[llvm-dev] Buildbot worker security

Nigel Perks via llvm-dev

unread,

Feb 1, 2021, 6:59:20 AM2/1/21

to llvm...@lists.llvm.org

We are looking into creating an LLVM buildbot worker, to build and test with XCore as the default target.

I understand the process in [1]. I have a worker building correctly under a local master.

Can we authenticate lab.llvm.org when the worker connects? That is, can we be sure we are connecting to the real master, and not to something that will send malicious commands? Can we use the --use-tls option or equivalent [2]? I haven’t seen authentication mentioned or found “tls” in zorg files.

Thanks,

Nigel

[1] https://llvm.org/docs/HowToAddABuilder.html

[2] http://docs.buildbot.net/current/manual/installation/worker.html#cmdoption-buildbot-worker-create-worker-use-tls

David Blaikie via llvm-dev

unread,

Feb 1, 2021, 12:22:38 PM2/1/21

to Nigel Perks, Galina Kistanova, llvm...@lists.llvm.org

+Galina Kistanova

_______________________________________________
LLVM Developers mailing list
llvm...@lists.llvm.org
https://lists.llvm.org/cgi-bin/mailman/listinfo/llvm-dev

Galina Kistanova via llvm-dev

unread,

Mar 15, 2021, 11:32:40 PM3/15/21

to Nigel Perks, llvm...@lists.llvm.org

Hello Nigel,

Sorry for the late reply.

You could use TLS when connecting workers to the buildbot.

Feel free to ping me when you are ready and I'll provide you with instructions.

Thanks

Galina

Reply all

Reply to author

Forward