Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

enabling xrdp on Multipass unable to connect #3422

Open
craftzneko opened this issue Mar 3, 2024 · 6 comments
Open

enabling xrdp on Multipass unable to connect #3422

craftzneko opened this issue Mar 3, 2024 · 6 comments
Labels
bug

Comments

@craftzneko
Copy link

Describe the bug
followed this guide https://multipass.run/docs/set-up-a-graphical-interface#heading--using-x11-forwarding
on Mac apple silicon when connecting from Mac via MS Remote Desktop app or screensharing app on Mac both fail. Logs on ubuntu show this

Mar 03 22:03:09 proven-troll xrdp[29696]: [ERROR] Cannot read private key file /etc/xrdp/key.pem: Permission denied
Mar 03 22:03:09 proven-troll xrdp[29696]: [ERROR] libxrdp_force_read: header read error
Mar 03 22:03:09 proven-troll xrdp[29696]: [ERROR] [ITU-T X.224] Connection Sequence: CR-TPDU (Connection Request) failed
Mar 03 22:03:09 proven-troll xrdp[29696]: [ERROR] xrdp_sec_incoming: xrdp_iso_incoming failed
Mar 03 22:03:09 proven-troll xrdp[29696]: [ERROR] xrdp_rdp_incoming: xrdp_sec_incoming failed
Mar 03 22:03:09 proven-troll xrdp[29696]: [ERROR] xrdp_process_main_loop: libxrdp_process_incoming failed
Mar 03 22:03:09 proven-troll xrdp[29696]: [ERROR] xrdp_iso_send: trans_write_copy_s failed
Mar 03 22:03:09 proven-troll xrdp[29696]: [ERROR] Sending [ITU T.125] DisconnectProviderUltimatum failed

looked through guide see no mention of configuring anything else, have I missed something

To Reproduce
How, and what happened?

  1. follow this guide https://multipass.run/docs/set-up-a-graphical-interface#heading--using-x11-forwarding on apple silicon Mac
  2. try to connect via rdp on same device

Expected behavior
connect to rep

Logs
Please provide logs from the daemon, see accessing logs on where to find them on your platform.

Additional info

  • OS: Mac OS 14.1.1
  • multipass version multipass 1.13.1+mac
    multipassd 1.13.1+mac
  • multipass info --all
  • Name: proven-troll
    State: Running
    Snapshots: 0
    IPv4: 192.168.64.5
    Release: Ubuntu 22.04.4 LTS
    Image hash: f19e2cf2d2e5 (Ubuntu 22.04 LTS)
    CPU(s): 2
    Load: 0.05 0.04 0.01
    Disk usage: 4.6GiB out of 19.3GiB
    Memory usage: 251.2MiB out of 7.7GiB
  • multipass get local.driver
    emu
    Additional context
    Add any other context about the problem here.
@craftzneko craftzneko added bug needs triage Issue needs to be triaged labels Mar 3, 2024
@andrei-toterman
Copy link
Contributor

Hi, @craftzneko! I'm sorry you're having trouble. I see that you linked the tutorial for X11 forwarding, but you're talking about connecting through RDP. Just to make sure, you followed this tutorial https://multipass.run/docs/set-up-a-graphical-interface#heading--using-rdp for setting up an RDP server inside your VM, right?

@andrei-toterman
Copy link
Contributor

Anyway, I can replicate the issue and I get the same errors as you, so I will investigate some more and get back to you when I find something!

@craftzneko
Copy link
Author

Hi @andrei-toterman, yes sorry I did mean to link the main article not an anchor. Thanks for looking!

@craftzneko craftzneko mentioned this issue Mar 7, 2024
Closed
@townsend2010 townsend2010 removed the needs triage Issue needs to be triaged label Mar 18, 2024
@mickym2
Copy link

mickym2 commented Mar 18, 2024

So I have the same problem to get an RDP session from my Windows RDP.
I have the error:

[20240319-00:20:44] [ERROR] Cannot read private key file /etc/xrdp/key.pem: Permission denied
[20240319-00:20:44] [INFO ] Security protocol: configured [RDP], requested [SSL|HYBRID|HYBRID_EX|RDP], selected [RDP]
[20240319-00:20:44] [ERROR] libxrdp_force_read: header read error
[20240319-00:20:44] [ERROR] libxrdp_force_read: header read error
[20240319-00:20:44] [ERROR] [ITU-T X.224] Connection Sequence: CR-TPDU (Connection Request) failed
[20240319-00:20:44] [INFO ] Socket 12: AF_INET6 connection received from ::ffff:192.168.178.40 port 63717
[20240319-00:20:44] [ERROR] Processing [ITU-T T.125] Connect-Initial failed
[20240319-00:20:44] [ERROR] xrdp_sec_incoming: xrdp_iso_incoming failed
[20240319-00:20:44] [INFO ] Socket 12: AF_INET6 connection received from 2001:9e8:a5e6:8500:64ea:4874:9db:cb4f port 63716
[20240319-00:20:44] [INFO ] Using default X.509 certificate: /etc/xrdp/cert.pem
[20240319-00:20:44] [ERROR] [MCS Connection Sequence] receive connection request failed
[20240319-00:20:44] [ERROR] xrdp_rdp_incoming: xrdp_sec_incoming failed
[20240319-00:20:44] [INFO ] Using default X.509 certificate: /etc/xrdp/cert.pem
[20240319-00:20:44] [INFO ] Using default X.509 key file: /etc/xrdp/key.pem
[20240319-00:20:44] [ERROR] xrdp_sec_incoming: xrdp_mcs_incoming failed
[20240319-00:20:44] [ERROR] xrdp_rdp_incoming: xrdp_sec_incoming failed
[20240319-00:20:44] [ERROR] xrdp_process_main_loop: libxrdp_process_incoming failed
[20240319-00:20:44] [INFO ] Using default X.509 key file: /etc/xrdp/key.pem
[20240319-00:20:44] [ERROR] Cannot read private key file /etc/xrdp/key.pem: Permission denied
[20240319-00:20:44] [ERROR] xrdp_process_main_loop: libxrdp_process_incoming failed
[20240319-00:20:44] [ERROR] xrdp_iso_send: trans_write_copy_s failed
[20240319-00:20:44] [ERROR] Cannot read private key file /etc/xrdp/key.pem: Permission denied
[20240319-00:20:44] [WARN ] Cannot accept TLS connections because certificate or private key file is not readable. certificate file: [/etc/xrdp/cert.pem], private key file: [/etc/xrdp/key.pem]
[20240319-00:20:44] [ERROR] xrdp_iso_send: trans_write_copy_s failed
[20240319-00:20:44] [ERROR] Sending [ITU T.125] DisconnectProviderUltimatum failed
[20240319-00:20:44] [ERROR] libxrdp_force_read: header read error
[20240319-00:20:44] [INFO ] Security protocol: configured [RDP], requested [RDP], selected [RDP]
[20240319-00:20:44] [ERROR] Sending [ITU T.125] DisconnectProviderUltimatum failed
[20240319-00:20:44] [ERROR] [ITU-T X.224] Connection Sequence: CR-TPDU (Connection Request) failed
[20240319-00:20:44] [INFO ] Connected client computer name: MSI
[20240319-00:20:44] [ERROR] xrdp_sec_incoming: xrdp_iso_incoming failed
[20240319-00:20:44] [WARN ] Received [MS-RDPBCGR] TS_UD_HEADER type 0xc006 is unknown (ignored)
[20240319-00:20:44] [ERROR] xrdp_rdp_incoming: xrdp_sec_incoming failed
[20240319-00:20:44] [WARN ] Received [MS-RDPBCGR] TS_UD_HEADER type 0xc00a is unknown (ignored)
[20240319-00:20:44] [ERROR] xrdp_process_main_loop: libxrdp_process_incoming failed
[20240319-00:20:44] [INFO ] xrdp_load_keyboard_layout: Keyboard information sent by the RDP client, keyboard_type:[0x07], keyboard_subtype:[0x00], keylayout:[0x00000407]
[20240319-00:20:44] [ERROR] xrdp_iso_send: trans_write_copy_s failed
[20240319-00:20:44] [INFO ] xrdp_load_keyboard_layout: model [] variant [] layout [de] options []
[20240319-00:20:44] [ERROR] Sending [ITU T.125] DisconnectProviderUltimatum failed
[20240319-00:20:44] [INFO ] Non-TLS connection established from ::ffff:192.168.178.40 port 63717: with security level : high
[20240319-00:20:45] [INFO ] xrdp_caps_process_pointer: client supports new(color) cursor
[20240319-00:20:45] [INFO ] xrdp_process_offscreen_bmpcache: support level 1 cache size 10485760 MB cache entries 100
[20240319-00:20:45] [INFO ] xrdp_caps_process_codecs: nscodec, codec id 1, properties len 3
[20240319-00:20:45] [WARN ] xrdp_caps_process_codecs: unknown codec id 5
[20240319-00:20:45] [INFO ] xrdp_caps_process_codecs: RemoteFX, codec id 3, properties len 49
[20240319-00:20:45] [INFO ] Loading keymap file /etc/xrdp/km-00000407.ini
[20240319-00:20:45] [WARN ] local keymap file for 0x00000407 found and doesn't match built in keymap, using local keymap file
[20240319-00:20:45] [INFO ] connecting to sesman on 127.0.0.1:3350
[20240319-00:20:45] [INFO ] xrdp_wm_log_msg: sesman connect ok
[20240319-00:20:45] [INFO ] sesman connect ok
[20240319-00:20:45] [INFO ] sending login info to session manager. Please wait...
[20240319-00:20:45] [INFO ] xrdp_wm_log_msg: login successful for user mwrdp on display 10
[20240319-00:20:45] [INFO ] login successful for user mwrdp on display 10
[20240319-00:20:45] [INFO ] loaded module 'libxup.so' ok, interface size 10296, version 4
[20240319-00:20:45] [INFO ] started connecting
[20240319-00:20:45] [INFO ] lib_mod_connect: connecting via UNIX socket
[20240319-00:20:46] [INFO ] lib_mod_log_peer: xrdp_pid=25024 connected to X11rdp_pid=25063 X11rdp_uid=1001 X11rdp_gid=1001 client_ip=::ffff:192.168.178.40 client_port=63717
[20240319-00:20:46] [INFO ] connected ok

All this happens since the last update on my debian bookworm installation. So something has changed with a new package but do not know which causes the problem now. 2 weeks ago everything worked properly.

@mickym2
Copy link

mickym2 commented Mar 18, 2024

I found out - that the default security level will be set to RDP, if access to the cert files. If I add xrdp user to ssl-cert group it switches to SSL level but - the problem remains the same.

@craftzneko
Copy link
Author

hey @andrei-toterman did you manage to find the issue after?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@craftzneko @townsend2010 @andrei-toterman @mickym2