Citrix internal secrets pwned by hackers

Further's the case for OpenSource and XCP-NG, but still something for us all to keep our eyes on as it hits close to home.

https://www.theregister.co.uk/2019/03/08/citrix_hacked_data_stolen/

Well, it's been more than a week now and have only good news to report with running 7.6.

In fact, I'm rather stunned - as CPU usage / Load logging clearly demonstrates even significant performance gains on my my HomeLab production system (an i5 7200 Intel NUC-Like system with 6 Intel NICs & 24GB RAM / 500GB Samsung EVO SSD).

Running 4 Linux VMs / a BSD VM / a Windows10 VM on XCP-NG 7.5 - CPU perf was averaging around 25% & Load was around 0.4-5 average when under light load.

Now, running all those VMs on 7.6, CPU perf average has dropped to 10% and Load averages have also dropped to 0.1 - 0.15 under the same VM load as before.

My two other XCP-NG - a Disaster Recovery box and a Test Bed (a laptop from 2009) also appear to have realised similar performance gains as well.

I didn't see any mention of "performance gains" in this maintenance release, but I'm amazed and very impressed.

I did do complete fresh Installs on my production system & DR Box, and only did an upgrade on my Test Bed laptop. All 3 migrations to 7.6 went without a hitch.

Well done contributors and builders - well done indeed!

First off, thanks to @Aimdev and @fjen for providing a good write up of the steps taken to get USB passthrough to work.

I followed them all pretty much with out any difficulty and with no errors on anything for a Broadcom Bluetooth USB card (Broadcom Corp._BCM2045B) that's built into my laptop I'd like to pass through to a Linux VM.

And I get all the way up to where the USB device is correctly presented in the XCP-ng Centre application, but the device doesn't [seem to] appear at the OS level in dmesg | grep usbcore or lusb outputs in my guest OS VM.

However, since I didn't any failure to start the vm or other errors, I had not executed the final command: xe vm-param-set uuid=<VM UUID> platform:device-model=qemu-upstream-compat

But since the Broadcom chip still didn't appear in the guest Linux VM, I shutdown the VM and then executed the above command with the VM UUID.

But after a restart, the VM still doesn't see the Broadcom USB device.

Any idea what could be up or suggestions where I need to dig?

@borzel Okay, I'll wait. I just was very much wanting to help test them. This whole system is a 'test system' for me to play with.

Enjoy your vacation.

@borzel said in [Test] XCP-ng 7.5.0 Windows PV-Drivers and Management Agent:

currently we don't have them

I'm confused now. I thought that's what I was installing....I am running XCP-ng 7.5 here. I haven't downloaded anything from Citrix at all.

Edited to add: Okay, I just went back and re-installed Windows10 from scratch and see I end up automatically with XenServer PV drivers. How do I get the XCP-ng pre-release PV drivers installed then?

@borzel Oh crap, how did I manage that?

Not a problem tho - I have a Snapshot image I can revert this too before the installation of the PV drivers.

Would you be so kind as to direct me to the latest and greatest and proper PV drivers I should be using & I'll revert snapshots and install those.

@borzel

Like this? Or am I still missing something?