[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] XEN 4.3.1 VNC TLS is not working?

To: NiX <nix@xxxxxxxxxxxxxxxx>
From: Wei Liu <wei.liu2@xxxxxxxxxx>
Date: Tue, 26 Nov 2013 11:22:29 +0000
Cc: xen-users@xxxxxxxxxxxxx, Wei Liu <wei.liu2@xxxxxxxxxx>
Delivery-date: Tue, 26 Nov 2013 11:23:17 +0000
List-id: Xen user discussion <xen-users.lists.xen.org>

On Tue, Nov 26, 2013 at 03:29:41AM +0200, NiX wrote:
[...]
> >>
> >> If you check line 425 from /var/src/xen-4.3.1/tools/libxl/libxl_dm.c
> >>
> >
> > That's constructing QEMU arguments from libxl internal configuration
> > state.
> >
> >> Is it only way to modify source and recompile to get that working?
> >>
> >
> > No, but you need to trick libxl by disaling VNC in the configuration
> > file, so that it skips the code you found.
> >
> > Then use device_model_args to append whole VNC rune to QEMU.
> >
> > In theory this would work, but I've never tried.
> 
> Here's what I tried:
> 
> #vfb = [
> "type=vnc,vnclisten=10.100.12.10,vncdisplay=10,vncpasswd=test12345" ]
> 
> device_model_args = [ "-vnc 10.100.12.10:10,tls,x509=/etc/xen/cert" ]
> 
> VM won't start despite syntax is right. Even if it would start, we're
> going to have another problem because you've no way to define password
> using options stated above because of
> http://wiki.qemu.org/download/qemu-doc.html#pcsys_005fmonitor
> 

You can access the QMP monitor separately. See below.

> This must be considered as a broken feature. By any change is there any
> interests fix this feature for xl toolstack so we could use vnc tls in
> guest config ie.
> 

Please send an email to Xen-devel reporting this so that we can properly
track it.

http://wiki.xen.org/wiki/Reporting_Bugs_against_Xen

> vfb = [
> "type=vnc,vnclisten=10.100.12.10,vncdisplay=10,vncpasswd=test12345,tls,x509=/etc/xen/cert"
> ]
> 
> PS.
> 
> After starting a VM with 'vfb = [
> "type=vnc,vnclisten=10.100.12.10,vncdisplay=10,vncpasswd=test12345" ]'
> 
> I was able to verify qemu-system-i386 syntax and tls vnc functionality by
> using the following command line:
> 
> /usr/lib/xen/bin/qemu-system-i386 -xen-domid 11 -chardev
> socket,id=libxl-cmd,path=/var/run/xen/qmp-libxl-11,server,nowait -mon
> chardev=libxl-cmd,mode=control -xen-attach -name 10.100.12.5 -vnc
> 10.100.12.10:11,tls,x509=/etc/xen/cert -M xenpv -m 2049
> 

/var/run/xen/qmp-libxl-11 is the socket to QMP monitor, you can use a
client to connect to it and set your password. A simple client is
included in QEMU source code directory.

Wei.

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxx
http://lists.xen.org/xen-users

Follow-Ups:
- Re: [Xen-users] XEN 4.3.1 VNC TLS is not working?
  - From: Wei Liu

References:
- [Xen-users] XEN 4.3.1 VNC TLS is not working?
  - From: NiX
- Re: [Xen-users] XEN 4.3.1 VNC TLS is not working?
  - From: Wei Liu
- Re: [Xen-users] XEN 4.3.1 VNC TLS is not working?
  - From: NiX
- Re: [Xen-users] XEN 4.3.1 VNC TLS is not working?
  - From: Wei Liu
- Re: [Xen-users] XEN 4.3.1 VNC TLS is not working?
  - From: NiX
- Re: [Xen-users] XEN 4.3.1 VNC TLS is not working?
  - From: Wei Liu
- Re: [Xen-users] XEN 4.3.1 VNC TLS is not working?
  - From: NiX
- Re: [Xen-users] XEN 4.3.1 VNC TLS is not working?
  - From: Wei Liu
- Re: [Xen-users] XEN 4.3.1 VNC TLS is not working?
  - From: NiX

Prev by Date: Re: [Xen-users] XEN 4.3.1 VNC TLS is not working?
Next by Date: Re: [Xen-users] XEN 4.3.1 VNC TLS is not working?
Previous by thread: Re: [Xen-users] XEN 4.3.1 VNC TLS is not working?
Next by thread: Re: [Xen-users] XEN 4.3.1 VNC TLS is not working?
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.