fix: address review findings in SolidQueueAdapter

sgbett · claude · sgbett · commit 6f2459681d1b · 2026-04-12T21:47:47.000+01:00
- Add MAX_ATTEMPTS (5) enforcement to poll query — permanently-failing
  jobs no longer retry indefinitely
- Replace Sequel.lit placeholder inside SQL quotes with explicit
  integer interpolation for the interval expression
- Guard empty-array outpoints in rollback path (nil vs [] semantics)
- Document that process_job holds a DB connection during broadcast

Co-Authored-By: Claude Opus 4.6 (1M context) &lt;noreply@anthropic.com&gt;
diff --git a/gem/bsv-wallet-postgres/lib/bsv/wallet_postgres/solid_queue_adapter.rb b/gem/bsv-wallet-postgres/lib/bsv/wallet_postgres/solid_queue_adapter.rb
@@ -47,6 +47,10 @@ class SolidQueueAdapter
       # and eligible for retry. Configurable for testability.
       STALE_THRESHOLD = 300
 
+      # Maximum number of broadcast attempts before a job is abandoned.
+      # After this many failures the job remains +failed+ permanently.
+      MAX_ATTEMPTS = 5
+
       # @param db [Sequel::Database] a Sequel database handle (shared with PostgresStore)
       # @param storage [StorageAdapter] wallet storage adapter (must not be MemoryStore)
       # @param broadcaster [#broadcast] broadcaster object
@@ -184,16 +188,24 @@ def running?
       #
       # Uses +SELECT ... FOR UPDATE SKIP LOCKED+ so concurrent workers do not
       # double-process the same job. Stale +sending+ jobs (those whose +locked_at+
-      # is older than +stale_threshold+ seconds) are also eligible for retry.
+      # is older than +stale_threshold+ seconds) are also eligible for retry,
+      # up to +MAX_ATTEMPTS+.
+      #
+      # NOTE: The entire +process_job+ call (including the network broadcast)
+      # runs inside this transaction, holding the row lock and a database
+      # connection for the duration. This is acceptable for a single worker
+      # thread with an 8-second poll interval but would need restructuring
+      # for high-throughput multi-worker deployments.
       #
       # @return [void]
       def poll_once
         @db.transaction do
           job = @db[:wallet_broadcast_jobs]
                 .where(Sequel.lit(
                          "status = 'unsent' OR " \
-                         "(status = 'sending' AND locked_at < NOW() - interval '? second')",
-                         @stale_threshold
+                         "(status = 'sending' AND locked_at < NOW() - " \
+                         "#{@stale_threshold.to_i} * interval '1 second' " \
+                         "AND attempts < #{MAX_ATTEMPTS})"
                        ))
                 .order(:created_at)
                 .limit(1)
@@ -229,7 +241,7 @@ def process_job(job)
         begin
           @broadcaster.broadcast(tx)
         rescue StandardError => e
-          if input_outpoints
+          if input_outpoints && !input_outpoints.empty?
             rollback(input_outpoints, change_outpoints, txid, fund_ref)
           elsif txid
             @storage.update_action_status(txid, 'failed')
