coder
diff --git a/‎coderd/database/dbauthz/dbauthz.go
-7 b/‎coderd/database/dbauthz/dbauthz.go
-7
diff --git a/‎coderd/database/dbauthz/dbauthz_test.go
-5 b/‎coderd/database/dbauthz/dbauthz_test.go
-5
diff --git a/‎coderd/database/dbmem/dbmem.go
-4 b/‎coderd/database/dbmem/dbmem.go
-4
diff --git a/‎coderd/database/dbmetrics/dbmetrics.go
-7 b/‎coderd/database/dbmetrics/dbmetrics.go
-7
diff --git a/‎coderd/database/dbmock/dbmock.go
-14 b/‎coderd/database/dbmock/dbmock.go
-14
diff --git a/‎coderd/database/querier.go
-1 b/‎coderd/database/querier.go
-1
diff --git a/‎coderd/database/queries.sql.go
-17 b/‎coderd/database/queries.sql.go
-17
diff --git a/‎coderd/database/queries/tailnet.sql
-6 b/‎coderd/database/queries/tailnet.sql
-6
diff --git a/‎enterprise/tailnet/connio.go
+29 b/‎enterprise/tailnet/connio.go
+29
diff --git a/‎enterprise/tailnet/handshaker.go
+16-68 b/‎enterprise/tailnet/handshaker.go
+16-68
diff --git a/‎enterprise/tailnet/handshaker_internal_test.go
-45 b/‎enterprise/tailnet/handshaker_internal_test.go
-45
@@ -2645,13 +2645,6 @@ func (q *querier) ListWorkspaceAgentPortShares(ctx context.Context, workspaceID
 	return q.db.ListWorkspaceAgentPortShares(ctx, workspaceID)
 }
 
-func (q *querier) PublishReadyForHandshake(ctx context.Context, arg database.PublishReadyForHandshakeParams) error {
-	if err := q.authorizeContext(ctx, rbac.ActionUpdate, rbac.ResourceTailnetCoordinator); err != nil {
-		return err
-	}
-	return q.db.PublishReadyForHandshake(ctx, arg)
-}
-
 func (q *querier) ReduceWorkspaceAgentShareLevelToAuthenticatedByTemplate(ctx context.Context, templateID uuid.UUID) error {
 	template, err := q.db.GetTemplateByID(ctx, templateID)
 	if err != nil {
 
@@ -1829,11 +1829,6 @@ func (s *MethodTestSuite) TestTailnetFunctions() {
 			Asserts(rbac.ResourceTailnetCoordinator, rbac.ActionCreate).
 			Errors(dbmem.ErrUnimplemented)
 	}))
-	s.Run("PublishReadyForHandshake", s.Subtest(func(db database.Store, check *expects) {
-		check.Args(database.PublishReadyForHandshakeParams{}).
-			Asserts(rbac.ResourceTailnetCoordinator, rbac.ActionUpdate).
-			Errors(dbmem.ErrUnimplemented)
-	}))
 }
 
 func (s *MethodTestSuite) TestDBCrypt() {
 
@@ -6742,10 +6742,6 @@ func (q *FakeQuerier) ListWorkspaceAgentPortShares(_ context.Context, workspaceI
 	return shares, nil
 }
 
-func (*FakeQuerier) PublishReadyForHandshake(context.Context, database.PublishReadyForHandshakeParams) error {
-	return ErrUnimplemented
-}
-
 func (q *FakeQuerier) ReduceWorkspaceAgentShareLevelToAuthenticatedByTemplate(_ context.Context, templateID uuid.UUID) error {
 	err := validateDatabaseType(templateID)
 	if err != nil {
 
@@ -207,12 +207,6 @@ FROM tailnet_tunnels
 INNER JOIN tailnet_peers ON tailnet_tunnels.src_id = tailnet_peers.id
 WHERE tailnet_tunnels.dst_id = $1;
 
--- name: PublishReadyForHandshake :exec
-SELECT pg_notify(
-	'tailnet_ready_for_handshake',
-	format('%s,%s', sqlc.arg('to')::text, sqlc.arg('from')::text)
-);
-
 -- For PG Coordinator HTMLDebug
 
 -- name: GetAllTailnetCoordinators :many
 
@@ -2,6 +2,8 @@ package tailnet
 
 import (
 	"context"
+	"fmt"
+	"slices"
 	"sync"
 	"sync/atomic"
 	"time"
@@ -35,6 +37,8 @@ type connIO struct {
 	mu           sync.Mutex
 	closed       bool
 	disconnected bool
+	// latest is the most recent, unfiltered snapshot of the mappings we know about
+	latest []mapping
 
 	name       string
 	start      int64
@@ -204,6 +208,19 @@ func (c *connIO) handleRequest(req *proto.CoordinateRequest) error {
 				return err
 			}
 
+			mappings := c.getLatestMapping()
+			if !slices.ContainsFunc(mappings, func(mapping mapping) bool {
+				return mapping.peer == dst
+			}) {
+				c.logger.Debug(c.peerCtx, "cannot process ready for handshake, src isn't peered with dst",
+					slog.F("dst", dst.String()),
+				)
+				_ = c.Enqueue(&proto.CoordinateResponse{
+					Error: fmt.Sprintf("you do not share a tunnel with %q", dst.String()),
+				})
+				return nil
+			}
+
 			if err := agpl.SendCtx(c.coordCtx, c.rfhs, readyForHandshake{hKey: hKey{
 				src: c.id,
 				dst: dst,
@@ -216,6 +233,18 @@ func (c *connIO) handleRequest(req *proto.CoordinateRequest) error {
 	return nil
 }
 
+func (c *connIO) setLatestMapping(latest []mapping) {
+	c.mu.Lock()
+	defer c.mu.Unlock()
+	c.latest = latest
+}
+
+func (c *connIO) getLatestMapping() []mapping {
+	c.mu.Lock()
+	defer c.mu.Unlock()
+	return c.latest
+}
+
 func (c *connIO) UniqueID() uuid.UUID {
 	return c.id
 }
 
@@ -2,14 +2,14 @@ package tailnet
 
 import (
 	"context"
-	"slices"
+	"fmt"
 	"sync"
 
-	"github.com/cenkalti/backoff/v4"
 	"github.com/google/uuid"
 
 	"cdr.dev/slog"
 	"github.com/coder/coder/v2/coderd/database"
+	"github.com/coder/coder/v2/coderd/database/pubsub"
 )
 
 type readyForHandshake struct {
@@ -25,7 +25,7 @@ type handshaker struct {
 	ctx           context.Context
 	logger        slog.Logger
 	coordinatorID uuid.UUID
-	store         database.Store
+	pubsub        pubsub.Pubsub
 	updates       <-chan readyForHandshake
 
 	workQ *workQ[hKey]
@@ -36,19 +36,18 @@ type handshaker struct {
 func newHandshaker(ctx context.Context,
 	logger slog.Logger,
 	id uuid.UUID,
-	store database.Store,
+	ps pubsub.Pubsub,
 	updates <-chan readyForHandshake,
 	startWorkers <-chan struct{},
 ) *handshaker {
 	s := &handshaker{
 		ctx:           ctx,
 		logger:        logger,
 		coordinatorID: id,
-		store:         store,
+		pubsub:        ps,
 		updates:       updates,
 		workQ:         newWorkQ[hKey](ctx),
 	}
-	go s.handle()
 	// add to the waitgroup immediately to avoid any races waiting for it before
 	// the workers start.
 	s.workerWG.Add(numHandshakerWorkers)
@@ -61,73 +60,22 @@ func newHandshaker(ctx context.Context,
 	return s
 }
 
-func (t *handshaker) handle() {
-	for {
-		select {
-		case <-t.ctx.Done():
-			t.logger.Debug(t.ctx, "handshaker exiting", slog.Error(t.ctx.Err()))
-			return
-		case rfh := <-t.updates:
-			t.workQ.enqueue(rfh.hKey)
-		}
-	}
-}
-
 func (t *handshaker) worker() {
 	defer t.workerWG.Done()
-	eb := backoff.NewExponentialBackOff()
-	eb.MaxElapsedTime = 0 // retry indefinitely
-	eb.MaxInterval = dbMaxBackoff
-	bkoff := backoff.WithContext(eb, t.ctx)
+
 	for {
-		hk, err := t.workQ.acquire()
-		if err != nil {
-			// context expired
+		select {
+		case <-t.ctx.Done():
+			t.logger.Debug(t.ctx, "handshaker worker exiting", slog.Error(t.ctx.Err()))
 			return
-		}
-		err = backoff.Retry(func() error {
-			return t.writeOne(hk)
-		}, bkoff)
-		if err != nil {
-			bkoff.Reset()
-		}
-		t.workQ.done(hk)
-	}
-}
-
-func (t *handshaker) writeOne(hk hKey) error {
-	logger := t.logger.With(
-		slog.F("src_id", hk.src),
-		slog.F("dst_id", hk.dst),
-	)
-
-	peers, err := t.store.GetTailnetTunnelPeerIDs(t.ctx, hk.src)
-	if err != nil {
-		if !database.IsQueryCanceledError(err) {
-			logger.Error(t.ctx, "get tunnel peers ids", slog.Error(err))
-		}
-		return err
-	}
-
-	if !slices.ContainsFunc(peers, func(peer database.GetTailnetTunnelPeerIDsRow) bool {
-		return peer.PeerID == hk.dst
-	}) {
-		// In the in-memory coordinator we return an error to the client, but
-		// this isn't really possible here.
-		logger.Warn(t.ctx, "cannot process ready for handshake, src isn't peered with dst")
-		return nil
-	}
 
-	err = t.store.PublishReadyForHandshake(t.ctx, database.PublishReadyForHandshakeParams{
-		To:   hk.dst.String(),
-		From: hk.src.String(),
-	})
-	if err != nil {
-		if !database.IsQueryCanceledError(err) {
-			logger.Error(t.ctx, "publish ready for handshake", slog.Error(err))
+		case rfh := <-t.updates:
+			err := t.pubsub.Publish(eventReadyForHandshake, []byte(fmt.Sprintf(
+				"%s,%s", rfh.dst.String(), rfh.src.String(),
+			)))
+			if err != nil && !database.IsQueryCanceledError(err) {
+				t.logger.Error(t.ctx, "publish ready for handshake", slog.Error(err))
+			}
 		}
-		return err
 	}
-
-	return nil
 }