My latest issue is the error spice warning spice channels 1 should be encrypted, I'm guessing this is an authentication issue with my attempts to connect?<br><br><div class="gmail_quote">On Tue, Nov 13, 2012 at 7:37 AM, Jodi Curtis <span dir="ltr"><<a href="mailto:jodi.curtis@gmail.com" target="_blank">jodi.curtis@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">The VM seems to start without complaints after adding the key directory after /etc/pki/libvirt-vnc** r, in an identical format within the apparmor.d config file<br>
<br>I haven't really slept much so I will check login after sleeping <div class="HOEnZb"><div class="h5"><br>
<br><div class="gmail_quote">On Mon, Nov 12, 2012 at 11:33 PM, Jodi Curtis <span dir="ltr"><<a href="mailto:jodi.curtis@gmail.com" target="_blank">jodi.curtis@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Hi<div><br></div><div>Copy of attempt so far, hopefully this will be useful to have online, I will carry on tomorrow!</div><div><br></div><div><div>/etc/hostname </div><div><br></div><div>squealer</div><div><br></div><div>
/etc/hosts</div><div><br></div><div>127.0.0.1 localhost squealer <a href="http://squealer.maiakaat.co.uk" target="_blank">squealer.maiakaat.co.uk</a> <a href="http://maiakaat.co.uk" target="_blank">maiakaat.co.uk</a> <a href="http://www.maiakaat.co.uk" target="_blank">www.maiakaat.co.uk</a></div>
<div>192.168.2.140 localhost squealer <a href="http://squealer.maiakaat.co.uk" target="_blank">squealer.maiakaat.co.uk</a> <a href="http://maiakaat.co.uk" target="_blank">maiakaat.co.uk</a> <a href="http://www.maiakaat.co.uk" target="_blank">www.maiakaat.co.uk</a></div>
<div><br></div><div>cat /etc/passwd</div><div><br></div><div>root:x:0:0:root:/root:/bin/bash</div><div>daemon:x:1:1:daemon:/usr/sbin:/bin/sh</div><div>bin:x:2:2:bin:/bin:/bin/sh</div><div>sys:x:3:3:sys:/dev:/bin/sh</div>
<div>
sync:x:4:65534:sync:/bin:/bin/sync</div><div>games:x:5:60:games:/usr/games:/bin/sh</div><div>man:x:6:12:man:/var/cache/man:/bin/sh</div><div>lp:x:7:7:lp:/var/spool/lpd:/bin/sh</div><div>mail:x:8:8:mail:/var/mail:/bin/sh</div>
<div>news:x:9:9:news:/var/spool/news:/bin/sh</div><div>uucp:x:10:10:uucp:/var/spool/uucp:/bin/sh</div><div>proxy:x:13:13:proxy:/bin:/bin/sh</div><div>www-data:x:33:33:www-data:/var/www:/bin/sh</div><div>backup:x:34:34:backup:/var/backups:/bin/sh</div>
<div>list:x:38:38:Mailing List Manager:/var/list:/bin/sh</div><div>irc:x:39:39:ircd:/var/run/ircd:/bin/sh</div><div>gnats:x:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/bin/sh</div><div>nobody:x:65534:65534:nobody:/nonexistent:/bin/sh</div>
<div>libuuid:x:100:101::/var/lib/libuuid:/bin/sh</div><div>syslog:x:101:103::/home/syslog:/bin/false</div><div>messagebus:x:102:105::/var/run/dbus:/bin/false</div><div>whoopsie:x:103:107::/nonexistent:/bin/false</div><div>
landscape:x:104:110::/var/lib/landscape:/bin/false</div><div>sshd:x:105:65534::/var/run/sshd:/usr/sbin/nologin</div><div>libvirt-qemu:x:106:106:Libvirt Qemu,,,:/var/lib/libvirt:/bin/false</div><div>libvirt-dnsmasq:x:107:112:Libvirt Dnsmasq,,,:/var/lib/libvirt/dnsmasq:/bin/false</div>
<div>jodic:x:1000:1000:jodic,,,:/home/jodic:/bin/bash</div><div><br></div><div>cd /var/lib/libvirt</div><div>sudo ls -l</div><div><br></div><div>drwx--x--x 2 root     root 4096 Oct  6 01:58 boot</div><div>drwxr-xr-x 2 root     root 4096 Oct 30 21:06 dnsmasq</div>
<div>drwxr-xr-x 2 libvirt-qemu root 4096 Oct 31 06:11 drivers</div><div>drwx--x--x 2 root     root 4096 Oct  6 01:58 images</div><div>drwxr-xr-x 5 libvirt-qemu root 4096 Nov  1 12:56 local</div><div>drwxr-xr-x 2 root     root 4096 Nov 12 18:03 network</div>
<div>drwxr-x--- 5 libvirt-qemu kvm  4096 Nov 12 18:11 qemu</div><div>drwx------ 2 root     root 4096 Oct  6 01:58 sanlock</div><div>drwxr-xr-x 5 libvirt-qemu root 4096 Oct 31 06:22 shared</div><div><br></div><div>#drivers to be forwarded as filesystem element with Windows drivers</div>
<div>#local contains volume pools(2) for VM volumes, and all xml files used to create VM's volumes and pools.</div><div><br></div><div>sudo usermod -a -G root,kvm jodic</div><div><br></div><div>chmod 775 /var/lib/libvirt/qemu</div>
<div>#temporary change</div><div><br></div><div>#libvirt directory permissions are drwxr-xr-x</div><div><br></div><div>sudo mkdir /var/lib/libvirt/pki</div><div>sudo mkdir /var/lib/libvirt/pki/libvirt-spice</div><div><br>
</div><div>sudo nano /etc/libvirt/qemu.conf</div><div><br></div><div>spice_tls = 1</div><div>spice_tls_x509_cert_dir = "/var/lib/libvirt/pki/libvirt-spice"</div><div><br></div><div>cd /var/lib/libvirt/pki/libvirt-spice</div>
<div><br></div><div>sudo openssl genrsa -des3 -out ca-key.pem 1024</div><div>sudo openssl req -new -x509 -days 750 -key ca-key.pem -out ca-cert.pem -utf8 -subj "/CN=Self Signed"</div><div>sudo openssl genrsa -out server-key.pem 1024</div>
<div>sudo openssl req -new -key server-key.pem -out server-key.csr -utf8 -subj "/CN=squealer"</div><div>sudo openssl x509 req -days 750 -in server-key.csr -CA ca-cert.pem -CAkey ca-key.pem -set_serial 01 -out server-cert.pem</div>
<div>sudo openssl rsa -in server-key.pem -out server-key.pem.insecure</div><div>sudo mv server-key.pem server-key.pem.secure</div><div>sudo mv server-key.pem.insecure server-key.pem</div><div><br></div><div>sudo chown libvirt-qemu /var/lib/libvirt/pki</div>
<div>sudo chown libvirt-qemu /var/lib/libvirt/pki/libvirt-spice</div><div>sudo chown libvirt-qemu /var/lib/libvirt/pki/libvirt-spice/server-key.pem</div><div>sudo chown libvirt-qemu /var/lib/libvirt/pki/libvirt-spice/server-cert.pem</div>
<div>sudo chown libvirt-qemu /var/lib/libvirt/pki/libvirt-spice/ca-cert.pem</div><div><br></div><div>#temporary change</div><div>sudo chmod 775 /var/lib/libvirt/pki</div><div>sudo chmod 775 /var/lib/libvirt/pki/libvirt-spice</div>
<div>sudo chmod 775 /var/lib/libvirt/pki/libvirt-spice/server-key.pem</div><div>sudo chmod 775 /var/lib/libvirt/pki/libvirt-spice/server-cert.pem</div><div>sudo chmod 775 /var/lib/libvirt/pki/libvirt-spice/ca-cert.pem</div>
<div><br></div><div>sudo virsh destroy VM11</div><div>sudo virsh undefine VM11</div><div><br></div><div>sudo shutdown -r now</div><div>#don't know how to restart service for re-read of qemu.conf in Ubuntu</div><div><br>
</div><div>#Ubuntu offering 28 updates - none related to virtualization at all</div><div><br></div><div>sudo apt-get update</div><div>sudo apt-get upgrade</div><div><br></div><div>sudo virsh define /var/lib/libvirt/local/xml/default-revision7.xml</div>
<div><br></div><div>#defined VM11</div><div><br></div><div>sudo virsh start VM11</div><div><br></div><div>#started VM11 Â Â 23:14 ish UK time</div><div><br></div><div>sudo /var/log/libvirt/qemu/qemu.conf</div><div><br></div>
<div>2012-11-12 23:13:44.233+0000: starting up</div><div>LC_ALL=C PATH=/usr/local/sbin:/usr/local/bin:/usr/bin:/usr/sbin:/sbin:/bin QEMU_AUDIO_DRV=spice /usr/bin/kvm -name VM11 -S -M pc-1.2 -cpu Opteron_G3,+ibs,+osvw,+3dnowprefetch,+cr8legacy,+extapic,+cmp_legacy,+3dnow,+3dnowext,+pdpe1gb,+fxsr_opt,+mmxext,+ht,+vme -enable-kvm -m 2048 -smp 1,sockets=1,cores=1,threads=1 -uuid 35a6984d-0b77-da48-770e-a8fb0c7c284d -no-user-config -nodefaults -chardev socket,id=charmonitor,path=/var/lib/libvirt/qemu/VM11.monitor,server,nowait -mon chardev=charmonitor,id=monitor,mode=control -rtc base=localtime -no-shutdown -device piix3-usb-uhci,id=usb,bus=pci.0,addr=0x1.0x2 -drive file=/var/lib/libvirt/local/fixed-pool0/buildsvr-disk0,if=none,id=drive-virtio-disk0,format=raw,cache=writeback -device virtio-blk-pci,scsi=off,bus=pci.0,addr=0x4,drive=drive-virtio-disk0,id=virtio-disk0,bootindex=3 -drive file=/var/lib/libvirt/local/dynamic-pool0/buildsvr-disk1,if=none,id=drive-virtio-disk1,format=raw,cache=writethrough -device virtio-blk-pci,scsi=off,bus=pci.0,addr=0x6,drive=drive-virtio-disk1,id=virtio-disk1,bootindex=4 -drive if=none,id=drive-ide0-0-0,readonly=on,format=raw -device ide-cd,bus=ide.0,unit=0,drive=drive-ide0-0-0,id=ide0-0-0,bootindex=2 -drive file=/var/lib/libvirt/local/fixed-pool0/buildsvr-media,if=none,id=drive-ide0-0-1,readonly=on,format=raw -device ide-cd,bus=ide.0,unit=1,drive=drive-ide0-0-1,id=ide0-0-1,bootindex=1 -netdev tap,fd=21,id=hostnet0,vhost=on,vhostfd=22 -device virtio-net-pci,netdev=hostnet0,id=net0,mac=00:16:3e:1a:b3:4c,bus=pci.0,addr=0x3 -chardev pty,id=charserial0 -device isa-serial,chardev=charserial0,id=serial0 -device usb-tablet,id=input0 -spice port=5908,tls-port=5918,addr=0.0.0.0,agent-mouse=on,disable-ticketing,x509-dir=/var/lib/libvirt/pki/libvirt-spice,tls-channel=main,plaintext-channel=display,plaintext-channel=inputs,plaintext-channel=cursor,plaintext-channel=playback,plaintext-channel=record,plaintext-channel=usbredir,image-compression=auto_glz,streaming-video=filter -k en-gb -vga qxl -global qxl-vga.vram_size=33554432 -device virtio-balloon-pci,id=balloon0,bus=pci.0,addr=0x5</div>
<div>char device redirected to /dev/pts/2</div><div>((null):8891): Spice-Warning **: reds.c:3307:reds_init_ssl: Could not load certificates from /var/lib/libvirt/pki/libvirt-spice/server-cert.pem</div><div>((null):8891): Spice-Warning **: reds.c:3317:reds_init_ssl: Could not use private key file</div>
<div>((null):8891): Spice-Warning **: reds.c:3325:reds_init_ssl: Could not use CA file /var/lib/libvirt/pki/libvirt-spice/ca-cert.pem</div><div><br></div><div>sudo virsh destroy VM11</div><div><br></div><div>#destroyed</div>
<div><br></div><div>$ sudo /usr/bin/kvm-spice -monitor stdio -spice tls-port=5800,x509-dir=/etc/pki/libvirt-spice,disable-ticketing</div><div><br></div><div><br></div><div>#output</div><div><br></div><div>QEMU 0.12.0 monitor - type 'help' for more information</div>
<div>
<div>(qemu)</div><div><br></div><div>"If you see the same error again, there is something wrong with</div><div>certificates themselves. If not, verify that they are accessible to the</div><div>qemu process - note that it may run under different user than root and</div>
<div>in addition, it may be confined by SELinux or AppArmor. I can't speak</div><div>for AppArmor but for SELinux, you may need to restore context of the</div><div>files (and directories) to make them accessible for qemu."</div>
<div><br></div></div><div>I'll begin looking at the permissions and security tomorrow, although its stretching my</div><div>knowledge of Linux here, I guess the only way to learn is to do though.</div><div><br></div>
<div>I will likely set up my vm's without security for now (they are local only) to have something I can dev on etc</div>
<div>These are nfs (if the passthrough bug in ubuntu kvm-spice doesn't affect the passthrough of a logical volume to the guest, repos (source code), build and dev desktop</div></div><div><br></div><div>Thanks again for all the help<div>
<div><br>
<br><div class="gmail_quote">On Mon, Nov 12, 2012 at 10:40 PM, Jodi Curtis <span dir="ltr"><<a href="mailto:jodi.curtis@gmail.com" target="_blank">jodi.curtis@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Hi I'm going through the process now logging everything I am doing.<div><br></div><div>The VM does start BTW, the problem is that it cannot open the secure channel from remote-viewer attempts to connect, with qemu giving those errors in VM11.log. I will post my new attempt here anyway in a little while, with a success or failure, I've had some minor issues with the pki directory, hence removing and and trying again with fully checked permissions.<br>
<br>Thanks for the help.<div><div><br><br><div class="gmail_quote">On Mon, Nov 12, 2012 at 10:12 PM, David Jaša <span dir="ltr"><<a href="mailto:djasa@redhat.com" target="_blank">djasa@redhat.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Jodi Curtis pÃÅ¡e v Po 12. 11. 2012 v 19:47 +0000:<br>
<div>> hi<br>
><br>
><br>
> sorry I should explain that I used squealer as the server name which<br>
> matches the hostname, this is aliased to various ip's and domain names<br>
> in hosts, the usual method, I'll check the local ip is listed in there<br>
> though,I could try the local ip used to connect .<br>
><br>
<br>
</div>Well, all of these are side problems as long as your VMs refuse to<br>
start... Anyway, given that spice knows how to override the CN check<br>
since its very beginnings (using --spice-host-subject option), this is<br>
no big deal, it's just more convenient if you don't have to.<br>
<div><br>
><br>
> yes the keys were created in the correct directory<br>
<br>
</div>and you already stated that.<br>
<br>
The error message is pretty clear though: there is either something<br>
wrong with certificates themselves or qemu can not access them. If you<br>
can see details of all of them using CLI tools, then the certificates<br>
should be ok. You could verify that ultimately by trying to run<br>
minimalistic qemu manually:<br>
<br>
$ sudo /usr/bin/kvm -monitor stdio -spice tls-port=5800,x509-dir=/etc/pki/libvirt-spice,disable-ticketing<br>
<br>
you should see just a message like this:<br>
QEMU 0.12.1 monitor - type 'help' for more information<br>
(qemu)<br>
<br>
If you see the same error again, there is something wrong with<br>
certificates themselves. If not, verify that they are accessible to the<br>
qemu process - note that it may run under different user than root and<br>
in addition, it may be confined by SELinux or AppArmor. I can't speak<br>
for AppArmor but for SELinux, you may need to restore context of the<br>
files (and directories) to make them accessible for qemu.<br>
<span><font color="#888888"><br>
David<br>
</font></span><div><div><br>
><br>
> On Mon, Nov 12, 2012 at 7:42 PM, David Jaša <<a href="mailto:djasa@redhat.com" target="_blank">djasa@redhat.com</a>> wrote:<br>
> Â Â Â Â Jodi Curtis pÃÅ¡e v Po 12. 11. 2012 v 18:53 +0000:<br>
> Â Â Â Â > Hi<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > Package and OS<br>
> Â Â Â Â > ------------------------------<br>
> Â Â Â Â > Ubuntu 12.10<br>
> Â Â Â Â ><br>
> Â Â Â Â > qemu-kvm-spice:<br>
> Â Â Â Â > Â Installed: 1.2.0-2012.09-0ubuntu1<br>
> Â Â Â Â > Â Candidate: 1.2.0-2012.09-0ubuntu1<br>
> Â Â Â Â > Â Version table:<br>
> Â Â Â Â > Â *** 1.2.0-2012.09-0ubuntu1 0<br>
> Â Â Â Â > Â Â Â Â 500 <a href="http://gb.archive.ubuntu.com/ubuntu/" target="_blank">http://gb.archive.ubuntu.com/ubuntu/</a><br>
> Â Â Â Â quantal/universe<br>
> Â Â Â Â > amd64 Packages<br>
> Â Â Â Â > Â Â Â Â 100 /var/lib/dpkg/status<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > Key Creation<br>
> Â Â Â Â ><br>
> Â Â Â Â > -------------------------<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > openssl genrsa -des3 -out ca-key.pem 1024<br>
> Â Â Â Â > openssl req -new -x509 -days 1095 -key ca-key.pem -out<br>
> Â Â Â Â ca-cert.pem<br>
> Â Â Â Â > -utf8 -subj "/C=IL/L=Raanana/O=Red Hat/CN=my CA"<br>
> Â Â Â Â > openssl genrsa -out server-key.pem 1024<br>
> Â Â Â Â > openssl req -new -key server-key.pem -out server-key.csr<br>
> Â Â Â Â -utf8 -subj<br>
> Â Â Â Â > "/C=IL/L=Raanana/O=Red Hat/CN=my server"<br>
><br>
><br>
> Â Â Â Â (side note here: you can omit C, L and O fields are redundant<br>
> Â Â Â Â for uses<br>
> Â Â Â Â outside of controlled environments but CN field should contain<br>
> Â Â Â Â hostname<br>
> Â Â Â Â or IP address of your server so that you don't need to<br>
> Â Â Â Â override the host<br>
> Â Â Â Â subject)<br>
><br>
> Â Â Â Â > openssl x509 -req -days 1095 -in server-key.csr -CA<br>
> Â Â Â Â ca-cert.pem -CAkey<br>
> Â Â Â Â > ca-key.pem -set_serial 01 -out server-cert.pem<br>
> Â Â Â Â > openssl rsa -in server-key.pem -out server-key.pem.insecure<br>
> Â Â Â Â > mv server-key.pem server-key.pem.secure<br>
> Â Â Â Â > mv server-key.pem.insecure server-key.pem<br>
> Â Â Â Â ><br>
><br>
><br>
> Â Â Â Â here,<br>
><br>
> Â Â Â Â ><br>
> Â Â Â Â > qemu.conf<br>
> Â Â Â Â ><br>
> Â Â Â Â > --------------<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > qemu.conf configuration was attempted as default, and<br>
> Â Â Â Â specified using<br>
> Â Â Â Â > an uncommented path "/etc/pki/libvirt-spice"<br>
> Â Â Â Â ><br>
><br>
><br>
> Â Â Â Â here,<br>
><br>
> Â Â Â Â ><br>
> Â Â Â Â > spice_tls = 1<br>
> Â Â Â Â ><br>
> Â Â Â Â > # default it to keep them in /etc/pki/libvirt-spice. This<br>
> Â Â Â Â directory<br>
> Â Â Â Â ><br>
> Â Â Â Â > # must contain<br>
> Â Â Â Â ><br>
> Â Â Â Â > ...<br>
> Â Â Â Â ><br>
> Â Â Â Â > #spice_tls_x509_cert_dir = "/etc/pki/libvirt-spice" (using<br>
> Â Â Â Â the default<br>
> Â Â Â Â > path)<br>
> Â Â Â Â ><br>
> Â Â Â Â > spice_tls_x509_cert_dir =<br>
> Â Â Â Â "/etc/pki/libvirt-spice" (specifiying the<br>
> Â Â Â Â > path directly)<br>
> Â Â Â Â ><br>
><br>
><br>
> Â Â Â Â and here are the key points. Did you copy the<br>
> Â Â Â Â {ca,server}-{key,cert}.pem<br>
> Â Â Â Â files to /etc/pki/libvirt-spice?<br>
><br>
> Â Â Â Â David<br>
><br>
> Â Â Â Â ><br>
> Â Â Â Â > Permissions<br>
> Â Â Â Â ><br>
> Â Â Â Â > -------------<br>
> Â Â Â Â ><br>
> Â Â Â Â > Permissions were tested set as default (assumed root or my<br>
> Â Â Â Â account)<br>
> Â Â Â Â > and<br>
> Â Â Â Â ><br>
> Â Â Â Â > sudo chown libvirt-qemu /etc/pki/libvirt-spice/<br>
> Â Â Â Â ><br>
> Â Â Â Â > sudo chown libvirt-qemu /etc/pki/libvirt-spice/<filenames of<br>
> Â Â Â Â files><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > Error Reported<br>
> Â Â Â Â > -------------------------<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > sudo nano /var/log/libvirt/qemu/VM11.log<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > qemu: terminating on signal 15 from pid 1417<br>
> Â Â Â Â > 2012-11-12 18:11:24.586+0000: shutting down<br>
> Â Â Â Â > 2012-11-12 18:11:29.698+0000: starting up<br>
> Â Â Â Â > LC_ALL=C<br>
> Â Â Â Â ><br>
> Â Â Â Â PATH=/usr/local/sbin:/usr/local/bin:/usr/bin:/usr/sbin:/sbin:/bin<br>
> Â Â Â Â > QEMU_AUDIO_DRV=spice /usr/bin/kvm -name VM11 -S -M pc-1.2<br>
> Â Â Â Â -cpu<br>
> Â Â Â Â > Opteron_G3,+ibs,+osvw,+3dnowprefetch,+cr8legacy,+extapic,<br>
> Â Â Â Â +cmp_legacy,<br>
> Â Â Â Â > +3dnow,+3dnowext,+pdpe1gb,+fxsr_opt,+mmxext,+ht,+vme<br>
> Â Â Â Â -enable-kvm -m<br>
> Â Â Â Â > 2048 -smp 1,sockets=1,cores=1,threads=1 -uuid<br>
> Â Â Â Â > 35a6984d-0b77-da48-770e-a8fb0c7c284d -no-user-config<br>
> Â Â Â Â -nodefaults<br>
> Â Â Â Â > -chardev<br>
> Â Â Â Â ><br>
> Â Â Â Â socket,id=charmonitor,path=/var/lib/libvirt/qemu/VM11.monitor,server,nowait -mon chardev=charmonitor,id=monitor,mode=control -rtc base=localtime -no-shutdown -device piix3-usb-uhci,id=usb,bus=pci.0,addr=0x1.0x2 -drive file=/var/lib/libvirt/local/fixed-pool0/buildsvr-disk0,if=none,id=drive-virtio-disk0,format=raw,cache=writeback -device virtio-blk-pci,scsi=off,bus=pci.0,addr=0x4,drive=drive-virtio-disk0,id=virtio-disk0,bootindex=3 -drive file=/var/lib/libvirt/local/dynamic-pool0/buildsvr-disk1,if=none,id=drive-virtio-disk1,format=raw,cache=writethrough -device virtio-blk-pci,scsi=off,bus=pci.0,addr=0x6,drive=drive-virtio-disk1,id=virtio-disk1,bootindex=4 -drive if=none,id=drive-ide0-0-0,readonly=on,format=raw -device ide-cd,bus=ide.0,unit=0,drive=drive-ide0-0-0,id=ide0-0-0,bootindex=2 -drive file=/var/lib/libvirt/local/fixed-pool0/buildsvr-media,if=none,id=drive-ide0-0-1,readonly=on,format=raw -device ide-cd,bus=ide.0,unit=1,drive=drive-ide0-0-1,id=ide0-0-1,bootindex=1 -netdev tap,fd=21,id=hostnet0,vhost=on,vhostfd=22 -device virtio-net-pci,netdev=hostnet0,id=net0,mac=00:16:3e:1a:b3:4c,bus=pci.0,addr=0x3 -chardev pty,id=charserial0 -device isa-serial,chardev=charserial0,id=serial0 -device usb-tablet,id=input0 -spice port=5908,tls-port=5918,addr=0.0.0.0,agent-mouse=on,disable-ticketing,x509-dir=/etc/pki/libvirt-spice,tls-channel=main,plaintext-channel=display,plaintext-channel=inputs,plaintext-channel=cursor,plaintext-channel=playback,plaintext-channel=record,plaintext-channel=usbredir,image-compression=auto_glz,streaming-video=filter -k en-gb -vga qxl -global qxl-vga.vram_size=33554432 -device virtio-balloon-pci,id=balloon0,bus=pci.0,addr=0x5<br>
> Â Â Â Â > char device redirected to /dev/pts/1<br>
> Â Â Â Â > ((null):1916): Spice-Warning **: reds.c:3307:reds_init_ssl:<br>
> Â Â Â Â Could not<br>
> Â Â Â Â > load certificates<br>
> Â Â Â Â from /etc/pki/libvirt-spice/server-cert.pem<br>
> Â Â Â Â > ((null):1916): Spice-Warning **: reds.c:3317:reds_init_ssl:<br>
> Â Â Â Â Could not<br>
> Â Â Â Â > use private key file<br>
> Â Â Â Â > ((null):1916): Spice-Warning **: reds.c:3325:reds_init_ssl:<br>
> Â Â Â Â Could not<br>
> Â Â Â Â > use CA file /etc/pki/libvirt-spice/ca-cert.pem<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > Certificates<br>
> Â Â Â Â > --------------------<br>
> Â Â Â Â > I was able to open and read the files using the various<br>
> Â Â Â Â commands<br>
> Â Â Â Â > similar to sudo openssl x509 -noout -text -in ca-cert.pem<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > I did wonder if it is rejecting the CA as some security<br>
> Â Â Â Â feature, I<br>
> Â Â Â Â > hope this is of use.<br>
> Â Â Â Â > I chose libvirt-qemu, as this is the account closed to the<br>
> Â Â Â Â Red<br>
> Â Â Â Â > Hat/Fedora account name used "qemu"<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > Creation<br>
> Â Â Â Â > ---------------<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > creation was via an XML definition followed by calling virsh<br>
> Â Â Â Â define<br>
> Â Â Â Â > <path>, virsh start VM11<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > I have tried to keep most files inside the libvirt tree to<br>
> Â Â Â Â try to<br>
> Â Â Â Â > avoid permission errors, the configuration has two volume<br>
> Â Â Â Â pools,<br>
> Â Â Â Â > specified inside /var/lib/libvirt/local/<pool-name> (which<br>
> Â Â Â Â are mounted<br>
> Â Â Â Â > to other drives, and operate without problem)<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > The volumes used are vmdk volumes (for performance reasons)<br>
> Â Â Â Â one inside<br>
> Â Â Â Â > each pool, for fixed allocation and sparse type allocation),<br>
> Â Â Â Â not that<br>
> Â Â Â Â > this matters but it gives you an idea of what the setup is<br>
> Â Â Â Â like.<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > Location content<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > jodic@squealer:/etc/pki/libvirt-spice$ dir<br>
>     > ca-cert.pem  server-cert.pem  server-key.pem<br>
>     > ca-key.pem  server-key.csr  server-key.pem.secure<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > I could try using a location without the qemu tree to try to<br>
> Â Â Â Â rule out<br>
> Â Â Â Â > some permission problems. I'll go through it again in a<br>
> Â Â Â Â little bit<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
>     > On Mon, Nov 12, 2012 at 6:11 PM, David Jaša<br>
> Â Â Â Â <<a href="mailto:djasa@redhat.com" target="_blank">djasa@redhat.com</a>> wrote:<br>
> Â Â Â Â > Â Â Â Â Before reporting a bug, could we rule out<br>
> Â Â Â Â misconfiguration<br>
> Â Â Â Â > Â Â Â Â possiblity<br>
> Â Â Â Â > Â Â Â Â entirely?<br>
> Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â 1) do you use libvirt?<br>
> Â Â Â Â > Â Â Â Â 2) if so, do you use system session or per-user<br>
> Â Â Â Â session?<br>
> Â Â Â Â > Â Â Â Â 3) could you look at qemu command line? If you use<br>
> Â Â Â Â libvirt,<br>
> Â Â Â Â > Â Â Â Â you'll find it in /var/log/libvirt/qemu/VM_NAME.log<br>
> Â Â Â Â > Â Â Â Â 4) at the libvirt command file, is there '...<br>
> Â Â Â Â > Â Â Â Â -spice ...,x509-(dir|ca...|server),... ' entry?<br>
> Â Â Â Â > Â Â Â Â 5) if the x509 directive is x509-dir, does "qemu-kvm<br>
> Â Â Â Â -spice<br>
> Â Â Â Â > Â Â Â Â tls-port=12345,x509-dir=DIR,disable-ticketing"<br>
> Â Â Â Â command throw<br>
> Â Â Â Â > Â Â Â Â the same error?<br>
> Â Â Â Â > Â Â Â Â Â Â (the same goes for per-file x509 options)<br>
> Â Â Â Â > Â Â Â Â 6) if it is indeed a problem, is it permission issue<br>
> Â Â Â Â or are<br>
> Â Â Â Â > Â Â Â Â the files empty or are they invalid?<br>
> Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â (...)<br>
> Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â David<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â Jodi Curtis pÃÅ¡e v Po 12. 11. 2012 v 17:55 +0000:<br>
> Â Â Â Â > Â Â Â Â > Hi<br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > I've used the directory correctly on qemu.conf,<br>
> Â Â Â Â I've seen<br>
> Â Â Â Â > Â Â Â Â these<br>
> Â Â Â Â > Â Â Â Â > problems relating to Red Hat/oVirt, where it<br>
> Â Â Â Â wasn't set<br>
> Â Â Â Â > Â Â Â Â despite being<br>
> Â Â Â Â > Â Â Â Â > set in qemu.conf, so I will probably file a bug<br>
> Â Â Â Â report with<br>
> Â Â Â Â > Â Â Â Â Ubuntu on<br>
> Â Â Â Â > Â Â Â Â > this one.<br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > The red-hat solution isn't valid for Ubuntu.<br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Thanks<br>
> Â Â Â Â > Â Â Â Â ><br>
>     >     > On Mon, Nov 12, 2012 at 5:49 PM, David Jaša<br>
> Â Â Â Â > Â Â Â Â <<a href="mailto:djasa@redhat.com" target="_blank">djasa@redhat.com</a>> wrote:<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â Jodi Curtis pÃÅ¡e v Po 12. 11. 2012 v 17:31<br>
> Â Â Â Â +0000:<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Hi<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Thanks, I found the method in the end,<br>
> Â Â Â Â my current<br>
> Â Â Â Â > Â Â Â Â problem is<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â related<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > to a problem with Ubuntu/SSL/Spice, so<br>
> Â Â Â Â not really<br>
> Â Â Â Â > Â Â Â Â your<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â software, I<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > have asked for help from a Linux admin,<br>
> Â Â Â Â but its<br>
> Â Â Â Â > Â Â Â Â detailed<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â below for the<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > record, I've gone through the key making<br>
> Â Â Â Â proces<br>
> Â Â Â Â > Â Â Â Â twice, and<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â rebooted,<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > obviously paths have been checked and<br>
> Â Â Â Â qemu.conf<br>
> Â Â Â Â > Â Â Â Â has been set<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â as<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > required<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > ((null):2176): Spice-Warning **:<br>
> Â Â Â Â > Â Â Â Â reds.c:3307:reds_init_ssl:<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â Could not<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > load certificates from server-cert.pem<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > ((null):2176): Spice-Warning **:<br>
> Â Â Â Â > Â Â Â Â reds.c:3317:reds_init_ssl:<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â Could not<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > use private key file<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > ((null):2176): Spice-Warning **:<br>
> Â Â Â Â > Â Â Â Â reds.c:3325:reds_init_ssl:<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â Could not<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > use CA file<br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â Assuming that your cert/key files are<br>
> Â Â Â Â correct and in<br>
> Â Â Â Â > Â Â Â Â place,<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â this looks<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â like incorrect x509-dir option of qemu cli<br>
> Â Â Â Â or<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â spice_tls_x509_cert_dir<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â directive of /etc/libvirt/qemu.conf<br>
> Â Â Â Â pointing to a<br>
> Â Â Â Â > Â Â Â Â wrong<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â directory. Just<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â a configuration issue.<br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â David<br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > There is very little obvious on the<br>
> Â Â Â Â internet, so<br>
> Â Â Â Â > Â Â Â Â am trying<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â to identify<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > if its a common SSL or config problem,<br>
> Â Â Â Â or if I<br>
> Â Â Â Â > Â Â Â Â should file a<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â bug<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > report with Ubuntu kvm-spice<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Jodi<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > On Mon, Nov 12, 2012 at 12:12 PM, David<br>
>     Jaša<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â <<a href="mailto:djasa@redhat.com" target="_blank">djasa@redhat.com</a>> wrote:<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â Hi Jodi,<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â You can find full tls-enabled<br>
> Â Â Â Â > Â Â Â Â remote-viewer<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â invocation in this<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â oVirt<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â wiki page:<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â <a href="http://wiki.ovirt.org/wiki/How_to_Connect_to_SPICE_Console_Without_Portal" target="_blank">http://wiki.ovirt.org/wiki/How_to_Connect_to_SPICE_Console_Without_Portal</a><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â David<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â Jodi Curtis pÃÅ¡e v Ne 11. 11.<br>
> Â Â Â Â 2012 v 23:28<br>
> Â Â Â Â > Â Â Â Â +0000:<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â > Hi<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â > I'm having trouble connecting<br>
> Â Â Â Â to a spice<br>
> Â Â Â Â > Â Â Â Â server<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â with tls<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â enabled<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â > through virt-viewer on<br>
> Â Â Â Â windows, I have<br>
> Â Â Â Â > Â Â Â Â tls<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â configured and a<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â > ca-cert.pem file, but I don't<br>
> Â Â Â Â know where<br>
> Â Â Â Â > Â Â Â Â to put<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â it, or what<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â to use<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â > I have tried various<br>
> Â Â Â Â combinations of<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â spice://192.168.2.140:590x<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â > I have tried adding +ssh or<br>
> Â Â Â Â +tls, I have<br>
> Â Â Â Â > Â Â Â Â tried<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â adding the<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â ca-cert.pem<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â > file to the location used by<br>
> Â Â Â Â the spicec<br>
> Â Â Â Â > Â Â Â Â page that<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â covers how<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â to set up<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â > tls, and I have tried adding<br>
> Â Â Â Â my username<br>
> Â Â Â Â > Â Â Â Â before<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â the IP.<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â > I have tried connecting to<br>
> Â Â Â Â both ports.<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â > Any help on what it should be,<br>
> Â Â Â Â or if<br>
> Â Â Â Â > Â Â Â Â there is an<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â alternative<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â to<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â > virt-viewer on windows that I<br>
> Â Â Â Â need to<br>
> Â Â Â Â > Â Â Â Â use for the<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â secure<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â connection.<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â > Thanks<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â _______________________________________________<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â > Spice-devel mailing list<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â <a href="mailto:Spice-devel@lists.freedesktop.org" target="_blank">Spice-devel@lists.freedesktop.org</a><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â <a href="http://lists.freedesktop.org/mailman/listinfo/spice-devel" target="_blank">http://lists.freedesktop.org/mailman/listinfo/spice-devel</a><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â --<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
>     >     >     >     David Jaša, RHCE<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â SPICE QE based in Brno<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â GPG Key: Â Â 22C33E24<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Â Â Â Â Fingerprint: 513A 060B D1B4 2A72<br>
> Â Â Â Â 7F0D 0278<br>
> Â Â Â Â > Â Â Â Â B125 CD00<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â 22C3 3E24<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â _______________________________________________<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > Spice-devel mailing list<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â > <a href="mailto:Spice-devel@lists.freedesktop.org" target="_blank">Spice-devel@lists.freedesktop.org</a><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â <a href="http://lists.freedesktop.org/mailman/listinfo/spice-devel" target="_blank">http://lists.freedesktop.org/mailman/listinfo/spice-devel</a><br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â --<br>
> Â Â Â Â > Â Â Â Â ><br>
>     >     >     David Jaša, RHCE<br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â SPICE QE based in Brno<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â GPG Key: Â Â 22C33E24<br>
> Â Â Â Â > Â Â Â Â > Â Â Â Â Fingerprint: 513A 060B D1B4 2A72 7F0D 0278<br>
> Â Â Â Â B125 CD00<br>
> Â Â Â Â > Â Â Â Â 22C3 3E24<br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â --<br>
> Â Â Â Â ><br>
>     >     David Jaša, RHCE<br>
> Â Â Â Â ><br>
> Â Â Â Â > Â Â Â Â SPICE QE based in Brno<br>
> Â Â Â Â > Â Â Â Â GPG Key: Â Â 22C33E24<br>
> Â Â Â Â > Â Â Â Â Fingerprint: 513A 060B D1B4 2A72 7F0D 0278 B125 CD00<br>
> Â Â Â Â 22C3 3E24<br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â ><br>
> Â Â Â Â > _______________________________________________<br>
> Â Â Â Â > Spice-devel mailing list<br>
> Â Â Â Â > <a href="mailto:Spice-devel@lists.freedesktop.org" target="_blank">Spice-devel@lists.freedesktop.org</a><br>
> Â Â Â Â > <a href="http://lists.freedesktop.org/mailman/listinfo/spice-devel" target="_blank">http://lists.freedesktop.org/mailman/listinfo/spice-devel</a><br>
><br>
> Â Â Â Â --<br>
><br>
>     David Jaša, RHCE<br>
><br>
> Â Â Â Â SPICE QE based in Brno<br>
> Â Â Â Â GPG Key: Â Â 22C33E24<br>
> Â Â Â Â Fingerprint: 513A 060B D1B4 2A72 7F0D 0278 B125 CD00 22C3 3E24<br>
><br>
><br>
><br>
><br>
><br>
><br>
> _______________________________________________<br>
> Spice-devel mailing list<br>
> <a href="mailto:Spice-devel@lists.freedesktop.org" target="_blank">Spice-devel@lists.freedesktop.org</a><br>
> <a href="http://lists.freedesktop.org/mailman/listinfo/spice-devel" target="_blank">http://lists.freedesktop.org/mailman/listinfo/spice-devel</a><br>
<br>
--<br>
<br>
David Jaša, RHCE<br>
<br>
SPICE QE based in Brno<br>
GPG Key: Â Â 22C33E24<br>
Fingerprint: 513A 060B D1B4 2A72 7F0D 0278 B125 CD00 22C3 3E24<br>
<br>
<br>
<br>
</div></div></blockquote></div><br></div></div></div>
</blockquote></div><br></div></div></div>
</blockquote></div><br>
</div></div></blockquote></div><br>