[libvirt-users] rpc error
by 邓焕聪
libvritd offten print the following message:
libvir: RPC error : Cannot recv data: Connection reset by peerlibvir: RPC error : Cannot recv data: Connection reset by peerlibvir: RPC error : Cannot recv data: Connection reset by peerlibvir: RPC error : Cannot recv data: Connection reset by peerlibvir: RPC error : Cannot recv data: Connection reset by peerlibvir: RPC error : Cannot recv data: Connection reset by peerlibvir: RPC error : Cannot recv data: Connection reset by peerlibvir: RPC error : Cannot recv data: Connection reset by peerlibvir: RPC error : Cannot recv data: Connection reset by peerlibvir: RPC error : Cannot recv data: Connection reset by peerlibvir: RPC error : Cannot recv data: Connection reset by peerlibvir: RPC error : Cannot recv data: Connection reset by peerlibvir: RPC error : Cannot recv data: Connection reset by peer
when i restart the service libvirtd , it runs nomally, but after a while, it print the that messages again.
how could i fix it right?
thanks a lot. :)
11 years, 8 months
[libvirt-users] Reg: Initialization of secure memory. Problem with libvirt-0.10.2
by Anusha K
Dear All,
Please find few minutes from your time and guide us with some pointers if
possible.
We are facing a libvirtd crash when we are trying to connect to qemu by
default TLS transport. i.e libvirt crash when trying to inquiry libvirt
version using curl with TLS
# virsh -c qemu+tls://localhost/system version
error: authentication failed: TLS handshake failed A TLS packet with
unexpected length was received.
error: failed to connect to the hypervisor
We used our own CA and certificates on both Kontron PC and our board.
Libvirtd.conf was modified so that libvirt is listening all IPs using
default IP
These directories and files created and used.
/etc/pki/CA/cacert.pem
/etc/pki/libvirt/private/serverkey.pem
/etc/pki/libvirt/servercert.pem
/etc/pki/libvirt/private/clientkey.pem
/etc/pki/libvirt/clientcert.pem
TLS connection worked fine with Kontron PC
# virsh -c qemu+tls://localhost/system version
Compiled against library: libvir 0.9.5
Using library: libvir 0.9.5
Using API: QEMU 0.9.5
Running hypervisor: QEMU 0.12.1
But libvirt crashed on our board (using libvirt 0.10.2,
gnutls-2.10.5-1_WR4.3.x86_64 and libudev-161-4 rpms,
libgcrypt-1.4.0-3_WR4.3.x86_64 )
# virsh -c qemu+tls://localhost/system version
error: authentication failed: TLS handshake failed A TLS packet with
unexpected length was received.
error: failed to connect to the hypervisor
GDB:
Breakpoint 3, 0x00007f555bb07410 in gnutls_handshake () from
/usr/lib64/libgnutls.so.26
(gdb) c
Continuing.
Program received signal SIGABRT, Aborted.
0x00007f555a096005 in raise () from /lib64/libc.so.6
(gdb) bt
#0 0x00007f555a096005 in raise () from /lib64/libc.so.6
#1 0x00007f555a098e40 in abort () from /lib64/libc.so.6
#2 0x00007f555b87fdc5 in _gcry_logv (level=50, fmt=0x7f555b8c6170 "*operation
is not possible without initialized secure memory\n*",
arg_ptr=0x7fff546e1130) at misc.c:136
#3 0x00007f555b8803d5 in _gcry_log_bug (fmt=0x48e0 <Address 0x48e0 out of
bounds>) at misc.c:220
#4 0x00007f555b885697 in _gcry_secmem_malloc_internal (size=<value
optimized out>) at secmem.c:497
#5 0x00007f555b88579c in _gcry_secmem_malloc (size=136) at secmem.c:522
#6 0x00007f555b880a65 in do_malloc (n=18656, flags=<value optimized out>,
mem=0x7fff546e1290) at global.c:553
#7 0x00007f555b880aa9 in _gcry_malloc_secure (n=18656) at global.c:592
#8 0x00007f555b880b19 in _gcry_xmalloc_secure (n=136) at global.c:746
#9 0x00007f555b8c35df in _gcry_mpi_alloc_limb_space (nlimbs=17,
secure=18656) at mpiutil.c:92
#10 0x00007f555b8c365f in _gcry_mpi_alloc_secure (nlimbs=17) at mpiutil.c:75
#11 0x00007f555b8b025a in secret (output=0x17cfa20, input=0x17d0480,
skey=0x6) at rsa.c:365
#12 0x00007f555b8b045a in _gcry_rsa_sign (algo=<value optimized out>,
resarr=0x17d0660, data=0x17d0480, skey=<value optimized out>) at rsa.c:608
#13 0x00007f555b88c1ef in pubkey_sign (r_sig=0x7fff546e1488, s_hash=<value
optimized out>, s_skey=<value optimized out>) at pubkey.c:692
#14 _gcry_pk_sign (r_sig=0x7fff546e1488, s_hash=<value optimized out>,
s_skey=<value optimized out>) at pubkey.c:1807
---Type <return> to continue, or q <return> to quit---
#15 0x00007f555bb29d8c in ?? () from /usr/lib64/libgnutls.so.26
#16 0x00007f555bb15e7a in ?? () from /usr/lib64/libgnutls.so.26
#17 0x00007f555bb1ddd6 in ?? () from /usr/lib64/libgnutls.so.26
#18 0x00007f555bb1e67f in ?? () from /usr/lib64/libgnutls.so.26
#19 0x00007f555bb1edaf in ?? () from /usr/lib64/libgnutls.so.26
#20 0x00007f555bb0af85 in ?? () from /usr/lib64/libgnutls.so.26
#21 0x00007f555bb06c55 in ?? () from /usr/lib64/libgnutls.so.26
#22 0x00007f555bb07437 in gnutls_handshake () from
/usr/lib64/libgnutls.so.26
#23 0x00007f555c8a961b in virNetTLSSessionHandshake () from
/usr/lib64/libvirt.so.0
#24 0x00007f555c89ea2b in virNetServerClientInit () from
/usr/lib64/libvirt.so.0
#25 0x00007f555c89c821 in ?? () from /usr/lib64/libvirt.so.0
#26 0x00007f555c8a012a in ?? () from /usr/lib64/libvirt.so.0
#27 0x00007f555c79fbf5 in virEventPollRunOnce () from
/usr/lib64/libvirt.so.0
#28 0x00007f555c79e825 in virEventRunDefaultImpl () from
/usr/lib64/libvirt.so.0
#29 0x00007f555c89c20d in virNetServerRun () from /usr/lib64/libvirt.so.0
#30 0x000000000040c830 in ?? ()
It seems that virsh does not make proper use of libgcrypt or gnutls. In
fact, Libgcrypt informs us what actually is going wrong.
Please let us know if it is a known issue.
Please go through the below link for more details:
http://lists.gnupg.org/pipermail/gcrypt-devel/2008-December/001420.html
Thanking you in anticipation.
Thanks and Regards,
Anusha K.
11 years, 8 months
[libvirt-users] reboot command lost
by 邓焕聪
when i send a reboot command to libvirtd to reboot a domain, it does not receive and print the following warn:
2013-04-10 06:01:39.080+0000: 2908: warning : qemuDomainObjTaint:1311 : Domain id=56 name='69751ca7-3198-4f3c-8265-cb8cb70ad750' uuid=69751ca7-3198-4f3c-8265-cb8cb70ad750 is tainted: high-privileges
what's the problem???
thanks a lot.:)
11 years, 8 months
[libvirt-users] How can I open a libvirt remote connection with ssh
by Wangkai (Kevin,C)
Hi,
When I use 'virConnectOpenAuth' function to connect to '192.168.1.102' libvirtd with ssh,
Code below, the screen print the dialog "root(a)192.168.1.102's password:" , and only
After I type the password, the connection can be created.
How can I connect to libvirtd with ssh automatically? No need to type the password manually.
char *au[2] = {"root", "xxxx"};
virConnectAuth auth = {
credTypes,
sizeof(credTypes) / sizeof(int),
virConnCb,/* callback function, actually was not be called after connect*/
au /* user and password */
};
conn = virConnectOpenAuth("qemu+ssh://192.168.1.102/system", &auth, 0);
Thanks,
Kevin
11 years, 8 months
Re: [libvirt-users] fail to convert qemu xml to args with libvirt-1.0.4: An error occurred, but the cause is unknown
by Yin Olivia-R63875
Hi Daniel,
Just Ping.
Did you ever successfully convert QEMU xml file to argv on other platforms?
Best Regards,
Olivia
> -----Original Message-----
> From: Yin Olivia-R63875
> Sent: Tuesday, April 09, 2013 1:22 PM
> To: 'libvir-list(a)redhat.com'
> Cc: 'libvirt-users(a)redhat.com'
> Subject: fail to convert qemu xml to args with libvirt-1.0.4: An error
> occurred, but the cause is unknown
>
> Hi,
>
> I used to convert qemu XML to args with libvirt-1.0.3.
> But it failed to convert with libvirt-1.0.4.
>
> # virsh domxml-to-native qemu-argv test.xml >test.sh
> error: An error occurred, but the cause is unknown
>
>
> Comparing the debug file as below:
> 1) lbvirt-1.0.3
> <cut>
> 2013-04-09 03:23:47.296+0000: 2669: debug :
> virEventPollInterruptLocked:716 : Interrupting
> 2013-04-09 03:23:47.296+0000: 2669: debug : virNetClientIO:1807 : All done
> with our call head=(nil) call=0x100871c0 rv=0
> 2013-04-09 03:23:47.297+0000: 2670: debug : virEventPollRunOnce:640 : Poll
> got 1 event(s)
> 2013-04-09 03:23:47.297+0000: 2670: debug :
> virEventPollDispatchTimeouts:425 : Dispatch 0
> 2013-04-09 03:23:47.297+0000: 2669: debug : virNetMessageFree:73 :
> msg=0x10087500 nfds=0 cb=(nil)
> 2013-04-09 03:23:47.297+0000: 2670: debug :
> virEventPollDispatchHandles:470 : Dispatch 1
> 2013-04-09 03:23:47.297+0000: 2670: debug :
> virEventPollDispatchHandles:484 : i=0 w=1
> 2013-04-09 03:23:47.297+0000: 2669: debug : virConnectClose:1483 :
> conn=0x100878b8 <cut>
>
> 2) libvirt-1.0.4
> <cut>
> 2013-04-09 03:07:58.012+0000: 2834: debug :
> virEventPollInterruptLocked:716 : Interrupting
> 2013-04-09 03:07:58.012+0000: 2834: debug : virNetClientIO:1810 : All done
> with our call head=(nil) call=0x10089db8 rv=0
> 2013-04-09 03:07:58.012+0000: 2835: debug : virEventPollRunOnce:640 : Poll
> got 1 event(s)
> 2013-04-09 03:07:58.012+0000: 2835: debug :
> virEventPollDispatchTimeouts:425 : Dispatch 0
> 2013-04-09 03:07:58.012+0000: 2834: error :
> virNetClientProgramDispatchError:175 : An error occurred, but the cause is
> unknown
> 2013-04-09 03:07:58.012+0000: 2835: debug :
> virEventPollDispatchHandles:470 : Dispatch 1
> 2013-04-09 03:07:58.012+0000: 2834: debug : virNetMessageFree:73 :
> msg=0x1008a0f8 nfds=0 cb=(nil)
> 2013-04-09 03:07:58.012+0000: 2835: debug :
> virEventPollDispatchHandles:484 : i=0 w=1
> 2013-04-09 03:07:58.012+0000: 2835: debug :
> virEventPollDispatchHandles:498 : EVENT_POLL_DISPATCH_HANDLE: watch=1
> events=1
> 2013-04-09 03:07:58.012+0000: 2835: debug :
> virEventPollCleanupTimeouts:516 : Cleanup 0
> 2013-04-09 03:07:58.013+0000: 2835: debug :
> virEventPollCleanupTimeouts:552 : Found 0 out of 0 timeout slots used,
> releasing 0
> 2013-04-09 03:07:58.013+0000: 2835: debug : virEventPollCleanupHandles:564 :
> Cleanup 2
> 2013-04-09 03:07:58.013+0000: 2834: debug : virConnectClose:1483 :
> conn=0x1008a4b0 <cut>
>
>
> How can I debug this cause unknown error?
>
> Best Regards,
> Olivia
11 years, 8 months
Re: [libvirt-users] [virt-tools-list] Debugging TLS connection between virt-viewer and libvirt running on separate hosts
by Cole Robinson
On 04/10/2013 10:47 AM, Will Dennis wrote:
> Hi all,
>
> I’m running libvirt 1.0.4 on one host (Ubuntu 12.04), and
> virt-manager/virt-viewer on another (FC18), and using TLS to secure the comm’s
> between the hosts. I was able to get virt-manager to connect the the
> hypervisor host via qemu+tls method, but virt-viewer will not connect (either
> invoked from the “Show the graphical console” option on virt-manager’s VM
> window, or by invoking virt-viewer directly.) Both fail with a generic error
> (virt-manager’s view console says “viewer connection to hypervisor host got
> refused or disconnected”) but does not give a more explicit error. I did a
> tcpdump, and the trace does show the client machine connecting to TCP port
> 16514 on the hypervisor host, which is owned by the libvirtd daemon. From what
> I can see in the packets from that dump, it looks like the endpoints are
> exchanging certificate info, but of course the session is encrypted, so can’t
> really see what else is going on… Is there a way someone can give me to debug
> the communications for either the client or server side? (There’s nothing
> being written to logs as far as I can see.)
CCing libvirt-users
- Cole
11 years, 8 months
[libvirt-users] performance tradeoffs/penalty
by lejeczek
hi everybody
a newbie here, hoping some experienced users/expert can
honestly answer this one question,
and I think I realize all other advantages libvirtoffer but
simply performance,
does libvirt make a user pay penalty, even if only a small
amount, for using it when compared to raw qemu-kvm command line?
if it does where the overhead goes? quest or host, or maybe
both?
lastly
if overall performance is slower then how small it is
comparing to all the advantages it offers?
many thanks
and apologies if this subject was answered already in the past
11 years, 8 months
[libvirt-users] when save the domain, the following errors occured
by Wangkai (Kevin,C)
Hi,
I have create one vm by libvirt api,
And I goto virsh, when I doing save the domain, the following errors occurred:
virsh # save demo2 /home/wk/libvirt/demo2.save
error: Failed to save domain demo2 to /home/wk/libvirt/demo2.save
error: internal error unable to send file handle 'migrate': No file descriptor supplied via SCM_RIGHTS
virsh # list
Id Name State
----------------------------------------------------
18 demo2 running
What was the problem? I cannot find it.
Thanks,
Kevin.
11 years, 8 months