RoboCup-SSL
diff --git a/‎config/ssl-game-controller.yaml‎
Lines changed: 4 additions & 0 deletions b/‎config/ssl-game-controller.yaml‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎generateProto.sh‎
Lines changed: 1 addition & 0 deletions b/‎generateProto.sh‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎internal/app/config/config.go‎
Lines changed: 14 additions & 3 deletions b/‎internal/app/config/config.go‎
Lines changed: 14 additions & 3 deletions
diff --git a/‎internal/app/config/testdata/config.yaml‎
Lines changed: 4 additions & 0 deletions b/‎internal/app/config/testdata/config.yaml‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎internal/app/engine/ssl_gc_engine.pb.go‎
Lines changed: 60 additions & 39 deletions b/‎internal/app/engine/ssl_gc_engine.pb.go‎
Lines changed: 60 additions & 39 deletions
diff --git a/‎internal/app/gc/gc.go‎
Lines changed: 21 additions & 12 deletions b/‎internal/app/gc/gc.go‎
Lines changed: 21 additions & 12 deletions
diff --git a/‎internal/app/rcon/autoref.go‎
Lines changed: 2 additions & 46 deletions b/‎internal/app/rcon/autoref.go‎
Lines changed: 2 additions & 46 deletions
diff --git a/‎internal/app/rcon/rconserver.go‎
Lines changed: 29 additions & 0 deletions b/‎internal/app/rcon/rconserver.go‎
Lines changed: 29 additions & 0 deletions
@@ -12,6 +12,10 @@ server:
     address: :10008
     address-tls: :10108
     trusted-keys-dir: config/trusted_keys/team
+  remote-control:
+    address: :10011
+    address-tls: :10111
+    trusted-keys-dir: config/trusted_keys/remote-control
   ci:
     address: :10009
 engine:
 
@@ -28,6 +28,7 @@ protoc -I"./proto" -I"$GOPATH/src" --go_out="$GOPATH/src" proto/ssl_gc_referee_m
 protoc -I"./proto" -I"$GOPATH/src" --go_out="$GOPATH/src" proto/ssl_gc_rcon.proto
 protoc -I"./proto" -I"$GOPATH/src" --go_out="$GOPATH/src" proto/ssl_gc_rcon_autoref.proto
 protoc -I"./proto" -I"$GOPATH/src" --go_out="$GOPATH/src" proto/ssl_gc_rcon_team.proto
+protoc -I"./proto" -I"$GOPATH/src" --go_out="$GOPATH/src" proto/ssl_gc_rcon_remotecontrol.proto
 
 # internal communication
 protoc -I"./proto" -I"$GOPATH/src" --go_out="$GOPATH/src" proto/ssl_gc_state.proto
 
@@ -70,9 +70,10 @@ type Network struct {
 
 // Server holds configs for the available server services
 type Server struct {
-	AutoRef ServerAutoRef `yaml:"auto-ref"`
-	Team    ServerTeam    `yaml:"team"`
-	Ci      ServerCi      `yaml:"ci"`
+	AutoRef       ServerAutoRef     `yaml:"auto-ref"`
+	Team          ServerTeam        `yaml:"team"`
+	Ci            ServerCi          `yaml:"ci"`
+	RemoteControl RemoteControlTeam `yaml:"remote-control"`
 }
 
 // ServerAutoRef holds configs for the autoRef server
@@ -89,6 +90,13 @@ type ServerTeam struct {
 	TrustedKeysDir string `yaml:"trusted-keys-dir"`
 }
 
+// RemoteControlTeam holds configs for the remote control server
+type RemoteControlTeam struct {
+	Address        string `yaml:"address"`
+	AddressTls     string `yaml:"address-tls"`
+	TrustedKeysDir string `yaml:"trusted-keys-dir"`
+}
+
 // ServerCi holds configs for the CI server
 type ServerCi struct {
 	Address string `yaml:"address"`
@@ -197,6 +205,9 @@ func DefaultControllerConfig() (c Controller) {
 	c.Server.Team.Address = ":10008"
 	c.Server.Team.AddressTls = ":10108"
 	c.Server.Team.TrustedKeysDir = "config/trusted_keys/team"
+	c.Server.RemoteControl.Address = ":10011"
+	c.Server.RemoteControl.AddressTls = ":10111"
+	c.Server.RemoteControl.TrustedKeysDir = "config/trusted_keys/remote-control"
 	c.Server.Ci.Address = ":10009"
 
 	c.Game.DefaultGeometry = map[Division]Geometry{}
 
@@ -12,6 +12,10 @@ server:
     address: :10008
     address-tls: :10108
     trusted-keys-dir: config/trusted_keys/team
+  remote-control:
+    address: :10011
+    address-tls: :10111
+    trusted-keys-dir: config/trusted_keys/remote-control
   ci:
     address: :10009
 engine:
 
@@ -13,18 +13,20 @@ import (
 
 // GameController contains all the different connected modules of the game controller
 type GameController struct {
-	config           config.Controller
-	gcEngine         *engine.Engine
-	publisher        *publish.Publisher
-	messageGenerator *publish.MessageGenerator
-	apiServer        *api.Server
-	autoRefServer    *rcon.AutoRefServer
-	autoRefServerTls *rcon.AutoRefServer
-	teamServer       *rcon.TeamServer
-	teamServerTls    *rcon.TeamServer
-	ciServer         *ci.Server
-	visionReceiver   *vision.Receiver
-	trackerReceiver  *tracker.Receiver
+	config                 config.Controller
+	gcEngine               *engine.Engine
+	publisher              *publish.Publisher
+	messageGenerator       *publish.MessageGenerator
+	apiServer              *api.Server
+	autoRefServer          *rcon.AutoRefServer
+	autoRefServerTls       *rcon.AutoRefServer
+	teamServer             *rcon.TeamServer
+	teamServerTls          *rcon.TeamServer
+	remoteControlServer    *rcon.RemoteControlServer
+	remoteControlServerTls *rcon.RemoteControlServer
+	ciServer               *ci.Server
+	visionReceiver         *vision.Receiver
+	trackerReceiver        *tracker.Receiver
 }
 
 // NewGameController creates a new GameController
@@ -41,6 +43,9 @@ func NewGameController(cfg config.Controller) (c *GameController) {
 	c.teamServer = rcon.NewTeamServer(cfg.Server.Team.Address, c.gcEngine)
 	c.teamServerTls = rcon.NewTeamServer(cfg.Server.Team.AddressTls, c.gcEngine)
 	c.teamServerTls.Tls = true
+	c.remoteControlServer = rcon.NewRemoteControlServer(cfg.Server.RemoteControl.Address, c.gcEngine)
+	c.remoteControlServerTls = rcon.NewRemoteControlServer(cfg.Server.RemoteControl.AddressTls, c.gcEngine)
+	c.remoteControlServerTls.Tls = true
 	c.ciServer = ci.NewServer(cfg.Server.Ci.Address)
 	c.visionReceiver = vision.NewReceiver(cfg.Network.VisionAddress)
 	c.visionReceiver.GeometryCallback = c.gcEngine.ProcessGeometry
@@ -77,6 +82,8 @@ func (c *GameController) Start() {
 	c.autoRefServerTls.Server.Start()
 	c.teamServer.Server.Start()
 	c.teamServerTls.Server.Start()
+	c.remoteControlServer.Server.Start()
+	c.remoteControlServerTls.Server.Start()
 
 	if err := c.gcEngine.Start(); err != nil {
 		panic(err)
@@ -95,6 +102,8 @@ func (c *GameController) Stop() {
 	c.autoRefServerTls.Server.Stop()
 	c.teamServer.Server.Stop()
 	c.teamServerTls.Server.Stop()
+	c.remoteControlServer.Server.Stop()
+	c.remoteControlServerTls.Server.Stop()
 	c.gcEngine.Stop()
 }
 
 
@@ -47,7 +47,7 @@ func (c *AutoRefClient) receiveRegistration(server *AutoRefServer) error {
 	}
 	c.pubKey = server.trustedKeys[c.id]
 	if c.pubKey != nil {
-		if err := c.verifyRegistration(registration); err != nil {
+		if err := c.Client.verifyMessage(&registration); err != nil {
 			return err
 		}
 	} else {
@@ -59,50 +59,6 @@ func (c *AutoRefClient) receiveRegistration(server *AutoRefServer) error {
 	return nil
 }
 
-func (c *AutoRefClient) verifyRegistration(registration AutoRefRegistration) error {
-	if registration.Signature == nil {
-		return errors.New("Missing signature")
-	}
-	if registration.Signature.Token == nil || *registration.Signature.Token != c.token {
-		sendToken := ""
-		if registration.Signature.Token != nil {
-			sendToken = *registration.Signature.Token
-		}
-		return errors.Errorf("AutoRef Client %v sent an invalid token: %v != %v", c.id, sendToken, c.token)
-	}
-	signature := registration.Signature.Pkcs1V15
-	registration.Signature.Pkcs1V15 = []byte{}
-	err := VerifySignature(c.pubKey, &registration, signature)
-	registration.Signature.Pkcs1V15 = signature
-	if err != nil {
-		return errors.New("Invalid signature")
-	}
-	c.token = uuid.New()
-	return nil
-}
-
-func (c *AutoRefClient) verifyRequest(req AutoRefToController) error {
-	if req.Signature == nil {
-		return errors.New("Missing signature")
-	}
-	if req.Signature.Token == nil || *req.Signature.Token != c.token {
-		sendToken := ""
-		if req.Signature.Token != nil {
-			sendToken = *req.Signature.Token
-		}
-		return errors.Errorf("Invalid token: %v != %v", sendToken, c.token)
-	}
-	signature := req.Signature.Pkcs1V15
-	req.Signature.Pkcs1V15 = []byte{}
-	err := VerifySignature(c.pubKey, &req, signature)
-	req.Signature.Pkcs1V15 = signature
-	if err != nil {
-		return errors.Wrap(err, "Verification failed.")
-	}
-	c.token = uuid.New()
-	return nil
-}
-
 func (s *AutoRefServer) handleClientConnection(conn net.Conn) {
 	defer func() {
 		if err := conn.Close(); err != nil {
@@ -154,7 +110,7 @@ func (s *AutoRefServer) handleClientConnection(conn net.Conn) {
 			continue
 		}
 		if client.pubKey != nil {
-			if err := client.verifyRequest(req); err != nil {
+			if err := client.verifyMessage(&req); err != nil {
 				client.reply(client.Reject(err.Error()))
 				continue
 			}
 
@@ -8,6 +8,7 @@ import (
 	"crypto/x509"
 	"encoding/pem"
 	"github.com/golang/protobuf/proto"
+	"github.com/odeke-em/go-uuid"
 	"github.com/pkg/errors"
 	"io/ioutil"
 	"log"
@@ -33,6 +34,11 @@ type Client struct {
 	verifiedConnection bool
 }
 
+type SignedMessage interface {
+	GetSignature() *Signature
+	proto.Message
+}
+
 func NewServer(address string) (s *Server) {
 	s = new(Server)
 	s.address = address
@@ -200,3 +206,26 @@ func VerifySignature(key *rsa.PublicKey, message proto.Message, signature []byte
 	d := hash.Sum(nil)
 	return rsa.VerifyPKCS1v15(key, crypto.SHA256, d, signature)
 }
+
+func (c *Client) verifyMessage(message SignedMessage) error {
+	signature := message.GetSignature()
+	if signature == nil {
+		return errors.New("Missing signature")
+	}
+	if signature.Token == nil || *signature.Token != c.token {
+		sendToken := ""
+		if signature.Token != nil {
+			sendToken = *signature.Token
+		}
+		return errors.Errorf("Client %v sent an invalid token: %v != %v", c.id, sendToken, c.token)
+	}
+	sig := signature.Pkcs1V15
+	signature.Pkcs1V15 = []byte{}
+	err := VerifySignature(c.pubKey, message, sig)
+	signature.Pkcs1V15 = sig
+	if err != nil {
+		return errors.New("Invalid signature")
+	}
+	c.token = uuid.New()
+	return nil
+}