On Tue, Aug 23, 2011 at 08:50:35PM +0200, Radek Hladik wrote: > Dne 23.8.2011 14:36, Radek Hladik napsal(a): > >I am thinking whether there is not a problem with monitor setting > >something after the machine starts. Libvirt does the same with password, > >so maybe it does something with TLS > > I tried to remove the VNC password from guest XML and TLS is > working. So actually now the situation is like this: > > * guest with password+qemu configured to use TLS = no TLS (VNC AUTH TYPE=2) > > * guest without password+qemu configured to use TLS = working TLS > (VNC AUTH TYPE=19) > > I hope it will help to make my issue more clear. I am really > suspecting that the password setup somehow removes the TLS option > from VNC. Yes, QEMU applied a broken fix for CVE-2011-0011 which means whenever you set a password, they reset auth type to 'VNC' (type=2). http://lists.nongnu.org/archive/html/qemu-devel/2011-08/msg02795.html Regards, Daniel -- |: http://berrange.com -o- http://www.flickr.com/photos/dberrange/ :| |: http://libvirt.org -o- http://virt-manager.org :| |: http://autobuild.org -o- http://search.cpan.org/~danberr/ :| |: http://entangle-photo.org -o- http://live.gnome.org/gtk-vnc :| -- libvir-list mailing list libvir-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/libvir-list