Add edit_pairing_endpoint WS command (8b: user-driven manual rebind)

[bdraco]

What does this implement/fix?

Phase 8b backend: user-driven manual rebind of an existing
APPROVED pairing onto new (hostname, port) coords. Frontend-
only fallback for the cases the 4a-o part 7 mDNS auto-rebind
can't catch:

• cross-subnet receivers (no mDNS path),
• mDNS disabled on the receiver's host,
• the receiver moved to a hostname the offloader's network can
  resolve but mDNS doesn't broadcast.

The Send-builds drawer's per-row "Edit hostname" pencil will
land in a follow-up frontend PR; this PR is the backend WS
command plus the shared primitive the auto-rebind already
needed factored.

What ships

• New WS command remote_build/edit_pairing_endpoint(pin_sha256, hostname, port).
  Validates inputs, looks up the existing APPROVED pairing,
  runs a one-shot peer_link_preview_pair probe at the
  candidate endpoint, and on a matching pin mutates
  StoredPairing.receiver_hostname / .receiver_port in
  place + cancels + respawns the PeerLinkClient against the
  new coords. Returns the updated PairingSummary.

• Same trust model as the auto-rebind. Pin mismatch refuses
  the edit and leaves the stored pairing untouched — the user's
  existing trust is keyed on the original pin; substituting a
  fresh pubkey under that trust is the case 8a's re-auth wizard
  exists to gate. The dialog renders the inline error; the
  user can re-pair through 8a if they actually want the new
  identity.

• Error mapping:

  • INVALID_ARGS for bad pin / hostname / port shape.
  • NOT_FOUND for unknown pin or pairing replaced mid-probe.
  • PRECONDITION_FAILED for non-APPROVED status, no-op edit,
    missing offloader identity, or pin mismatch.
  • UNAVAILABLE for probe transport / handshake failure.

Refactor: shared probe + commit primitives

The auto-rebind path (_probe_and_rebind_endpoint) was about
to grow a near-clone for the user-driven path. Instead, factored
the probe-and-verify shape into two new shared primitives:

• _probe_pairing_endpoint(pairing, new_hostname, new_port) -> _RebindProbeResult
  — runs the preview probe, identity check, and race-safe
  re-check on the dict entry. Returns a typed
  _RebindProbeResult with one of OK / UNREACHABLE /
  PIN_MISMATCH / PAIRING_REPLACED / STATUS_CHANGED.
  Caller-agnostic — no logging, no mutation, no event firing.
• _commit_endpoint_rebind(pairing, hostname, port) — mutate
  the row's coords, schedule the debounced save, run
  _respawn_peer_link_at_new_endpoint (cancel + respawn the
  peer-link client + fire OFFLOADER_PAIR_ENDPOINT_REBOUND).
  Caller is responsible for the probe + identity verify before
  calling.

Each caller maps the typed outcome onto its own surface:

Outcome	Auto-rebind	User-driven
OK	mutate + epilogue, log info	mutate + epilogue, return summary
UNREACHABLE	debug log, cooldown stays	raise UNAVAILABLE
PIN_MISMATCH	warning log, cooldown stays	raise PRECONDITION_FAILED
PAIRING_REPLACED	silent skip, cooldown stays	raise NOT_FOUND
STATUS_CHANGED	silent skip, cooldown stays	raise PRECONDITION_FAILED

Existing auto-rebind tests still pass; the only behavior change
in the auto path is replacing inlined logic with the shared
primitives.

Tests

Eight new tests for the WS command pinning every
CommandError branch:

• match → mutates pairing + fires OFFLOADER_PAIR_ENDPOINT_REBOUND
• pin mismatch → PRECONDITION_FAILED, pairing untouched
• unreachable → UNAVAILABLE, pairing untouched
• unknown pin → NOT_FOUND
• PENDING pairing → PRECONDITION_FAILED
• same endpoint as current → PRECONDITION_FAILED
• pairing replaced mid-probe → NOT_FOUND, fresh pairing untouched
• no offloader peer-link priv → PRECONDITION_FAILED

What's NOT in this PR

• Frontend — the Send-builds row "Edit hostname" pencil +
  dialog. Lands in a follow-up frontend PR; the wire shape this
  PR pins is the contract that work consumes.
• 8a re-auth wizard — the pin-mismatch route surfaces a
  typed error here; the multi-step OOB-verify-and-re-pair flow
  for actually accepting a new identity is 8a's scope.

Related issue or feature (if applicable):

• Remote build offload: discover and delegate compiles to another dashboard on the LAN #106 phase 8b backend.

Types of changes

• Bugfix (non-breaking change which fixes an issue) — bugfix
• New feature (non-breaking change which adds functionality) — new-feature
• Enhancement to an existing feature — enhancement
• Breaking change (fix or feature that would cause existing functionality to not work as expected) — breaking-change
• Refactor (no behaviour change) — refactor
• Documentation only — docs
• Maintenance / chore — maintenance
• CI / workflow change — ci
• Dependencies bump — dependencies

Frontend coordination

Wire surface added: new WS command + new error mapping. The
frontend PR that adds the "Edit hostname" pencil will consume
this; will link the companion PR here once it's open.

• No frontend change needed
• Companion frontend PR: esphome/device-builder-frontend#<number> (follow-up)

Checklist

• The code change is tested and works locally.
• Pre-commit hooks pass (ruff, codespell, yaml/json/python checks).
• Tests have been added or updated under tests/ where applicable.
• components.json has not been hand-edited (regenerate via script/sync_components.py if a sync is needed).
• Architecture-level changes are reflected in docs/ARCHITECTURE.md and/or docs/API.md.

[codspeed-hq]

Merging this PR will not alter performance

✅ 12 untouched benchmarks

---

_{Comparing edit-pairing-endpoint-8b (8efb3f9) with main (3a6e8a1)}

[codecov-commenter]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 99.08%. Comparing base (3a6e8a1) to head (8efb3f9).

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #548   +/-   ##
=======================================
  Coverage   99.07%   99.08%           
=======================================
  Files          74       74           
  Lines        9536     9583   +47     
=======================================
+ Hits         9448     9495   +47     
  Misses         88       88           

Flag	Coverage Δ
py3.12	99.05% <100.00%> (+<0.01%)	⬆️
py3.14	99.08% <100.00%> (+0.01%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

Files with missing lines	Coverage Δ
...ice_builder/controllers/remote_build/controller.py	99.68% <100.00%> (+0.01%)	⬆️

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[Copilot]

Pull request overview

Adds a new offloader-side WebSocket command to manually rebind an existing APPROVED remote-build pairing to a new (hostname, port) when mDNS auto-rebind can’t discover the new endpoint. The implementation factors the existing auto-rebind probe logic into shared “probe” + “commit” primitives so both the mDNS-driven and user-driven flows share the same identity verification and epilogue.

Changes:

• Add WS command remote_build/edit_pairing_endpoint(pin_sha256, hostname, port) to validate inputs, probe the candidate endpoint via peer_link_preview_pair, and (on matching pin) persist + respawn the peer-link client.
• Refactor auto-rebind to reuse shared _probe_pairing_endpoint(...) and _commit_endpoint_rebind(...) helpers.
• Add comprehensive controller tests for the new WS command’s error mapping and success path; document the new command in docs/API.md.

Reviewed changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated 4 comments.

File	Description
esphome_device_builder/controllers/remote_build/controller.py	Introduces shared probe/commit helpers and the new remote_build/edit_pairing_endpoint WS command; refactors auto-rebind to use the shared primitives.
tests/test_remote_build_controller.py	Adds 8 async tests covering success + all CommandError branches for manual endpoint editing.
docs/API.md	Documents the new WS command and its behavior/error mapping.

[Copilot]

Pull request overview

Copilot reviewed 3 out of 3 changed files in this pull request and generated 3 comments.