[Spice-devel] remote-viewer: tls seamless migration : CA option is not keep

2013-07-21 Thread Alexandre DERUMIER 
Hi,

I'm trying to do seamless migration of a qemu guest, using only tls for spice 
client.

Client is remote-viewer, and is launched through a config file with the ca 
certificate embedded like this

[virt-viewer]
type=spice
ca=BEGIN CERTIFICATE--\n\nEND CERTIFICATE\n
tls-port=
...


This works fine for establish the connection to spice server,
but when I'm doing a seamless migration, the ca is not reused and remote-viewer 
give me

(remote-viewer:25533): GSpice-WARNING **: no cert loaded

Workaround is to copy the cerficate in .spicec/spice_truststore.pem,

But I would like to avoid to do this.


Is it a bug ? or does exist some option to force remote-viewer to auto write 
the ca=... inside the spice_truststore.pem ?

Best Regards,

Alexandre




___
Spice-devel mailing list
Spice-devel@lists.freedesktop.org
http://lists.freedesktop.org/mailman/listinfo/spice-devel

Re: [Spice-devel] spice-gtk http connect proxy authentification ?

2013-07-21 Thread Alexandre DERUMIER 
>>Open a bug? Send a patch? :) 

Thanks,

I'll try to make a patch.

As workaround for now, I'm using host value as ticket, with encoded 
user,pass,host.
(As I'm using custom http proxy, I can decode them)


- Mail original - 

De: "Marc-André Lureau"  
À: "Alexandre DERUMIER"  
Cc: "spice-devel"  
Envoyé: Mercredi 17 Juillet 2013 12:27:09 
Objet: Re: [Spice-devel] spice-gtk http connect proxy authentification ? 


Hi 

- Mensaje original - 
> Hi, 
> 
> I would like to known if it's planned to add authentification to http 
> spice_proxy soon ? 

It wasn't planned so far. 

> I think It should be easy, 
> 
> we just need to be able to parse a proxy url like this 
> 
> http://username:password@host:port 
> 
> 
> then replace in spice-session.c 
> 
> address = g_proxy_address_new(G_INET_ADDRESS(it->data), pport, "http", 
> + s->host, port, NULL, NULL); 
> 
> by 
> 
> address = g_proxy_address_new(G_INET_ADDRESS(it->data), pport, "http", 
> + s->host, port, username, password); 
> 
> 

Open a bug? Send a patch? :) 

thanks 
___
Spice-devel mailing list
Spice-devel@lists.freedesktop.org
http://lists.freedesktop.org/mailman/listinfo/spice-devel