[
https://issues.apache.org/jira/browse/GUACAMOLE-1929?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17824125#comment-17824125
]
horvathcsabalaszlo edited comment on GUACAMOLE-1929 at 3/6/24 7:08 PM:
-----------------------------------------------------------------------
I built guacd from source on a test VM (from current Git). Suspiciously after
starting the gnome-remote-desktop manually for logging purposes, it worked (not
sure why it did not before restarting the service, but maybe a simple service
restart would do the same). Logs below. The guacd on the home server still
cannot connect.
Sadly i don't want to install compile tools on the homeserver (want to keep it
tidy and reduce all possible attack surfaces), can i simply copy the compiled
guacd (and maybe the rdp library?) to there?
(This source was from current Github. The previous build was downloaded from
the Apache Guacamole homepage for 1.5.4. If there is difference.)
Guacd log :
root@debiantest:/home/user/guacamole-server# ps aux|grep guacd
root 13165 0.0 0.0 6296 644 pts/0 S+ 19:22 0:00 grep guacd
root@debiantest:/home/colt/guacamole-server# GUACD_LOG_LEVEL=debug
/usr/local/sbin/guacd -f -b 127.0.0.1 -l 4822 -p /tmp/guacd.pid
guacd[13167]: INFO: Guacamole proxy daemon (guacd) version 1.5.5 started
guacd[13167]: INFO: Listening on host 127.0.0.1, port 4822
guacd[13167]: INFO: Creating new client for protocol "rdp"
guacd[13167]: INFO: Connection ID is "$e2a15bba-42a8-481d-86c2-ab5c515a23bc"
guacd[13169]: INFO: Security mode: NLA
guacd[13169]: INFO: Resize method: none
guacd[13169]: INFO: No clipboard line-ending normalization specified.
Defaulting to preserving the format of all line endings.
guacd[13169]: INFO: User "@56982154-0a31-4b36-abda-d0b8b494611c" joined
connection "$e2a15bba-42a8-481d-86c2-ab5c515a23bc" (1 users now present)
guacd[13169]: INFO: Loading keymap "base"
guacd[13169]: INFO: Loading keymap "en-us-qwerty"
guacd[13169]: INFO: Accepted format: 16-bit PCM with 2 channels at 44100 Hz
guacd[13169]: INFO: RDP server closed/refused connection: Forcibly
disconnected.
guacd[13169]: INFO: Internal RDP client disconnected
guacd[13169]: INFO: User "@56982154-0a31-4b36-abda-d0b8b494611c"
disconnected (0 users remain)
guacd[13169]: INFO: Last user of connection
"$e2a15bba-42a8-481d-86c2-ab5c515a23bc" disconnected
guacd[13167]: INFO: Connection "$e2a15bba-42a8-481d-86c2-ab5c515a23bc"
removed.
Gnome-remote-desktop log :
user@t430:~$ /usr/libexec/gnome-remote-desktop-daemon
Cannot load libcuda.so.1
Cannot load libnvidia-encode.so.1
*
** Message: 19:24:17.875: RDP server started
[19:24:41:066] [2265418:2265475] [INFO][com.freerdp.core.connection] - Client
Security: NLA:1 TLS:1 RDP:0
[19:24:41:066] [2265418:2265475] [INFO][com.freerdp.core.connection] - Server
Security: NLA:1 TLS:0 RDP:0
[19:24:41:066] [2265418:2265475] [INFO][com.freerdp.core.connection] -
Negotiated Security: NLA:1 TLS:0 RDP:0
[19:24:46:598] [2265418:2265475] [WARN][com.winpr.negotiate] -
AcceptSecurityContext status SEC_I_CONTINUE_NEEDED [0x00090312]
[19:24:46:699] [2265418:2265475] [WARN][com.winpr.negotiate] -
AcceptSecurityContext status SEC_I_COMPLETE_NEEDED [0x00090313]
[19:24:46:800] [2265418:2265475] [INFO][com.freerdp.core.connection] - Accepted
client: Guacamole RDP
[19:24:46:800] [2265418:2265475] [INFO][com.freerdp.core.connection] - Accepted
channels:
[19:24:46:800] [2265418:2265475] [INFO][com.freerdp.core.connection] - cliprdr
[19:24:46:800] [2265418:2265475] [INFO][com.freerdp.core.connection] - rdpdr
[19:24:46:800] [2265418:2265475] [INFO][com.freerdp.core.connection] - rdpsnd
[19:24:46:800] [2265418:2265475] [INFO][com.freerdp.core.connection] - drdynvc
[19:24:46:800] [2265418:2265475] [INFO][com.freerdp.core.gcc] - Active rdp
encryption level: NONE
[19:24:46:800] [2265418:2265475] [INFO][com.freerdp.core.gcc] - Selected rdp
encryption method: NONE
** Message: 19:24:47.419: [RDP.CLIPRDR] Relieving CLIPRDR filename restriction
** Message: 19:24:47.685: [RDP.CLIPRDR] Client capabilities: long format names
** Message: 19:24:47.685: [RDP.AUDIO_PLAYBACK] Failed to open
AUDIO_PLAYBACK_DVC channel (CreationStatus -1073741823). Trying SVC fallback
** Message: 19:24:47.685: [RDP.RDPGFX] CapsAdvertise: Accepting capability set
with version RDPGFX_CAPVERSION_106, Client cap flags: H264 (AVC444): false,
H264 (AVC420): false
** Message: 19:24:47.686: [RDP.AUDIO_PLAYBACK] Client protocol version (6) too
old. Terminating protocol
*
** (gnome-remote-desktop-daemon:2265418): WARNING **: 19:24:48.054:
[RDP.CLIPRDR] Converting clipboard content failed: Failed to get converted data
(here i aborted the rdp server)
was (Author: JIRAUSER304508):
I built guacd from source on a test VM (from current Git). Suspiciously after
starting the gnome-remote-desktop manually for logging purposes, it worked (not
sure why it did not before restarting the service, but maybe a simple service
restart would do the same). Logs below. The guacd on the home server still
cannot connect.
Sadly i don't want to install compile tools on the homeserver (want to keep it
tidy and reduce all possible attack surfaces), can i simply copy the compiled
guacd (and maybe the rdp library?) to there?
Guacd log :
root@debiantest:/home/user/guacamole-server# ps aux|grep guacd
root 13165 0.0 0.0 6296 644 pts/0 S+ 19:22 0:00 grep guacd
root@debiantest:/home/colt/guacamole-server# GUACD_LOG_LEVEL=debug
/usr/local/sbin/guacd -f -b 127.0.0.1 -l 4822 -p /tmp/guacd.pid
guacd[13167]: INFO: Guacamole proxy daemon (guacd) version 1.5.5 started
guacd[13167]: INFO: Listening on host 127.0.0.1, port 4822
guacd[13167]: INFO: Creating new client for protocol "rdp"
guacd[13167]: INFO: Connection ID is "$e2a15bba-42a8-481d-86c2-ab5c515a23bc"
guacd[13169]: INFO: Security mode: NLA
guacd[13169]: INFO: Resize method: none
guacd[13169]: INFO: No clipboard line-ending normalization specified.
Defaulting to preserving the format of all line endings.
guacd[13169]: INFO: User "@56982154-0a31-4b36-abda-d0b8b494611c" joined
connection "$e2a15bba-42a8-481d-86c2-ab5c515a23bc" (1 users now present)
guacd[13169]: INFO: Loading keymap "base"
guacd[13169]: INFO: Loading keymap "en-us-qwerty"
guacd[13169]: INFO: Accepted format: 16-bit PCM with 2 channels at 44100 Hz
guacd[13169]: INFO: RDP server closed/refused connection: Forcibly
disconnected.
guacd[13169]: INFO: Internal RDP client disconnected
guacd[13169]: INFO: User "@56982154-0a31-4b36-abda-d0b8b494611c"
disconnected (0 users remain)
guacd[13169]: INFO: Last user of connection
"$e2a15bba-42a8-481d-86c2-ab5c515a23bc" disconnected
guacd[13167]: INFO: Connection "$e2a15bba-42a8-481d-86c2-ab5c515a23bc"
removed.
Gnome-remote-desktop log :
user@t430:~$ /usr/libexec/gnome-remote-desktop-daemon
Cannot load libcuda.so.1
Cannot load libnvidia-encode.so.1
** Message: 19:24:17.875: RDP server started
[19:24:41:066] [2265418:2265475] [INFO][com.freerdp.core.connection] - Client
Security: NLA:1 TLS:1 RDP:0
[19:24:41:066] [2265418:2265475] [INFO][com.freerdp.core.connection] - Server
Security: NLA:1 TLS:0 RDP:0
[19:24:41:066] [2265418:2265475] [INFO][com.freerdp.core.connection] -
Negotiated Security: NLA:1 TLS:0 RDP:0
[19:24:46:598] [2265418:2265475] [WARN][com.winpr.negotiate] -
AcceptSecurityContext status SEC_I_CONTINUE_NEEDED [0x00090312]
[19:24:46:699] [2265418:2265475] [WARN][com.winpr.negotiate] -
AcceptSecurityContext status SEC_I_COMPLETE_NEEDED [0x00090313]
[19:24:46:800] [2265418:2265475] [INFO][com.freerdp.core.connection] - Accepted
client: Guacamole RDP
[19:24:46:800] [2265418:2265475] [INFO][com.freerdp.core.connection] - Accepted
channels:
[19:24:46:800] [2265418:2265475] [INFO][com.freerdp.core.connection] - cliprdr
[19:24:46:800] [2265418:2265475] [INFO][com.freerdp.core.connection] - rdpdr
[19:24:46:800] [2265418:2265475] [INFO][com.freerdp.core.connection] - rdpsnd
[19:24:46:800] [2265418:2265475] [INFO][com.freerdp.core.connection] - drdynvc
[19:24:46:800] [2265418:2265475] [INFO][com.freerdp.core.gcc] - Active rdp
encryption level: NONE
[19:24:46:800] [2265418:2265475] [INFO][com.freerdp.core.gcc] - Selected rdp
encryption method: NONE
** Message: 19:24:47.419: [RDP.CLIPRDR] Relieving CLIPRDR filename restriction
** Message: 19:24:47.685: [RDP.CLIPRDR] Client capabilities: long format names
** Message: 19:24:47.685: [RDP.AUDIO_PLAYBACK] Failed to open
AUDIO_PLAYBACK_DVC channel (CreationStatus -1073741823). Trying SVC fallback
** Message: 19:24:47.685: [RDP.RDPGFX] CapsAdvertise: Accepting capability set
with version RDPGFX_CAPVERSION_106, Client cap flags: H264 (AVC444): false,
H264 (AVC420): false
** Message: 19:24:47.686: [RDP.AUDIO_PLAYBACK] Client protocol version (6) too
old. Terminating protocol
** (gnome-remote-desktop-daemon:2265418): WARNING **: 19:24:48.054:
[RDP.CLIPRDR] Converting clipboard content failed: Failed to get converted data
(here i aborted the rdp server)
> Guacd cannot connect to Debian+Gnome-remote-desktop
> ---------------------------------------------------
>
> Key: GUACAMOLE-1929
> URL: https://issues.apache.org/jira/browse/GUACAMOLE-1929
> Project: Guacamole
> Issue Type: Bug
> Components: guacd
> Affects Versions: 1.5.4
> Environment: Guacd on Debian Bookworm, connections to Windows and
> Debian Bookworm via RDP is working, but not to Debian Trixie.
> Reporter: horvathcsabalaszlo
> Priority: Minor
> Labels: gnome-remote-desktop, guacd,
>
> Hi,
>
> I have been using Apache Guacamole until now to connect to my home compuers.
> Most of them are running Debian (Bookorm and Trixie), some Windows. The
> Guacamole server is Debian Bookworm.
> So after upgrading my main computer to Trixie, the RDP connection did not
> work. Before VNC was used, which worked well.
> The symptom is that when the Guacamole tries to connect, it cannot
> (disconnects immediately). But only to those, where the OS version is Debian
> Trixie. Connection to Bookworm or Windows is working via RDP.
> The difference between Debian Bookworm and Trixie is the version of
> gnome-remote-desktop , which is 43 on Bookworm, 44 on Trixie, ad the
> libfreerdp2 , which is 2.10 on Bookworm, 2.11 on Trixie.
> I described the issue here, with logs :
> [https://gitlab.gnome.org/GNOME/gnome-remote-desktop/-/issues/183]
> The main problem is that the remote machine log says
> ** (gnome-remote-desktop-daemon:3041831): WARNING **: 23:12:32.514: [RDP]
> Client did not advertise support for the Graphics Pipeline, closing connection
> [23:12:32:248]
> [[{{3041831}}|https://github.com/FreeRDP/FreeRDP/commit/30418312521d0391ba30906859012bb2dd9570d2]:3041930]
> [ERROR][com.freerdp.core.transport] - transport_check_fds:
> transport->ReceiveCallback() - -1
> ** Message: 23:12:32.514: Unable to check file descriptor, closing connection
> Don't need to say, i can connect to my main computer with any RDP client,
> from Windows and Linux.
> I have set up a test Guacamole install on a test VM, but it also could not
> connect to my main computer. (1.3.x and 1.5.4 were tested)
> Checked also with xrdp on my main computer, connection also works from
> Remmina/KRDC/Windows RDP, but not from Guacamole.
>
> I have opened cases for Gnome-remote-desktop, and libfreerdp2 developers, and
> they pointed out that graphics pipeline is not a new feature, but guacd is
> not hooking up to it. I suspect that in libfreerdp2 there may be recent
> changes, which are preventing the fallback. Asked libfreerdp2 devs.
>
> Can you please check what can cause such a problem? If any more information
> is needed, let me know :)
> Thanks in advance :)
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
