-
De: Alexandre DERUMIER aderum...@odiso.com
À: Dietmar Maurer diet...@proxmox.com
Cc: pve-devel@pve.proxmox.com
Envoyé: Jeudi 18 Juillet 2013 16:16:00
Objet: Re: [pve-devel] spice tls + proxy: ssl_verify.c:484:openssl_verify: ssl:
hostname
about seamless migration, they are 2 mode
the client_migrate_info host= value (proxyticket), seem to crash the
client if the value is 247 characters.
Do you think it's possible to reduce the proxyticket size ?
I have thinked about it, as the proxyticket in sent through tls, maybe it's
possible to create a ticket like vnc ticket.
I'm reading the spice code to see why it don't take bigger string in
client_info_migrate. (As it's working for initial connection, this is strange)
I guess it is easy to create a shorter ticket - I will take a look at this now.
___
pve-devel mailing
I'm reading the spice code to see why it don't take bigger string in
client_info_migrate. (As it's working for initial connection, this is strange)
Sigh, I am unable to make the ticket smaller - sorry.
___
pve-devel mailing list
Sigh, I am unable to make the ticket smaller - sorry.
Does it need to be in plain text?
What?
___
pve-devel mailing list
pve-devel@pve.proxmox.com
http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
On Fri, 19 Jul 2013 09:30:56 +
Dietmar Maurer diet...@proxmox.com wrote:
What?
I was thinking of making it smaller by using compression.
we are limited to use character [a-z0-9].
compression + quoted-printable or compression + base64 encoded ?
--
Hilsen/Regards
Michael
On Fri, 19 Jul 2013 09:30:56 +
Dietmar Maurer diet...@proxmox.com wrote:
What?
I was thinking of making it smaller by using compression.
we are limited to use character [a-z0-9].
compression + quoted-printable or compression + base64 encoded ?
The result may only
On Fri, 19 Jul 2013 09:45:40 +
Dietmar Maurer diet...@proxmox.com wrote:
The result may only contain character [a-z0-9] (no binary data).
That is the point of quoted printable and base64?
--
Hilsen/Regards
Michael Rasmussen
Get my public GnuPG keys:
michael at rasmussen dot cc
The result may only contain character [a-z0-9] (no binary data).
That is the point of quoted printable and base64?
no. Any why does that make the string smaller?
___
pve-devel mailing list
pve-devel@pve.proxmox.com
Maybe can we try to compress the key with gzip, then convert it with base32 ?
- Mail original -
De: Dietmar Maurer diet...@proxmox.com
À: Michael Rasmussen m...@datanom.net, pve-devel@pve.proxmox.com
Envoyé: Vendredi 19 Juillet 2013 12:06:23
Objet: Re: [pve-devel] spice tls + proxy
I'm reading the spice code to see why it don't take bigger string in
client_info_migrate. (As it's working for initial connection, this is
strange)
Sigh, I am unable to make the ticket smaller - sorry.
I guess I can make it smaller if I use the less secure pve-www.key - will try
that
+ proxy: ssl_verify.c:484:openssl_verify:
ssl:
hostname
Maybe can we try to compress the key with gzip, then convert it with base32
?
___
pve-devel mailing list
pve-devel@pve.proxmox.com
http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
},status:400,data:null,message:Parameter verification
failed.\n}
- Mail original -
De: Dietmar Maurer diet...@proxmox.com
À: Alexandre DERUMIER aderum...@odiso.com
Cc: pve-devel@pve.proxmox.com
Envoyé: Jeudi 18 Juillet 2013 12:36:34
Objet: RE: [pve-devel] spice tls + proxy
I don't known if you I have time to implement the proxy forward to connect
on a vm on a remote node: ?
client --- http connect proxy1 http connect proxy2
Just implemented that - please can you test?
___
pve-devel mailing list
2013 12:36:34
Objet: RE: [pve-devel] spice tls + proxy: ssl_verify.c:484:openssl_verify: ssl:
hostname
I don't known if you I have time to implement the proxy forward to connect
on a vm on a remote node: ?
client --- http connect proxy1 http connect proxy2
Just implemented
aderum...@odiso.com
À: Dietmar Maurer diet...@proxmox.com
Cc: pve-devel@pve.proxmox.com
Envoyé: Jeudi 18 Juillet 2013 13:40:15
Objet: Re: [pve-devel] spice tls + proxy: ssl_verify.c:484:openssl_verify: ssl:
hostname
sorry, my fault, I didn't have updated qemuserver package
I'm going testing
...@proxmox.com
Cc: pve-devel@pve.proxmox.com
Envoyé: Jeudi 18 Juillet 2013 14:30:54
Objet: Re: [pve-devel] spice tls + proxy: ssl_verify.c:484:openssl_verify: ssl:
hostname
Works fine on my test cluster ! Thanks !
I'll try to see how seamless migration works.
I known we can send new host,port values
DERUMIER aderum...@odiso.com
À: Dietmar Maurer diet...@proxmox.com
Cc: pve-devel@pve.proxmox.com
Envoyé: Jeudi 18 Juillet 2013 16:16:00
Objet: Re: [pve-devel] spice tls + proxy: ssl_verify.c:484:openssl_verify: ssl:
hostname
about seamless migration, they are 2 mode:
true seamless migration
the proxy address is generated here :
http://lists.freedesktop.org/archives/spice-devel/2012-August/010610.html
+address = g_proxy_address_new(G_INET_ADDRESS(it-data), pport,
http,
+ s-host, port, NULL, NULL);
+if (address != NULL)
@pve.proxmox.com
Envoyé: Mercredi 17 Juillet 2013 08:15:23
Objet: RE: [pve-devel] spice tls + proxy: ssl_verify.c:484:openssl_verify: ssl:
hostname
the proxy address is generated here :
http://lists.freedesktop.org/archives/spice-devel/2012-August/010610.html
+ address
I don't known if you I have time to implement the proxy forward to connect
on a vm on a remote node: ?
client --- http connect proxy1 http connect proxy2
I will try to implement that tomorrow.
___
pve-devel mailing list
21 matches
Mail list logo