config/docker-wireguard
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Fix: Update ip outside of cidr (#1733)

Browse Source 
* update packages

* check if ip is included on update

* update package manager
This commit is contained in:
Bernd Storath
2025-03-12 12:47:12 +01:00
committed by GitHub
parent b3bd2502af
commit fc480df910
4 changed files with 163 additions and 350 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
src/server/database/repositories/client/service.ts
View File

@@ -1,5 +1,5 @@
import { eq, sql } from 'drizzle-orm';
import { parseCidr } from 'cidr-tools';
import { containsCidr, parseCidr } from 'cidr-tools';
import { client } from './schema';
import type {
ClientCreateFromExistingType,
@@ -132,7 +132,27 @@ export class ClientService {
}
update(id: ID, data: UpdateClientType) {
return this.#db.update(client).set(data).where(eq(client.id, id)).execute();
return this.#db.transaction(async (tx) => {
const clientInterface = await tx.query.wgInterface
.findFirst({
where: eq(wgInterface.name, 'wg0'),
})
.execute();
if (!clientInterface) {
throw new Error('WireGuard interface not found');
}
if (!containsCidr(clientInterface.ipv4Cidr, data.ipv4Address)) {
throw new Error('IPv4 address is not within the CIDR range');
}
if (!containsCidr(clientInterface.ipv6Cidr, data.ipv6Address)) {
throw new Error('IPv6 address is not within the CIDR range');
}
await tx.update(client).set(data).where(eq(client.id, id)).execute();
});
}
async createFromExisting({