Opened 4 years ago

Last modified 15 months ago

#2880 assigned enhancement

TLS support for BuildMaster <--> BuildSlave

Reported by: sa2ajj Owned by: gracinet
Priority: minor Milestone: 0.9.+
Version: 0.8.9 Keywords: master-slave
Cc:

Description

Currently BuildMaster and BuildSlave communicate over plain TCP/IP.

Some people find it rather risky to use Buildbot.

A few links to the relevant Twisted Python documentation:

Change History (5)

comment:1 Changed 4 years ago by sa2ajj

Related ticket #2129

comment:2 Changed 4 years ago by dustin

I expect this is possible with correct configuration, but I haven't tried that, nor do I know offhand what that congiguration is.

So this may be as simple as a documentation fix.

comment:3 Changed 4 years ago by dustin

  • Milestone changed from undecided to 0.9.+
  • Priority changed from major to minor
  • Type changed from undecided to enhancement

A brief bit of experimentation shows that on the master,

c['slavePortnum'] = ''ssl:9999:privateKey=/tmp/key.pem:certKey=/tmp/crt.pem'

works.

However, the slave is not so lucky -- it instantiates an internet.TCPClient directly, using separate host and port parameters.

So this will need some code change on the slave in order to support TLS connections.

comment:4 Changed 21 months ago by gracinet

  • Owner set to gracinet
  • Status changed from new to assigned

Working on it this week !

Note: See TracTickets for help on using tickets.