reload
@@ -78,40 +73,50 @@ extension MainContentCoordinator {
               tabIndex < tabManager.tabs.count,
               newOffset >= 0 else { return }
 
-        tabManager.tabs[tabIndex].pagination.updateOffset(newOffset)
-        reloadCurrentPage()
+        paginateAfterConfirmation(tabIndex: tabIndex) { pagination in
+            pagination.updateOffset(newOffset)
+        }
     }
 
     /// Apply both limit and offset changes and reload
     func applyPaginationSettings() {
         reloadCurrentPage()
     }
 
-    /// Reload current page data, guarding against unsaved changes
-    func reloadCurrentPage() {
-        guard let tabIndex = tabManager.selectedTabIndex,
-              tabIndex < tabManager.tabs.count,
-              let tableName = tabManager.tabs[tabIndex].tableName else { return }
+    // MARK: - Private
 
-        let capturedTabIndex = tabIndex
-        let capturedTableName = tableName
+    /// Confirm discard if needed, then mutate pagination state and reload.
+    private func paginateAfterConfirmation(
+        tabIndex: Int,
+        mutate: @escaping (inout PaginationState) -> Void
+    ) {
         confirmDiscardChangesIfNeeded(action: .pagination) { [weak self] confirmed in
             guard let self, confirmed else { return }
-            guard capturedTabIndex < self.tabManager.tabs.count else { return }
+            guard tabIndex < self.tabManager.tabs.count else { return }
 
-            let tab = self.tabManager.tabs[capturedTabIndex]
-            let pagination = tab.pagination
+            mutate(&self.tabManager.tabs[tabIndex].pagination)
+            self.reloadCurrentPage()
+        }
+    }
+
+    /// Reload current page data
+    private func reloadCurrentPage() {
+        guard let tabIndex = tabManager.selectedTabIndex,
+              tabIndex < tabManager.tabs.count,
+              let tableName = tabManager.tabs[tabIndex].tableName else { return }
 
-            let newQuery = self.queryBuilder.buildBaseQuery(
-                tableName: capturedTableName,
-                sortState: tab.sortState,
-                columns: tab.resultColumns,
-                limit: pagination.pageSize,
-                offset: pagination.currentOffset
-            )
+        let tab = tabManager.tabs[tabIndex]
+        let pagination = tab.pagination
 
-            self.tabManager.tabs[capturedTabIndex].query = newQuery
-            self.runQuery()
-        }
+        let newQuery = queryBuilder.buildBaseQuery(
+            tableName: tableName,
+            sortState: tab.sortState,
+            columns: tab.resultColumns,
+            limit: pagination.pageSize,
+            offset: pagination.currentOffset
+        )
+
+        tabManager.tabs[tabIndex].query = newQuery
+        runQuery()
     }
 }
diff --git a/TablePro/Views/Main/MainContentCoordinator.swift b/TablePro/Views/Main/MainContentCoordinator.swift
