Add TLS certificates for machine drivers (#73)

services/instance.go

@@ -2,6 +2,7 @@ package services
 
 import (
 	"context"
+	"crypto/tls"
 	"io"
 	"log"
 	"os"
@@ -29,6 +30,9 @@ type Instance struct {
 	Cpu          string                  `json:"cpu"`
 	Ports        []uint16                `json:"ports"`
 	tempPorts    []uint16                `json:"-"`
+	ServerCert   []byte                  `json:"server_cert"`
+	ServerKey    []byte                  `json:"server_key"`
+	cert         *tls.Certificate        `json:"-"`
 }
 
 func (i *Instance) setUsedPort(port uint16) {
@@ -43,6 +47,25 @@ func (i *Instance) setUsedPort(port uint16) {
 	i.tempPorts = append(i.tempPorts, port)
 }
 
+func (i *Instance) SetCertificate(cert, key []byte) (*tls.Certificate, error) {
+	i.ServerCert = cert
+	i.ServerKey = key
+	c, e := tls.X509KeyPair(i.ServerCert, i.ServerKey)
+	if e != nil {
+		return nil, e
+	}
+	i.cert = &c
+
+	// We store sessions as soon as we set instance keys
+	if err := saveSessionsToDisk(); err != nil {
+		return nil, err
+	}
+	return i.cert, nil
+}
+func (i *Instance) GetCertificate() *tls.Certificate {
+	return i.cert
+}
+
 func (i *Instance) IsConnected() bool {
 	return i.conn != nil
 
@@ -131,6 +154,18 @@ func (i *Instance) Attach() {
 func GetInstance(session *Session, name string) *Instance {
 	return session.Instances[name]
 }
+
+func FindInstanceByIP(ip string) *Instance {
+	for _, s := range sessions {
+		for _, i := range s.Instances {
+			if i.IP == ip {
+				return i
+			}
+		}
+	}
+	return nil
+}
+
 func DeleteInstance(session *Session, instance *Instance) error {
 	if instance.conn != nil {
 		instance.conn.Close()