[ovirt-users] please test and give karma to novnc on epel6

Tue Feb 3 13:35:40 UTC 2015

Il 03/02/2015 14:27, Gianluca Cecchi ha scritto:
> On Tue, Feb 3, 2015 at 1:04 PM, Sandro Bonazzola <sbonazzo at redhat.com <mailto:sbonazzo at redhat.com>> wrote:
> 
> 
> 
>     Have you imported the CA in your browser?
>     You can download the certificate authority by navigating 'https://<your engine address>/ca.crt'.
> 
> 
> Yes I already imported it, see this screenshot:
> https://drive.google.com/file/d/0BwoPbcrMv8mvblp5amdoQmFaX1E/view?usp=sharing
> 
> In fact if I try to go to ca.crt page again from firefox I receive the message (translated from italian):
> This certificate results already installed as a certificate of a certification authority
> 
> Any particular log to check?
> When I click console button in user portal I get this on engine.log

Adding some people that may know the answer.

> 
> 2015-02-03 14:20:10,125 INFO  [org.ovirt.engine.core.bll.SetVmTicketCommand] (ajp--127.0.0.1-8702-5) [65265ef3] Running command: SetVmTicketCommand
> internal: false. Entities affected :  ID: 168470b1-b7eb-4dab-8fa4-6b744e2ad738 Type: VMAction group CONNECT_TO_VM with role type USER
> 2015-02-03 14:20:10,130 INFO  [org.ovirt.engine.core.vdsbroker.vdsbroker.SetVmTicketVDSCommand] (ajp--127.0.0.1-8702-5) [65265ef3] START,
> SetVmTicketVDSCommand(HostName = ovnode04, HostId = 36fec87b-c21f-4157-ab2f-434b67c05cb9, vmId=168470b1-b7eb-4dab-8fa4-6b744e2ad738,
> ticket=foy2cb1NuPds, validTime=120,m userName=ovadmin, userId=92fa8316-45ac-47bb-9bbd-be80709bf888), log id: 6da35818
> 2015-02-03 14:20:10,189 INFO  [org.ovirt.engine.core.vdsbroker.vdsbroker.SetVmTicketVDSCommand] (ajp--127.0.0.1-8702-5) [65265ef3] FINISH,
> SetVmTicketVDSCommand, log id: 6da35818
> 2015-02-03 14:20:10,233 INFO  [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (ajp--127.0.0.1-8702-5) [65265ef3] Correlation
> ID: 65265ef3, Call Stack: null, Custom Event ID: -1, Message: user ovadmin at ldap1 initiated console session for VM ubuntutrusty
> 
> and in ssl_access _log of engine:
> 
> 192.168.1.128 - - [03/Feb/2015:14:20:10 +0100] "POST /ovirt-engine/userportal/GenericApiGWTService HTTP/1.1" 200 3389
> 192.168.1.128 - - [03/Feb/2015:14:20:10 +0100] "POST /ovirt-engine/userportal/GenericApiGWTService HTTP/1.1" 200 315
> 192.168.1.128 - - [03/Feb/2015:14:20:10 +0100] "POST /ovirt-engine/userportal/GenericApiGWTService HTTP/1.1" 200 4060
> 192.168.1.128 - - [03/Feb/2015:14:20:14 +0100] "GET /ovirt-engine/services/novnc-main.html?host=ovirtmgr.localdomain.local&port=6100 HTTP/1.1" 304 -
> 192.168.1.128 - - [03/Feb/2015:14:20:15 +0100] "GET /ovirt-engine/services/files/novnc/include/vnc.js HTTP/1.1" 304 -
> 192.168.1.128 - - [03/Feb/2015:14:20:15 +0100] "GET /ovirt-engine/services/files/novnc/include/base.css HTTP/1.1" 304 -
> 192.168.1.128 - - [03/Feb/2015:14:20:15 +0100] "GET /ovirt-engine/services/files/novnc/include/util.js HTTP/1.1" 304 -
> 192.168.1.128 - - [03/Feb/2015:14:20:15 +0100] "GET /ovirt-engine/services/files/novnc/include/webutil.js HTTP/1.1" 304 -
> 192.168.1.128 - - [03/Feb/2015:14:20:15 +0100] "GET /ovirt-engine/services/files/novnc/include/base64.js HTTP/1.1" 304 -
> 192.168.1.128 - - [03/Feb/2015:14:20:15 +0100] "GET /ovirt-engine/services/files/novnc/include/des.js HTTP/1.1" 304 -
> 192.168.1.128 - - [03/Feb/2015:14:20:15 +0100] "GET /ovirt-engine/services/files/novnc/include/websock.js HTTP/1.1" 304 -
> 192.168.1.128 - - [03/Feb/2015:14:20:15 +0100] "GET /ovirt-engine/services/files/novnc/include/input.js HTTP/1.1" 304 -
> 192.168.1.128 - - [03/Feb/2015:14:20:15 +0100] "GET /ovirt-engine/services/files/novnc/include/display.js HTTP/1.1" 304 -
> 192.168.1.128 - - [03/Feb/2015:14:20:15 +0100] "GET /ovirt-engine/services/files/novnc/include/rfb.js HTTP/1.1" 304 -
> 192.168.1.128 - - [03/Feb/2015:14:20:15 +0100] "GET /ovirt-engine/services/files/novnc/include/jsunzip.js HTTP/1.1" 304 -
> 
> 
> and in ssl_request_log:
> [03/Feb/2015:14:20:10 +0100] 192.168.1.128 TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 "POST /ovirt-engine/userportal/GenericA
> piGWTService HTTP/1.1" 3389
> [03/Feb/2015:14:20:10 +0100] 192.168.1.128 TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 "POST /ovirt-engine/userportal/GenericA
> piGWTService HTTP/1.1" 315
> [03/Feb/2015:14:20:10 +0100] 192.168.1.128 TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 "POST /ovirt-engine/userportal/GenericA
> piGWTService HTTP/1.1" 4060
> [03/Feb/2015:14:20:14 +0100] 192.168.1.128 TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 "GET /ovirt-engine/services/novnc-main.
> html?host=ovirtmgr.localdomain.local&port=6100 HTTP/1.1" -
> [03/Feb/2015:14:20:15 +0100] 192.168.1.128 TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 "GET /ovirt-engine/services/files/novnc
> /include/vnc.js HTTP/1.1" -
> [03/Feb/2015:14:20:15 +0100] 192.168.1.128 TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 "GET /ovirt-engine/services/files/novnc
> /include/base.css HTTP/1.1" -
> [03/Feb/2015:14:20:15 +0100] 192.168.1.128 TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 "GET /ovirt-engine/services/files/novnc
> /include/util.js HTTP/1.1" -
> [03/Feb/2015:14:20:15 +0100] 192.168.1.128 TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 "GET /ovirt-engine/services/files/novnc
> /include/webutil.js HTTP/1.1" -
> [03/Feb/2015:14:20:15 +0100] 192.168.1.128 TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 "GET /ovirt-engine/services/files/novnc/include/base64.js HTTP/1.1" -
> [03/Feb/2015:14:20:15 +0100] 192.168.1.128 TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 "GET /ovirt-engine/services/files/novnc/include/des.js HTTP/1.1" -
> [03/Feb/2015:14:20:15 +0100] 192.168.1.128 TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 "GET /ovirt-engine/services/files/novnc/include/websock.js HTTP/1.1" -
> 
> perhaps anything related with iptables rules on host?
> 
> 
> 
>     No, the issue here is that novnc was orphaned in epel6 and we built a custom novnc within ovirt for having it back.
>     Now someone took maintainership of novnc within epel6 and in order to get it back the package must have enough karma.
>     That's why test is requested.
> 
> 
> Ah ok, I didn't remember this . 
> As soon as I will solve the 1006 error I can go ahead
> 
> Gianluca

-- 
Sandro Bonazzola
Better technology. Faster innovation. Powered by community collaboration.
See how it works at redhat.com