consoles: Don't use listening address to connect to VNC

[mvollmer]

The listening address is most likely 127.0.0.1 (libvirt default) or 0.0.0.0 (yolo config). Neither of these works remotely.

Let's tell the remote viewer some address that has a chance of working. More complicated setups, like a bastion host or connecting via SSH inside Cockpit, might not work because of networking routing challanges, but at least we get better error messages like "No route to host" etc.

Also, with the libvirt default of only listening on 127.0.0.1, no remote connection will work. But again, we now at least get the expected "Connection refused" error message.

Demo: https://youtu.be/zjQlyt3SzG4

---

Machines: "Launch viewer" now uses correct address

The "Launch viewer" button in the "Console" card of a virtual machine would tell the remote viewer application to connect to the listening address of the VNC server. This is wrong when the server listens on 127.0.0.1 (libvirt default) or 0.0.0.0 (allow connections on all interfaces). Now Cockpit will tell the remote viewer application to connect to the same domain name or IP address that Cockpit itself is using to reach the virtual machine host.

[mvollmer]

Hmm, this should run...

[martinpitt]

{...consoleDetail, address} reads a bit nicer IMHO, but up to you.

[mvollmer]

Done, thanks!

[martinpitt]

Thanks! Let's discuss this a little bit. My first two comments were not part of the review.

[martinpitt]

This is still only one machine -- seems you could get this more cheaply with the already running nondestructive machine? 172.27.0.15 is reliable, a couple of cockpit tests refer to it as well.

[mvollmer]

Right, I thought I'd seen something like that... Will that work also with TF?

[mvollmer]

I have made the new test destructive and use that address.

[martinpitt]

That should be self.login_and_go("/machines", host=my_ip). I wonder why you don't' have to m.start_cockpit() here, it's usually required?

[mvollmer]

That should be self.login_and_go("/machines", host=my_ip)

The host parameter gives you a "/@{host}" prefix, but I want a "/={host}" prefix.

[mvollmer]

I wonder why you don't' have to m.start_cockpit() here, it's usually required?

Good question... I guess cockpit is enabled by default somewhere already?

[mvollmer]

I have added a call to "start_cockpit".

[martinpitt]

Is that actually something different? I thought transport-wise bastion host and shell host selector would be the same?

[mvollmer]

The new code in the PR handles that differently.. maybe it doesn't have to.

Bastion host has:

• cockpit.transport.host == "localhost"
• application == "cockpit+=address"

where "address" is the string typed into the login page, and visible in the browser URL as "/=address". But it's not in the frame URL.

SSH from the Shell has:

• cockpit.transport.host == "address"

where "address" is the string typed into the "add remote host" dialog.

[mvollmer]

(I don't really understand our "application" business, tbh.)

[cockpituous]

These 2 added lines are not executed by any test.

[mvollmer]

I don't understand this... these lines clearly run.

[martinpitt]

@mvollmer is investigating this in #2006, so I suppose we can land this PR.

[mvollmer]

Yeah, coverage collection must be buggy somehow... grr.

[martinpitt]

TF is still running, but it seems it already skips the console tests there (the 172.27.0.15 IP is specific to our bots images), and some tests already passed.

This is a significant improvement, let's get this in without more bikeshedding. Thank you!