noVNC console integration (apache#3967)

* Adding noVNC repo

* Adding support for noVNC

* Adding Ctl+Esc

* Removing device name from novnc header

(cherry picked from commit 1756b0f)
Signed-off-by: Rohit Yadav <[email protected]>

Author: davidjumani

server/src/main/java/com/cloud/consoleproxy/ConsoleProxyManager.java

@@ -19,6 +19,8 @@
 import com.cloud.utils.component.Manager;
 import com.cloud.vm.ConsoleProxyVO;
 
+import org.apache.cloudstack.framework.config.ConfigKey;
+
 public interface ConsoleProxyManager extends Manager, ConsoleProxyService {
 
     public static final int DEFAULT_PROXY_CAPACITY = 50;
@@ -31,9 +33,14 @@ public interface ConsoleProxyManager extends Manager, ConsoleProxyService {
     public static final int DEFAULT_PROXY_URL_PORT = 80;
     public static final int DEFAULT_PROXY_SESSION_TIMEOUT = 300000;        // 5 minutes
 
+    public static final int DEFAULT_NOVNC_PORT = 8080;
+
     public static final String ALERT_SUBJECT = "proxy-alert";
     public static final String CERTIFICATE_NAME = "CPVMCertificate";
 
+    public static final ConfigKey<Boolean> NoVncConsoleDefault = new ConfigKey<Boolean>("Advanced", Boolean.class, "novnc.console.default", "true",
+        "If true, noVNC console will be default console for virtual machines", true);
+
     public void setManagementState(ConsoleProxyManagementState state);
 
     public ConsoleProxyManagementState getManagementState();

server/src/main/java/com/cloud/consoleproxy/ConsoleProxyManagerImpl.java

@@ -32,6 +32,8 @@
 import org.apache.cloudstack.agent.lb.IndirectAgentLB;
 import org.apache.cloudstack.context.CallContext;
 import org.apache.cloudstack.engine.orchestration.service.NetworkOrchestrationService;
+import org.apache.cloudstack.framework.config.ConfigKey;
+import org.apache.cloudstack.framework.config.Configurable;
 import org.apache.cloudstack.framework.config.dao.ConfigurationDao;
 import org.apache.cloudstack.framework.security.keys.KeysManager;
 import org.apache.cloudstack.framework.security.keystore.KeystoreDao;
@@ -154,7 +156,8 @@
 // Starting, HA, Migrating, Running state are all counted as "Open" for available capacity calculation
 // because sooner or later, it will be driven into Running state
 //
-public class ConsoleProxyManagerImpl extends ManagerBase implements ConsoleProxyManager, VirtualMachineGuru, SystemVmLoadScanHandler<Long>, ResourceStateAdapter {
+public class ConsoleProxyManagerImpl extends ManagerBase implements ConsoleProxyManager, VirtualMachineGuru, SystemVmLoadScanHandler<Long>, ResourceStateAdapter, Configurable {
+
     private static final Logger s_logger = Logger.getLogger(ConsoleProxyManagerImpl.class);
 
     private static final int DEFAULT_CAPACITY_SCAN_INTERVAL = 30000; // 30 seconds
@@ -1741,4 +1744,14 @@ public void setConsoleProxyAllocators(List<ConsoleProxyAllocator> consoleProxyAl
         _consoleProxyAllocators = consoleProxyAllocators;
     }
 
+    @Override
+    public String getConfigComponentName() {
+        return ConsoleProxyManager.class.getSimpleName();
+    }
+
+    @Override
+    public ConfigKey<?>[] getConfigKeys() {
+        return new ConfigKey<?>[] { NoVncConsoleDefault };
+    }
+
 }

server/src/main/java/com/cloud/servlet/ConsoleProxyServlet.java

@@ -41,6 +41,12 @@
 import org.springframework.stereotype.Component;
 import org.springframework.web.context.support.SpringBeanAutowiringSupport;
 
+
+import com.cloud.vm.VmDetailConstants;
+import com.google.gson.Gson;
+import com.google.gson.GsonBuilder;
+
+import com.cloud.consoleproxy.ConsoleProxyManager;
 import com.cloud.exception.PermissionDeniedException;
 import com.cloud.host.HostVO;
 import com.cloud.hypervisor.Hypervisor;
@@ -59,10 +65,7 @@
 import com.cloud.vm.UserVmDetailVO;
 import com.cloud.vm.VirtualMachine;
 import com.cloud.vm.VirtualMachineManager;
-import com.cloud.vm.VmDetailConstants;
 import com.cloud.vm.dao.UserVmDetailsDao;
-import com.google.gson.Gson;
-import com.google.gson.GsonBuilder;
 
 /**
  * Thumbnail access : /console?cmd=thumbnail&vm=xxx&w=xxx&h=xxx
@@ -478,7 +481,12 @@ private String composeConsoleAccessUrl(String rootUrl, VirtualMachine vm, HostVO
             param.setClientTunnelSession(parsedHostInfo.third());
         }
 
-        sb.append("/ajax?token=" + encryptor.encryptObject(ConsoleProxyClientParam.class, param));
+        if (param.getHypervHost() != null || !ConsoleProxyManager.NoVncConsoleDefault.value()) {
+            sb.append("/ajax?token=" + encryptor.encryptObject(ConsoleProxyClientParam.class, param));
+        } else {
+            sb.append("/resource/noVNC/vnc_lite.html?port=" + ConsoleProxyManager.DEFAULT_NOVNC_PORT + "&token="
+                + encryptor.encryptObject(ConsoleProxyClientParam.class, param));
+        }
 
         // for console access, we need guest OS type to help implement keyboard
         long guestOs = vm.getGuestOSId();

services/console-proxy/server/pom.xml

@@ -50,6 +50,21 @@
             <artifactId>cloudstack-service-console-proxy-rdpclient</artifactId>
             <version>${project.version}</version>
         </dependency>
+        <dependency>
+            <groupId>javax.websocket</groupId>
+            <artifactId>javax.websocket-api</artifactId>
+            <version>1.0</version>
+        </dependency>
+        <dependency>
+            <groupId>org.eclipse.jetty</groupId>
+            <artifactId>jetty-server</artifactId>
+            <version>${cs.jetty.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>org.eclipse.jetty.websocket</groupId>
+            <artifactId>websocket-server</artifactId>
+            <version>${cs.jetty.version}</version>
+        </dependency>
     </dependencies>
     <build>
         <resources>

services/console-proxy/server/src/main/java/com/cloud/consoleproxy/ConsoleProxy.java

@@ -32,6 +32,7 @@
 import java.util.concurrent.Executor;
 
 import org.apache.log4j.xml.DOMConfigurator;
+import org.eclipse.jetty.websocket.api.Session;
 
 import com.cloud.consoleproxy.util.Logger;
 import com.cloud.utils.PropertiesUtil;
@@ -344,12 +345,22 @@ private static void startupHttpMain() {
             server.createContext("/ajaximg", new ConsoleProxyAjaxImageHandler());
             server.setExecutor(new ThreadExecutor()); // creates a default executor
             server.start();
+
+            ConsoleProxyNoVNCServer noVNCServer = getNoVNCServer();
+            noVNCServer.start();
+
         } catch (Exception e) {
             s_logger.error(e.getMessage(), e);
             System.exit(1);
         }
     }
 
+    private static ConsoleProxyNoVNCServer getNoVNCServer() {
+        if (httpListenPort == 443)
+            return new ConsoleProxyNoVNCServer(ksBits, ksPassword);
+        return new ConsoleProxyNoVNCServer();
+    }
+
     private static void startupHttpCmdPort() {
         try {
             s_logger.info("Listening for HTTP CMDs on port " + httpCmdListenPort);
@@ -395,7 +406,7 @@ public static ConsoleProxyClient getVncViewer(ConsoleProxyClientParam param) thr
         String clientKey = param.getClientMapKey();
         synchronized (connectionMap) {
             viewer = connectionMap.get(clientKey);
-            if (viewer == null) {
+            if (viewer == null || viewer.getClass() == ConsoleProxyNoVncClient.class) {
                 viewer = getClient(param);
                 viewer.initClient(param);
                 connectionMap.put(clientKey, viewer);
@@ -429,7 +440,7 @@ public static ConsoleProxyClient getAjaxVncViewer(ConsoleProxyClientParam param,
         String clientKey = param.getClientMapKey();
         synchronized (connectionMap) {
             ConsoleProxyClient viewer = connectionMap.get(clientKey);
-            if (viewer == null) {
+            if (viewer == null || viewer.getClass() == ConsoleProxyNoVncClient.class) {
                 authenticationExternally(param);
                 viewer = getClient(param);
                 viewer.initClient(param);
@@ -521,4 +532,40 @@ public void execute(Runnable r) {
             new Thread(r).start();
         }
     }
+
+    public static ConsoleProxyNoVncClient getNoVncViewer(ConsoleProxyClientParam param, String ajaxSession,
+            Session session) throws AuthenticationException {
+        boolean reportLoadChange = false;
+        String clientKey = param.getClientMapKey();
+        synchronized (connectionMap) {
+            ConsoleProxyClient viewer = connectionMap.get(clientKey);
+            if (viewer == null || viewer.getClass() != ConsoleProxyNoVncClient.class) {
+                authenticationExternally(param);
+                viewer = new ConsoleProxyNoVncClient(session);
+                viewer.initClient(param);
+
+                connectionMap.put(clientKey, viewer);
+                reportLoadChange = true;
+            } else {
+                if (param.getClientHostPassword() == null || param.getClientHostPassword().isEmpty() ||
+                        !param.getClientHostPassword().equals(viewer.getClientHostPassword()))
+                    throw new AuthenticationException("Cannot use the existing viewer " + viewer + ": bad sid");
+
+                if (!viewer.isFrontEndAlive()) {
+                    authenticationExternally(param);
+                    viewer.initClient(param);
+                    reportLoadChange = true;
+                }
+            }
+
+            if (reportLoadChange) {
+                ConsoleProxyClientStatsCollector statsCollector = getStatsCollector();
+                String loadInfo = statsCollector.getStatsReport();
+                reportLoadInfo(loadInfo);
+                if (s_logger.isDebugEnabled())
+                    s_logger.debug("Report load change : " + loadInfo);
+            }
+            return (ConsoleProxyNoVncClient)viewer;
+        }
+    }
 }

services/console-proxy/server/src/main/java/com/cloud/consoleproxy/ConsoleProxyNoVNCHandler.java

@@ -0,0 +1,145 @@
+// Licensed to the Apache Software Foundation (ASF) under one
+// or more contributor license agreements.  See the NOTICE file
+// distributed with this work for additional information
+// regarding copyright ownership.  The ASF licenses this file
+// to you under the Apache License, Version 2.0 (the
+// "License"); you may not use this file except in compliance
+// with the License.  You may obtain a copy of the License at
+//
+//   http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing,
+// software distributed under the License is distributed on an
+// "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+// KIND, either express or implied.  See the License for the
+// specific language governing permissions and limitations
+// under the License.
+package com.cloud.consoleproxy;
+
+import java.io.IOException;
+import java.util.Map;
+
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import com.cloud.consoleproxy.util.Logger;
+
+import org.eclipse.jetty.server.Request;
+import org.eclipse.jetty.websocket.api.Session;
+import org.eclipse.jetty.websocket.api.annotations.OnWebSocketClose;
+import org.eclipse.jetty.websocket.api.annotations.OnWebSocketConnect;
+import org.eclipse.jetty.websocket.api.annotations.OnWebSocketFrame;
+import org.eclipse.jetty.websocket.api.annotations.WebSocket;
+import org.eclipse.jetty.websocket.api.extensions.Frame;
+import org.eclipse.jetty.websocket.server.WebSocketHandler;
+import org.eclipse.jetty.websocket.servlet.WebSocketServletFactory;
+
+@WebSocket
+public class ConsoleProxyNoVNCHandler extends WebSocketHandler {
+
+    private ConsoleProxyNoVncClient viewer;
+    private static final Logger s_logger = Logger.getLogger(ConsoleProxyNoVNCHandler.class);
+
+    public ConsoleProxyNoVNCHandler() {
+        super();
+    }
+
+    @Override
+    public void configure(WebSocketServletFactory webSocketServletFactory) {
+        webSocketServletFactory.register(ConsoleProxyNoVNCHandler.class);
+    }
+
+    @Override
+    public void handle(String target, Request baseRequest, HttpServletRequest request, HttpServletResponse response)
+            throws IOException, ServletException {
+
+        if (this.getWebSocketFactory().isUpgradeRequest(request, response)) {
+            response.addHeader("Sec-WebSocket-Protocol", "binary");
+            if (this.getWebSocketFactory().acceptWebSocket(request, response)) {
+                baseRequest.setHandled(true);
+                return;
+            }
+
+            if (response.isCommitted()) {
+                return;
+            }
+        }
+
+        super.handle(target, baseRequest, request, response);
+    }
+
+    @OnWebSocketConnect
+    public void onConnect(final Session session) throws IOException, InterruptedException {
+
+        String queries = session.getUpgradeRequest().getQueryString();
+        Map<String, String> queryMap = ConsoleProxyHttpHandlerHelper.getQueryMap(queries);
+
+        String host = queryMap.get("host");
+        String portStr = queryMap.get("port");
+        String sid = queryMap.get("sid");
+        String tag = queryMap.get("tag");
+        String ticket = queryMap.get("ticket");
+        String ajaxSessionIdStr = queryMap.get("sess");
+        String console_url = queryMap.get("consoleurl");
+        String console_host_session = queryMap.get("sessionref");
+        String vm_locale = queryMap.get("locale");
+        String hypervHost = queryMap.get("hypervHost");
+        String username = queryMap.get("username");
+        String password = queryMap.get("password");
+
+        if (tag == null)
+            tag = "";
+
+        long ajaxSessionId = 0;
+        int port;
+
+        if (host == null || portStr == null || sid == null)
+            throw new IllegalArgumentException();
+
+        try {
+            port = Integer.parseInt(portStr);
+        } catch (NumberFormatException e) {
+            s_logger.warn("Invalid number parameter in query string: " + portStr);
+            throw new IllegalArgumentException(e);
+        }
+
+        if (ajaxSessionIdStr != null) {
+            try {
+                ajaxSessionId = Long.parseLong(ajaxSessionIdStr);
+            } catch (NumberFormatException e) {
+                s_logger.warn("Invalid number parameter in query string: " + ajaxSessionIdStr);
+                throw new IllegalArgumentException(e);
+            }
+        }
+
+        try {
+            ConsoleProxyClientParam param = new ConsoleProxyClientParam();
+            param.setClientHostAddress(host);
+            param.setClientHostPort(port);
+            param.setClientHostPassword(sid);
+            param.setClientTag(tag);
+            param.setTicket(ticket);
+            param.setClientTunnelUrl(console_url);
+            param.setClientTunnelSession(console_host_session);
+            param.setLocale(vm_locale);
+            param.setHypervHost(hypervHost);
+            param.setUsername(username);
+            param.setPassword(password);
+            viewer = ConsoleProxy.getNoVncViewer(param, ajaxSessionIdStr, session);
+        } catch (Exception e) {
+            s_logger.warn("Failed to create viewer due to " + e.getMessage(), e);
+            return;
+        }
+    }
+
+    @OnWebSocketClose
+    public void onClose(Session session, int statusCode, String reason) throws IOException, InterruptedException {
+        ConsoleProxy.removeViewer(viewer);
+    }
+
+    @OnWebSocketFrame
+    public void onFrame(Frame f) throws IOException {
+        viewer.sendClientFrame(f);
+    }
+}