coder
diff --git a/‎cli/portforward.go
Lines changed: 16 additions & 3 deletions b/‎cli/portforward.go
Lines changed: 16 additions & 3 deletions
diff --git a/‎cli/portforward_test.go
Lines changed: 10 additions & 7 deletions b/‎cli/portforward_test.go
Lines changed: 10 additions & 7 deletions
diff --git a/‎coderd/autobuild/lifecycle_executor_test.go
Lines changed: 17 additions & 6 deletions b/‎coderd/autobuild/lifecycle_executor_test.go
Lines changed: 17 additions & 6 deletions
diff --git a/‎coderd/database/dump.sql
Lines changed: 67 additions & 0 deletions b/‎coderd/database/dump.sql
Lines changed: 67 additions & 0 deletions
diff --git a/‎coderd/database/foreign_key_constraint.go
Lines changed: 2 additions & 0 deletions b/‎coderd/database/foreign_key_constraint.go
Lines changed: 2 additions & 0 deletions
diff --git a/‎coderd/database/migrations/000168_pg_coord_tailnet_v2_api.down.sql
Lines changed: 14 additions & 0 deletions b/‎coderd/database/migrations/000168_pg_coord_tailnet_v2_api.down.sql
Lines changed: 14 additions & 0 deletions
diff --git a/‎coderd/database/migrations/000168_pg_coord_tailnet_v2_api.up.sql
Lines changed: 72 additions & 0 deletions b/‎coderd/database/migrations/000168_pg_coord_tailnet_v2_api.up.sql
Lines changed: 72 additions & 0 deletions
@@ -98,7 +98,7 @@ func (r *RootCmd) portForward() *clibase.Cmd {
 				return xerrors.Errorf("await agent: %w", err)
 			}
 
-			var logger slog.Logger
+			logger := slog.Make()
 			if r.verbose {
 				logger = slog.Make(sloghuman.Sink(inv.Stdout)).Leveled(slog.LevelDebug)
 			}
@@ -131,7 +131,7 @@ func (r *RootCmd) portForward() *clibase.Cmd {
 			defer closeAllListeners()
 
 			for i, spec := range specs {
-				l, err := listenAndPortForward(ctx, inv, conn, wg, spec)
+				l, err := listenAndPortForward(ctx, inv, conn, wg, spec, logger)
 				if err != nil {
 					return err
 				}
@@ -185,7 +185,15 @@ func (r *RootCmd) portForward() *clibase.Cmd {
 	return cmd
 }
 
-func listenAndPortForward(ctx context.Context, inv *clibase.Invocation, conn *codersdk.WorkspaceAgentConn, wg *sync.WaitGroup, spec portForwardSpec) (net.Listener, error) {
+func listenAndPortForward(
+	ctx context.Context,
+	inv *clibase.Invocation,
+	conn *codersdk.WorkspaceAgentConn,
+	wg *sync.WaitGroup,
+	spec portForwardSpec,
+	logger slog.Logger,
+) (net.Listener, error) {
+	logger = logger.With(slog.F("network", spec.listenNetwork), slog.F("address", spec.listenAddress))
 	_, _ = fmt.Fprintf(inv.Stderr, "Forwarding '%v://%v' locally to '%v://%v' in the workspace\n", spec.listenNetwork, spec.listenAddress, spec.dialNetwork, spec.dialAddress)
 
 	var (
@@ -218,6 +226,7 @@ func listenAndPortForward(ctx context.Context, inv *clibase.Invocation, conn *co
 	if err != nil {
 		return nil, xerrors.Errorf("listen '%v://%v': %w", spec.listenNetwork, spec.listenAddress, err)
 	}
+	logger.Debug(ctx, "listening")
 
 	wg.Add(1)
 	go func(spec portForwardSpec) {
@@ -227,12 +236,14 @@ func listenAndPortForward(ctx context.Context, inv *clibase.Invocation, conn *co
 			if err != nil {
 				// Silently ignore net.ErrClosed errors.
 				if xerrors.Is(err, net.ErrClosed) {
+					logger.Debug(ctx, "listener closed")
 					return
 				}
 				_, _ = fmt.Fprintf(inv.Stderr, "Error accepting connection from '%v://%v': %v\n", spec.listenNetwork, spec.listenAddress, err)
 				_, _ = fmt.Fprintln(inv.Stderr, "Killing listener")
 				return
 			}
+			logger.Debug(ctx, "accepted connection", slog.F("remote_addr", netConn.RemoteAddr()))
 
 			go func(netConn net.Conn) {
 				defer netConn.Close()
@@ -242,8 +253,10 @@ func listenAndPortForward(ctx context.Context, inv *clibase.Invocation, conn *co
 					return
 				}
 				defer remoteConn.Close()
+				logger.Debug(ctx, "dialed remote", slog.F("remote_addr", netConn.RemoteAddr()))
 
 				agentssh.Bicopy(ctx, netConn, remoteConn)
+				logger.Debug(ctx, "connection closing", slog.F("remote_addr", netConn.RemoteAddr()))
 			}(netConn)
 		}
 	}(spec)
 
@@ -140,9 +140,10 @@ func TestPortForward(t *testing.T) {
 
 	for _, c := range cases {
 		c := c
-		// Delay parallel tests here because setupLocal reserves
+		// No parallel tests here because setupLocal reserves
 		// a free open port which is not guaranteed to be free
 		// between the listener closing and port-forward ready.
+		//nolint:tparallel,paralleltest
 		t.Run(c.name+"_OnePort", func(t *testing.T) {
 			p1 := setupTestListener(t, c.setupRemote(t))
 
@@ -166,8 +167,6 @@ func TestPortForward(t *testing.T) {
 			}()
 			pty.ExpectMatchContext(ctx, "Ready!")
 
-			t.Parallel() // Port is reserved, enable parallel execution.
-
 			// Open two connections simultaneously and test them out of
 			// sync.
 			d := net.Dialer{Timeout: testutil.WaitShort}
@@ -185,6 +184,10 @@ func TestPortForward(t *testing.T) {
 			require.ErrorIs(t, err, context.Canceled)
 		})
 
+		// No parallel tests here because setupLocal reserves
+		// a free open port which is not guaranteed to be free
+		// between the listener closing and port-forward ready.
+		//nolint:tparallel,paralleltest
 		t.Run(c.name+"_TwoPorts", func(t *testing.T) {
 			var (
 				p1 = setupTestListener(t, c.setupRemote(t))
@@ -213,8 +216,6 @@ func TestPortForward(t *testing.T) {
 			}()
 			pty.ExpectMatchContext(ctx, "Ready!")
 
-			t.Parallel() // Port is reserved, enable parallel execution.
-
 			// Open a connection to both listener 1 and 2 simultaneously and
 			// then test them out of order.
 			d := net.Dialer{Timeout: testutil.WaitShort}
@@ -234,6 +235,10 @@ func TestPortForward(t *testing.T) {
 	}
 
 	// Test doing TCP and UDP at the same time.
+	// No parallel tests here because setupLocal reserves
+	// a free open port which is not guaranteed to be free
+	// between the listener closing and port-forward ready.
+	//nolint:tparallel,paralleltest
 	t.Run("All", func(t *testing.T) {
 		var (
 			dials = []addr{}
@@ -266,8 +271,6 @@ func TestPortForward(t *testing.T) {
 		}()
 		pty.ExpectMatchContext(ctx, "Ready!")
 
-		t.Parallel() // Port is reserved, enable parallel execution.
-
 		// Open connections to all items in the "dial" array.
 		var (
 			d     = net.Dialer{Timeout: testutil.WaitShort}
 
@@ -743,7 +743,6 @@ func TestExecutorAutostopTemplateDisabled(t *testing.T) {
 
 	// Given: we have a workspace built from a template that disallows user autostop
 	var (
-		sched   = mustSchedule(t, "CRON_TZ=UTC 0 * * * *")
 		tickCh  = make(chan time.Time)
 		statsCh = make(chan autobuild.Stats)
 
@@ -761,26 +760,38 @@ func TestExecutorAutostopTemplateDisabled(t *testing.T) {
 				},
 			},
 		})
-		// Given: we have a user with a workspace configured to autostart some time in the future
+		// Given: we have a user with a workspace configured to autostop 30 minutes in the future
 		workspace = mustProvisionWorkspace(t, client, func(cwr *codersdk.CreateWorkspaceRequest) {
-			cwr.TTLMillis = ptr.Ref(8 * time.Hour.Milliseconds())
+			cwr.TTLMillis = ptr.Ref(30 * time.Minute.Milliseconds())
 		})
 	)
 
 	// When: we create the workspace
 	// Then: the deadline should be set to the template default TTL
 	assert.WithinDuration(t, workspace.LatestBuild.CreatedAt.Add(time.Hour), workspace.LatestBuild.Deadline.Time, time.Minute)
 
-	// When: the autobuild executor ticks before the next scheduled time
+	// When: the autobuild executor ticks after the workspace setting, but before the template setting:
 	go func() {
-		tickCh <- sched.Next(workspace.LatestBuild.CreatedAt).Add(time.Minute)
-		close(tickCh)
+		tickCh <- workspace.LatestBuild.CreatedAt.Add(45 * time.Minute)
 	}()
 
 	// Then: nothing should happen
 	stats := <-statsCh
 	assert.NoError(t, stats.Error)
 	assert.Len(t, stats.Transitions, 0)
+
+	// When: the autobuild executor ticks after the template setting:
+	go func() {
+		tickCh <- workspace.LatestBuild.CreatedAt.Add(61 * time.Minute)
+		close(tickCh)
+	}()
+
+	// Then: the workspace should be stopped
+	stats = <-statsCh
+	assert.NoError(t, stats.Error)
+	assert.Len(t, stats.Transitions, 1)
+	assert.Contains(t, stats.Transitions, workspace.ID)
+	assert.Equal(t, database.WorkspaceTransitionStop, stats.Transitions[workspace.ID])
 }
 
 // Test that an AGPL AccessControlStore properly disables
 
@@ -0,0 +1,14 @@
+BEGIN;
+
+DROP TRIGGER IF EXISTS tailnet_notify_tunnel_change ON tailnet_tunnels;
+DROP FUNCTION IF EXISTS tailnet_notify_tunnel_change;
+DROP TABLE IF EXISTS tailnet_tunnels;
+
+DROP TRIGGER IF EXISTS tailnet_notify_peer_change ON tailnet_peers;
+DROP FUNCTION IF EXISTS tailnet_notify_peer_change;
+DROP INDEX IF EXISTS idx_tailnet_peers_coordinator;
+DROP TABLE IF EXISTS tailnet_peers;
+
+DROP TYPE IF EXISTS tailnet_status;
+
+COMMIT;
@@ -0,0 +1,72 @@
+BEGIN;
+
+CREATE TYPE tailnet_status AS ENUM (
+	'ok',
+	'lost'
+);
+
+CREATE TABLE tailnet_peers (
+	id uuid NOT NULL,
+	coordinator_id uuid NOT NULL,
+	updated_at timestamp with time zone NOT NULL,
+	node bytea NOT NULL,
+	status tailnet_status DEFAULT 'ok'::tailnet_status NOT NULL,
+	PRIMARY KEY (id, coordinator_id),
+	FOREIGN KEY (coordinator_id) REFERENCES tailnet_coordinators(id) ON DELETE CASCADE
+);
+
+-- For shutting down / GC a coordinator
+CREATE INDEX idx_tailnet_peers_coordinator ON tailnet_peers (coordinator_id);
+
+-- Any time tailnet_peers table changes, send an update with the affected peer ID.
+CREATE FUNCTION tailnet_notify_peer_change() RETURNS trigger
+	LANGUAGE plpgsql
+AS $$
+BEGIN
+	IF (OLD IS NOT NULL) THEN
+		PERFORM pg_notify('tailnet_peer_update', OLD.id::text);
+		RETURN NULL;
+	END IF;
+	IF (NEW IS NOT NULL) THEN
+		PERFORM pg_notify('tailnet_peer_update', NEW.id::text);
+		RETURN NULL;
+	END IF;
+END;
+$$;
+
+CREATE TRIGGER tailnet_notify_peer_change
+	AFTER INSERT OR UPDATE OR DELETE ON tailnet_peers
+	FOR EACH ROW
+EXECUTE PROCEDURE tailnet_notify_peer_change();
+
+CREATE TABLE tailnet_tunnels (
+	coordinator_id uuid NOT NULL,
+	-- we don't keep foreign keys for src_id and dst_id because the coordinator doesn't
+	-- strictly order creating the peers and creating the tunnels
+	src_id uuid NOT NULL,
+	dst_id uuid NOT NULL,
+	updated_at timestamp with time zone NOT NULL,
+	PRIMARY KEY (coordinator_id, src_id, dst_id),
+	FOREIGN KEY (coordinator_id)  REFERENCES tailnet_coordinators (id) ON DELETE CASCADE
+);
+
+CREATE FUNCTION tailnet_notify_tunnel_change() RETURNS trigger
+	LANGUAGE plpgsql
+AS $$
+BEGIN
+	IF (NEW IS NOT NULL) THEN
+		PERFORM pg_notify('tailnet_tunnel_update', NEW.src_id || ',' || NEW.dst_id);
+		RETURN NULL;
+	ELSIF (OLD IS NOT NULL) THEN
+		PERFORM pg_notify('tailnet_tunnel_update', OLD.src_id || ',' || OLD.dst_id);
+		RETURN NULL;
+	END IF;
+END;
+$$;
+
+CREATE TRIGGER tailnet_notify_tunnel_change
+	AFTER INSERT OR UPDATE OR DELETE ON tailnet_tunnels
+	FOR EACH ROW
+EXECUTE PROCEDURE tailnet_notify_tunnel_change();
+
+COMMIT;