DEBUG

Signed-off-by: Stéphane Graber <[email protected]>

Author: stgraber

internal/server/instance/drivers/driver_qemu.go

@@ -364,6 +364,44 @@ type qemu struct {
 // Callers should check that the instance is running (and therefore mounted) before calling this function,
 // otherwise the qmp.Connect call will fail to use the monitor socket file.
 func (d *qemu) getAgentClient() (*http.Client, error) {
+	// FIXME: testing
+	if d.name == "win11" {
+		client := &http.Client{}
+
+		// The connection uses mutual authentication, so use the server's key & cert for client.
+		agentCert, _, clientCert, clientKey, err := d.generateAgentCert()
+		if err != nil {
+			return nil, err
+		}
+
+		// Get the TLS configuration.
+		tlsConfig, err := localtls.GetTLSConfigMem(clientCert, clientKey, "", agentCert, false)
+		if err != nil {
+			return nil, err
+		}
+
+		client.Transport = &http.Transport{
+			TLSClientConfig: tlsConfig,
+			DialContext: func(_ context.Context, network, addr string) (net.Conn, error) {
+				return net.Dial("tcp", "172.17.250.112:8443")
+			},
+			DisableKeepAlives:     true,
+			ExpectContinueTimeout: time.Second * 30,
+			ResponseHeaderTimeout: time.Second * 3600,
+			TLSHandshakeTimeout:   time.Second * 5,
+		}
+
+		// Setup redirect policy.
+		client.CheckRedirect = func(req *http.Request, via []*http.Request) error {
+			// Replicate the headers.
+			req.Header = via[len(via)-1].Header
+
+			return nil
+		}
+
+		return client, nil
+	}
+
 	// Check if the agent is running.
 	monitor, err := qmp.Connect(d.monitorPath(), qemuSerialChardevName, d.getMonitorEventHandler(), d.QMPLogFilePath())
 	if err != nil {