[GH-ISSUE #58] VNC is broken when webvirtmgr is hosted on a HTTPS webserver #48

New issue

Closed

opened 2026-02-27 16:00:50 +03:00 by kerem · 34 comments

kerem commented 2026-02-27 16:00:50 +03:00

Owner

Copy link

Originally created by @tecnobrat on GitHub (May 23, 2013).
Original GitHub issue: https://github.com/retspen/webvirtmgr/issues/58

These lines of code in templates/vnc.html causes VNC to fail to connect if you are using apache over HTTPS.

                       'encrypt':      WebUtil.getQueryVar('encrypt',
                                (window.location.protocol === "https:")),

I replaced it with:

                       'encrypt':      false,

And then VNC showed properly and I have no more issues.

Originally created by @tecnobrat on GitHub (May 23, 2013). Original GitHub issue: https://github.com/retspen/webvirtmgr/issues/58 These lines of code in templates/vnc.html causes VNC to fail to connect if you are using apache over HTTPS. ``` javascript 'encrypt': WebUtil.getQueryVar('encrypt', (window.location.protocol === "https:")), ``` I replaced it with: ``` javascript 'encrypt': false, ``` And then VNC showed properly and I have no more issues.

kerem closed this issue 2026-02-27 16:00:50 +03:00

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@retspen commented on GitHub (May 27, 2013):

Not tested this issue. This point can be specified on the developer's site: https://github.com/kanaka/noVNC

<!-- gh-comment-id:18485084 --> @retspen commented on GitHub (May 27, 2013): Not tested this issue. This point can be specified on the developer's site: https://github.com/kanaka/noVNC

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@normaldotcom commented on GitHub (Nov 7, 2013):

Verified in the latest version 8d9ef511ec, VNC fails when encryption is enabled. Disabling encryption allows VNC to work again. The code snippet shown above is now located in templates/console.html

<!-- gh-comment-id:27929184 --> @normaldotcom commented on GitHub (Nov 7, 2013): Verified in the latest version 8d9ef511ec702f9ac89d401b487a63b172cf497a, VNC fails when encryption is enabled. Disabling encryption allows VNC to work again. The code snippet shown above is now located in templates/console.html

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@dewback commented on GitHub (Nov 30, 2013):

It fails on secure websocket when webvirtmgr-novnc is spawning websockify in every new connection is trying to load a file called "self.pem" as ssl cert. Stracing the process it shows also that is trying to search for it in /, so is trying to load /self.pem.

So in order to work, the file /self.pem has to exists, be a valid pem containing a concatenated private key plus the public certificate, and the user running webvirtmgr-novnc should have read rights over the file (yes, sucks that one user other than root should have the ability to read a private key when there is no privilege separation). That or telling websockify to search for another pem file, of course.

This minimal patch did the trick:

diff --git a/console/webvirtmgr-novnc b/console/webvirtmgr-novnc
index 931b521..7967262 100755
--- a/console/webvirtmgr-novnc
+++ b/console/webvirtmgr-novnc
@@ -8,6 +8,7 @@ ROOT_PATH = os.path.abspath(os.path.join(DIR_PATH, '..', ''))
 # VENV_PATH = ROOT_PATH + '/venv/lib/python2.7/site-packages'
 LISTEN_HOST = '0.0.0.0'
 LISTEN_PORT = '6080'
+CERT = '/location/of/your/ssl/certificate.pem'

 if ROOT_PATH not in sys.path:
     sys.path.append(ROOT_PATH)
@@ -78,7 +79,7 @@ if __name__ == '__main__':
                                 listen_port=LISTEN_PORT,
                                 source_is_ipv6=False,
                                 verbose=False,
-                                cert='self.pem',
+                                cert=CERT,
                                 key=None,
                                 ssl_only=False,
                                 daemon=False,

And you can generate a self signed pem file if you do not have already a valid one like this:

openssl req -new -x509 -days 3650 -nodes -out certificate.pem -keyout certificate.pem

<!-- gh-comment-id:29558727 --> @dewback commented on GitHub (Nov 30, 2013): It fails on secure websocket when webvirtmgr-novnc is spawning websockify in every new connection is trying to load a file called "self.pem" as ssl cert. Stracing the process it shows also that is trying to search for it in /, so is trying to load /self.pem. So in order to work, the file /self.pem has to exists, be a valid pem containing a concatenated private key plus the public certificate, and the user running webvirtmgr-novnc should have read rights over the file (yes, sucks that one user other than root should have the ability to read a private key when there is no privilege separation). That or telling websockify to search for another pem file, of course. This minimal patch did the trick: ``` Diff diff --git a/console/webvirtmgr-novnc b/console/webvirtmgr-novnc index 931b521..7967262 100755 --- a/console/webvirtmgr-novnc +++ b/console/webvirtmgr-novnc @@ -8,6 +8,7 @@ ROOT_PATH = os.path.abspath(os.path.join(DIR_PATH, '..', '')) # VENV_PATH = ROOT_PATH + '/venv/lib/python2.7/site-packages' LISTEN_HOST = '0.0.0.0' LISTEN_PORT = '6080' +CERT = '/location/of/your/ssl/certificate.pem' if ROOT_PATH not in sys.path: sys.path.append(ROOT_PATH) @@ -78,7 +79,7 @@ if __name__ == '__main__': listen_port=LISTEN_PORT, source_is_ipv6=False, verbose=False, - cert='self.pem', + cert=CERT, key=None, ssl_only=False, daemon=False, ``` And you can generate a self signed pem file if you do not have already a valid one like this: ``` Shell openssl req -new -x509 -days 3650 -nodes -out certificate.pem -keyout certificate.pem ```

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@retspen commented on GitHub (Dec 15, 2013):

Ok, need add cert to git

<!-- gh-comment-id:30603362 --> @retspen commented on GitHub (Dec 15, 2013): Ok, need add cert to git

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@srulikuk commented on GitHub (Feb 15, 2015):

I had webvirtmgr working for a while and decided to use https, i updated templates/console.html as above, I also updated webvirtmgr-novnc cert variable as above.
The webvirtmgr page is working fine but the vnc page chrome shows "the page is trying to load scripts from unauthenticated sources" it gives me a option to "load unsafe scripts" and page displays properly, I am just wondering what this error is and what I can do in webvirtmgr to sort it

<!-- gh-comment-id:74436941 --> @srulikuk commented on GitHub (Feb 15, 2015): I had webvirtmgr working for a while and decided to use https, i updated templates/console.html as above, I also updated webvirtmgr-novnc cert variable as above. The webvirtmgr page is working fine but the vnc page chrome shows "the page is trying to load scripts from unauthenticated sources" it gives me a option to "load unsafe scripts" and page displays properly, I am just wondering what this error is and what I can do in webvirtmgr to sort it

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@brenard commented on GitHub (Feb 15, 2015):

I mean it's just that your are using an "unsafe" certificate for your webvirt-novnc script. You have to use a certificate that is know as safe by your browser. You could try also to access with your browser to https://[web.virt.mgr.host]:6080 and add permanently a security exception for this couple of host and port.

<!-- gh-comment-id:74442236 --> @brenard commented on GitHub (Feb 15, 2015): I mean it's just that your are using an "unsafe" certificate for your webvirt-novnc script. You have to use a certificate that is know as safe by your browser. You could try also to access with your browser to https://[web.virt.mgr.host]:6080 and add permanently a security exception for this couple of host and port.

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@srulikuk commented on GitHub (Feb 16, 2015):

the certificate is a comodo certificate, no errors on other pages or in main webvirtmgr page, the error only appears in vnc popup page, it states the certificate is valid (green lock symbol) however for the encryption it states there connection is secure but includes resources that are not.

<!-- gh-comment-id:74449333 --> @srulikuk commented on GitHub (Feb 16, 2015): the certificate is a comodo certificate, no errors on other pages or in main webvirtmgr page, the error only appears in vnc popup page, it states the certificate is valid (green lock symbol) however for the encryption it states there connection is secure but includes resources that are not.

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@brenard commented on GitHub (Feb 16, 2015):

Do you try to set the WS_PUBLIC_HOST in local_settings.py ? This parameter (appear in last version) permit to control the hostname of webservice host. It's important that the hostname of the WS host corresponding with the subject of your certificate.

<!-- gh-comment-id:74475695 --> @brenard commented on GitHub (Feb 16, 2015): Do you try to set the WS_PUBLIC_HOST in local_settings.py ? This parameter (appear in last version) permit to control the hostname of webservice host. It's important that the hostname of the WS host corresponding with the subject of your certificate.

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@srulikuk commented on GitHub (Feb 16, 2015):

i do not have a local_settings.py but I did make the changes shown here github.com/brenard/webvirtmgr@731bc3304b I still have the same issue, I also looked and did not find documentation how to upgrade to the latest version of webvirtmgr, is there documentation somewhere?

<!-- gh-comment-id:74507285 --> @srulikuk commented on GitHub (Feb 16, 2015): i do not have a local_settings.py but I did make the changes shown here https://github.com/brenard/webvirtmgr/commit/731bc3304bb319656a7c1f90d9d858be736a06f5 I still have the same issue, I also looked and did not find documentation how to upgrade to the latest version of webvirtmgr, is there documentation somewhere?

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@brenard commented on GitHub (Feb 16, 2015):

If you don't have local_settings.py file, you could do this modification in settings.py (like in brenard@731bc33). In any case, the WS_PUBLIC_HOST variable must be set with the value of the CN field of your certificate.

<!-- gh-comment-id:74528238 --> @brenard commented on GitHub (Feb 16, 2015): If you don't have local_settings.py file, you could do this modification in settings.py (like in brenard@731bc33). In any case, the WS_PUBLIC_HOST variable must be set with the value of the CN field of your certificate.

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@srulikuk commented on GitHub (Feb 16, 2015):

in settings.py i added the line WS_PUBLIC_HOST = mydomain.com which is same as in certificate (the certificate actually has many domains) and i still have the same issue

<!-- gh-comment-id:74530729 --> @srulikuk commented on GitHub (Feb 16, 2015): in settings.py i added the line WS_PUBLIC_HOST = mydomain.com which is same as in certificate (the certificate actually has many domains) and i still have the same issue

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@srulikuk commented on GitHub (Feb 18, 2015):

after adding the setting WS_PUBLIC_HOST = mydomain.com i get a timeout error on vnc and cant connect. this si my output when trying to restart / stop novnc

service webvirtmgr-novnc stop

• Stopping WebVirtMgr NoVNC proxy webvirtmgr-novnc start-stop-daemon: warning: failed to kill 1351: No such process
  when I try to start it it gives an ok but running service status tells me its not running, my output from /var/www/webvirtmgr/console/webvirtmgr-novnc results in;
  Traceback (most recent call last):
  File "/var/www/webvirtmgr/console/webvirtmgr-novnc", line 20, in
  from webvirtmgr.settings import WS_PORT
  File "/var/www/webvirtmgr/webvirtmgr/settings.py", line 149, in
  WS_PUBLIC_HOST = mydomain.com
  NameError: name 'mydomain' is not defined

<!-- gh-comment-id:74832981 --> @srulikuk commented on GitHub (Feb 18, 2015): after adding the setting WS_PUBLIC_HOST = mydomain.com i get a timeout error on vnc and cant connect. this si my output when trying to restart / stop novnc # service webvirtmgr-novnc stop - Stopping WebVirtMgr NoVNC proxy webvirtmgr-novnc start-stop-daemon: warning: failed to kill 1351: No such process when I try to start it it gives an ok but running service status tells me its not running, my output from /var/www/webvirtmgr/console/webvirtmgr-novnc results in; Traceback (most recent call last): File "/var/www/webvirtmgr/console/webvirtmgr-novnc", line 20, in <module> from webvirtmgr.settings import WS_PORT File "/var/www/webvirtmgr/webvirtmgr/settings.py", line 149, in <module> WS_PUBLIC_HOST = mydomain.com NameError: name 'mydomain' is not defined

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@brenard commented on GitHub (Feb 18, 2015):

You have to put mydomain.com in quotes :

WS_PUBLIC_HOST = "mydomain.com"

<!-- gh-comment-id:74841437 --> @brenard commented on GitHub (Feb 18, 2015): You have to put mydomain.com in quotes : ``` WS_PUBLIC_HOST = "mydomain.com" ```

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@srulikuk commented on GitHub (Feb 18, 2015):

when I do that and webvirtmgr-novnc still does not run, i get the following

/var/www/webvirtmgr/console/webvirtmgr-novnc

WARNING:root:No local_settings file found.
WebSocket server settings:

• Listen on mydomain.com:6080
• Flash security policy server
• No SSL/TLS support (no cert file)
  Traceback (most recent call last):
  File "/var/www/webvirtmgr/console/webvirtmgr-novnc", line 161, in
  server.start_server()
  File "/usr/lib/python2.7/dist-packages/websockify/websocket.py", line 751, in start_server
  lsock = self.socket(self.listen_host, self.listen_port, False, self.prefer_ipv6)
  File "/usr/lib/python2.7/dist-packages/websockify/websocket.py", line 193, in socket
  sock.bind(addrs[0][4])
  File "/usr/lib/python2.7/socket.py", line 224, in meth
  return getattr(self._sock,name)(*args)
  socket.error: [Errno 98] Address already in use

The cert file is in the correct location as the regular pages open properly with https.

thanks you so much for helping me with this

<!-- gh-comment-id:74856229 --> @srulikuk commented on GitHub (Feb 18, 2015): when I do that and webvirtmgr-novnc still does not run, i get the following # /var/www/webvirtmgr/console/webvirtmgr-novnc WARNING:root:No local_settings file found. WebSocket server settings: - Listen on mydomain.com:6080 - Flash security policy server - No SSL/TLS support (no cert file) Traceback (most recent call last): File "/var/www/webvirtmgr/console/webvirtmgr-novnc", line 161, in <module> server.start_server() File "/usr/lib/python2.7/dist-packages/websockify/websocket.py", line 751, in start_server lsock = self.socket(self.listen_host, self.listen_port, False, self.prefer_ipv6) File "/usr/lib/python2.7/dist-packages/websockify/websocket.py", line 193, in socket sock.bind(addrs[0][4]) File "/usr/lib/python2.7/socket.py", line 224, in meth return getattr(self._sock,name)(*args) socket.error: [Errno 98] Address already in use The cert file is in the correct location as the regular pages open properly with https. thanks you so much for helping me with this

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@brenard commented on GitHub (Feb 18, 2015):

Your error is :

 [Errno 98] Address already in use

That mean that another process is currently listening on TCP port 6080. If you install novnc Debian package, it's possible that novnc service is currently running. In this case, you have to stop and disable novnc service :

service novnc stop
insserv -r novnc

After that, try to restart supervisord. If you still have this problem after stopping novnc, try to detect witch process is listening on 6080 TCP port by running as root :

netstat -lnp|grep 6080

<!-- gh-comment-id:74858829 --> @brenard commented on GitHub (Feb 18, 2015): Your error is : ``` [Errno 98] Address already in use ``` That mean that another process is currently listening on TCP port 6080. If you install novnc Debian package, it's possible that novnc service is currently running. In this case, you have to stop and disable novnc service : ``` service novnc stop insserv -r novnc ``` After that, try to restart supervisord. If you still have this problem after stopping novnc, try to detect witch process is listening on 6080 TCP port by running as root : ``` netstat -lnp|grep 6080 ```

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@srulikuk commented on GitHub (Feb 18, 2015):

I am using ubuntu, novnc is not installed, i restarted nginx and was able to start webvirtmgr-novnc however i still get the same error for https on novnc dialog, see following links to screenshot, http://pbrd.co/1MwXOrX you will see main page https green lock. once i click on vnc dilaog i get the following http://pbrd.co/1MwXSYH, after i click load unsafe scripts page loads but https gets red with strikeout

<!-- gh-comment-id:74861448 --> @srulikuk commented on GitHub (Feb 18, 2015): I am using ubuntu, novnc is not installed, i restarted nginx and was able to start webvirtmgr-novnc however i still get the same error for https on novnc dialog, see following links to screenshot, http://pbrd.co/1MwXOrX you will see main page https green lock. once i click on vnc dilaog i get the following http://pbrd.co/1MwXSYH, after i click load unsafe scripts page loads but https gets red with strikeout

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@retspen commented on GitHub (Feb 18, 2015):

Can you do this:

sudo fuser -k 6080/tcp

and then restart supervisor:

sudo service supervisor restart

<!-- gh-comment-id:74861959 --> @retspen commented on GitHub (Feb 18, 2015): Can you do this: ``` bash sudo fuser -k 6080/tcp ``` and then restart supervisor: ``` bash sudo service supervisor restart ```

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@brenard commented on GitHub (Feb 18, 2015):

Look in the source code of VNC console page : I mean you have JS script load with http://~~~ hard code URL. This URL is normaly defined by using STATIC_URL (in settings.py file) variable but I don't known witch version of webvirtmgr you are using. if you can, you should upgrade your installation.

<!-- gh-comment-id:74864268 --> @brenard commented on GitHub (Feb 18, 2015): Look in the source code of VNC console page : I mean you have JS script load with http://~~~ hard code URL. This URL is normaly defined by using STATIC_URL (in settings.py file) variable but I don't known witch version of webvirtmgr you are using. if you can, you should upgrade your installation.

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@srulikuk commented on GitHub (Feb 18, 2015):

Result
fuser -k 6080/tcp
6080/tcp: 13174
Still same result in web page

<!-- gh-comment-id:74864284 --> @srulikuk commented on GitHub (Feb 18, 2015): Result fuser -k 6080/tcp 6080/tcp: 13174 Still same result in web page

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@retspen commented on GitHub (Feb 18, 2015):

@brenard What js file do you mean?

<!-- gh-comment-id:74864748 --> @retspen commented on GitHub (Feb 18, 2015): @brenard What js file do you mean?

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@srulikuk commented on GitHub (Feb 18, 2015):

i see STATIC_URL = '/static/' in settings.py but cant see http reference in *webvirtmgr-novnc, with regards to upgrading, I have version 4.8.8 I would like to upgrade but i cannot find any documentation on how to upgrade.

many thanks

<!-- gh-comment-id:74866548 --> @srulikuk commented on GitHub (Feb 18, 2015): i see STATIC_URL = '/static/' in settings.py but cant see http reference in *webvirtmgr-novnc, with regards to upgrading, I have version 4.8.8 I would like to upgrade but i cannot find any documentation on how to upgrade. many thanks

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@retspen commented on GitHub (Feb 18, 2015):

cd /var/www/webvirtmgr/; git pull

<!-- gh-comment-id:74867313 --> @retspen commented on GitHub (Feb 18, 2015): ``` bash cd /var/www/webvirtmgr/; git pull ```

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@brenard commented on GitHub (Feb 18, 2015):

@retspen : I mean about novnc/util.js JS file and all others call using Util.load_scripts() method ("webutil.js", "base64.js", "websock.js", "des.js", "input.js", "display.js", "jsunzip.js", "rfb.js").

@srulikuk : Try an upgrade and if you still have problem, send us the HTML code of VNC console page.

<!-- gh-comment-id:74873201 --> @brenard commented on GitHub (Feb 18, 2015): @retspen : I mean about novnc/util.js JS file and all others call using Util.load_scripts() method ("webutil.js", "base64.js", "websock.js", "des.js", "input.js", "display.js", "jsunzip.js", "rfb.js"). @srulikuk : Try an upgrade and if you still have problem, send us the HTML code of VNC console page.

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@srulikuk commented on GitHub (Feb 18, 2015):

I removed my changed files and made a git pull, now i cant login as its not configured for https and ngix is forcing https.
What are all the steps i need to do to get https working, please correct me if i miss something?

1. change encrypt to false as in https://github.com/retspen/webvirtmgr/issues/58#issue-14656089
2. configure certificate path as in https://github.com/retspen/webvirtmgr/issues/58#issuecomment-29558727
3. configure WS_PUBLIC_HOST as in github.com/brenard/webvirtmgr@731bc3304b

<!-- gh-comment-id:74877715 --> @srulikuk commented on GitHub (Feb 18, 2015): I removed my changed files and made a git pull, now i cant login as its not configured for https and ngix is forcing https. What are all the steps i need to do to get https working, please correct me if i miss something? 1. change encrypt to false as in https://github.com/retspen/webvirtmgr/issues/58#issue-14656089 2. configure certificate path as in https://github.com/retspen/webvirtmgr/issues/58#issuecomment-29558727 3. configure WS_PUBLIC_HOST as in https://github.com/brenard/webvirtmgr/commit/731bc3304bb319656a7c1f90d9d858be736a06f5

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@brenard commented on GitHub (Feb 18, 2015):

My advice is to create an local_settings.py in webvirtmgr/local/ directory by copying local_settings.py.example. In this file you have to configure :

WS_PUBLIC_HOST='mydomain.com'
WS_CERT = '/path/to/mydomain.com.pem'

You don't have to modify console template as explain here : https://github.com/retspen/webvirtmgr/issues/58#issue-14656089 This parameter is automatically use encrypt access to WS.

<!-- gh-comment-id:74885487 --> @brenard commented on GitHub (Feb 18, 2015): My advice is to create an local_settings.py in webvirtmgr/local/ directory by copying local_settings.py.example. In this file you have to configure : ``` WS_PUBLIC_HOST='mydomain.com' WS_CERT = '/path/to/mydomain.com.pem' ``` You don't have to modify console template as explain here : https://github.com/retspen/webvirtmgr/issues/58#issue-14656089 This parameter is automatically use encrypt access to WS.

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@srulikuk commented on GitHub (Feb 18, 2015):

1. novonc only works when I run /var/www/webvirtmgr/console/webvirtmgr-console as soon as i ctrl C it it stops working, is it a new service in latest version that i need to start?
2. https works fine novnc dialog displays correctly, however there is still a notification about scripts from unauthenticated sources, but i do not have to load it for vnc to display

<!-- gh-comment-id:74890161 --> @srulikuk commented on GitHub (Feb 18, 2015): 1. novonc only works when I run /var/www/webvirtmgr/console/webvirtmgr-console as soon as i ctrl C it it stops working, is it a new service in latest version that i need to start? 2. https works fine novnc dialog displays correctly, however there is still a notification about scripts from unauthenticated sources, but i do not have to load it for vnc to display

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@brenard commented on GitHub (Feb 18, 2015):

As explain here https://github.com/retspen/webvirtmgr/wiki/Install-WebVirtMgr , you have to configure supervisord to manage webvirtmgr-console service for you. Concerning the notification about scripts from unauthenticated sources, as explain before, give us the HTML code of your VNC console web page.

<!-- gh-comment-id:74892077 --> @brenard commented on GitHub (Feb 18, 2015): As explain here https://github.com/retspen/webvirtmgr/wiki/Install-WebVirtMgr , you have to configure supervisord to manage webvirtmgr-console service for you. Concerning the notification about scripts from unauthenticated sources, as explain before, give us the HTML code of your VNC console web page.

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@srulikuk commented on GitHub (Feb 18, 2015):

I updated the supervisor script as in guide, now vnc gives error 1006, when I try /var/www/webvirtmgr/console/webvirtmgr-console, i get error
WebSocket server settings:

• Listen on 0.0.0.0:6080
• Flash security policy server
• SSL/TLS support
  Traceback (most recent call last):
  File "/var/www/webvirtmgr/console/webvirtmgr-console", line 218, in
  server.start_server()
  File "/usr/lib/python2.7/dist-packages/websockify/websocket.py", line 751, in start_server
  lsock = self.socket(self.listen_host, self.listen_port, False, self.prefer_ipv6)
  File "/usr/lib/python2.7/dist-packages/websockify/websocket.py", line 193, in socket
  sock.bind(addrs[0][4])
  File "/usr/lib/python2.7/socket.py", line 224, in meth
  return getattr(self._sock,name)(*args)
  socket.error: [Errno 98] Address already in use

however when I stop supervisor service this command does not give an error (obviously cant log into to webpage with supervisor stopped)

netstat -lnp|grep 6080
tcp 0 0 0.0.0.0:6080 0.0.0.0:* LISTEN 22221/python

however while supervisor stopped netstat -lnp|grep 608 returns no result

<!-- gh-comment-id:74901587 --> @srulikuk commented on GitHub (Feb 18, 2015): I updated the supervisor script as in guide, now vnc gives error 1006, when I try /var/www/webvirtmgr/console/webvirtmgr-console, i get error WebSocket server settings: - Listen on 0.0.0.0:6080 - Flash security policy server - SSL/TLS support Traceback (most recent call last): File "/var/www/webvirtmgr/console/webvirtmgr-console", line 218, in <module> server.start_server() File "/usr/lib/python2.7/dist-packages/websockify/websocket.py", line 751, in start_server lsock = self.socket(self.listen_host, self.listen_port, False, self.prefer_ipv6) File "/usr/lib/python2.7/dist-packages/websockify/websocket.py", line 193, in socket sock.bind(addrs[0][4]) File "/usr/lib/python2.7/socket.py", line 224, in meth return getattr(self._sock,name)(*args) socket.error: [Errno 98] Address already in use however when I stop supervisor service this command does not give an error (obviously cant log into to webpage with supervisor stopped) netstat -lnp|grep 6080 tcp 0 0 0.0.0.0:6080 0.0.0.0:\* LISTEN 22221/python however while supervisor stopped netstat -lnp|grep 608 returns no result

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@srulikuk commented on GitHub (Feb 18, 2015):

also when i execute service webvirtmgr-console status, i get
webvirtmgr-console: unrecognized service

<!-- gh-comment-id:74902245 --> @srulikuk commented on GitHub (Feb 18, 2015): also when i execute service webvirtmgr-console status, i get webvirtmgr-console: unrecognized service

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@brenard commented on GitHub (Feb 18, 2015):

Restart service using supervisor and check your log files in /var/log/supervisor/ when you access to the VNC console. It's normal that "service webvirtmgr-console status" command return this command because the webvirtmgr-console does not exist. The right service is supervisor.

<!-- gh-comment-id:74904874 --> @brenard commented on GitHub (Feb 18, 2015): Restart service using supervisor and check your log files in /var/log/supervisor/ when you access to the VNC console. It's normal that "service webvirtmgr-console status" command return this command because the webvirtmgr-console does not exist. The right service is supervisor.

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@srulikuk commented on GitHub (Feb 18, 2015):

this is what i get in webvirtmgr-console log
WebSocket server settings:

• Listen on 0.0.0.0:6080

• Flash security policy server

• No SSL/TLS support (no cert file)

• proxying from 0.0.0.0:6080 to ignore:ignore

  1: xx.xx.xx.xx: SSL connection but '/etc/nginx/ssl/mydomain.co.uk.pem' not found
  2: xx.xx.xx.xx: SSL connection but '/etc/nginx/ssl/mydomain.co.uk.pem' not found

the pem file is there i also changed owner to www-data but does not help

<!-- gh-comment-id:74911057 --> @srulikuk commented on GitHub (Feb 18, 2015): this is what i get in webvirtmgr-console log WebSocket server settings: - Listen on 0.0.0.0:6080 - Flash security policy server - No SSL/TLS support (no cert file) - proxying from 0.0.0.0:6080 to ignore:ignore 1: xx.xx.xx.xx: SSL connection but '/etc/nginx/ssl/mydomain.co.uk.pem' not found 2: xx.xx.xx.xx: SSL connection but '/etc/nginx/ssl/mydomain.co.uk.pem' not found the pem file is there i also changed owner to www-data but does not help

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@srulikuk commented on GitHub (Feb 18, 2015):

Since the update I dont have VNC access to my VM's, I am really desperate, what can I do about this error?

<!-- gh-comment-id:74929618 --> @srulikuk commented on GitHub (Feb 18, 2015): Since the update I dont have VNC access to my VM's, I am really desperate, what can I do about this error?

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@srulikuk commented on GitHub (Feb 18, 2015):

Solved the certificate problem, the certificate has to be in /webvirtmgr dir, in version 4.8.8 it did not, also the regular pages (main webvirtmgr not vnc) did not have a problem that the cert was in /etc/nginx/ssl/

regarding the VNC html, are you referring to templates/console-vnc.html? if yes i pasted it here http://pastebin.com/9dkLp6Ry

<!-- gh-comment-id:74936825 --> @srulikuk commented on GitHub (Feb 18, 2015): Solved the certificate problem, the certificate has to be in /webvirtmgr dir, in version 4.8.8 it did not, also the regular pages (main webvirtmgr not vnc) did not have a problem that the cert was in /etc/nginx/ssl/ regarding the VNC html, are you referring to templates/console-vnc.html? if yes i pasted it here http://pastebin.com/9dkLp6Ry

kerem commented 2026-02-27 16:00:51 +03:00

Author

Owner

Copy link

@srulikuk commented on GitHub (Feb 21, 2015):

Did you have a chance to look at my html yet?

<!-- gh-comment-id:75394749 --> @srulikuk commented on GitHub (Feb 21, 2015): Did you have a chance to look at my html yet?

kerem referenced this issue 2026-02-27 16:38:50 +03:00

[GH-ISSUE #416] noVNC not having host or port set for connections #315

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

v4.8.9

v4.8.8

4.8.7

v4.1.0

v4.0.1

v3.0.0

v2.3.2

Labels

Clear labels   

bug

  

pull-request

Mirrored from GitHub Pull Request

  

wontfix

No labels

bug

pull-request

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/webvirtmgr#48

No description provided.