wenil/amneziavpnphp
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: enhance AWG2 protocol handling by adding config directory management and fixing empty peer block in install script

Browse Source
This commit is contained in:
infosave2007
2026-04-04 16:02:11 +03:00
parent 51d5d13c41
commit 1574f54bef
4 changed files with 36 additions and 24 deletions
Download Patch File Download Diff File Expand all files Collapse all files
inc/VpnClient.php
+15 -12
View File
@@ -675,17 +675,9 @@ class VpnClient
private static function generateClientKeys(array $serverData, string $clientName): array
{
$containerName = $serverData['container_name'];
$token = bin2hex(random_bytes(8));
$cmd = sprintf(
"docker exec -i %s sh -c \"umask 077; wg genkey | tee /tmp/%s_priv.key | wg pubkey > /tmp/%s_pub.key; cat /tmp/%s_priv.key; echo '---'; cat /tmp/%s_pub.key; rm -f /tmp/%s_priv.key /tmp/%s_pub.key\"",
$containerName,
$token,
$token,
$token,
$token,
$token,
$token
"docker exec -i %s sh -lc 'set -e; umask 077; priv=$(wg genkey); pub=$(printf %s \"$priv\" | wg pubkey); printf \"%%s\\n---\\n%%s\\n\" \"$priv\" \"$pub\"'",
escapeshellarg($containerName)
);
$escaped = escapeshellarg($cmd);
@@ -705,9 +697,15 @@ class VpnClient
throw new Exception("Failed to generate client keys");
}
$private = trim((string) $parts[0]);
$public = trim((string) $parts[1]);
if ($private === '' || $public === '') {
throw new Exception('Failed to generate client keys: empty key output');
}
return [
'private' => trim($parts[0]),
'public' => trim($parts[1])
'private' => $private,
'public' => $public
];
}
@@ -984,6 +982,11 @@ class VpnClient
{
$containerName = $serverData['container_name'];
$presharedKey = $serverData['preshared_key'];
$publicKey = trim($publicKey);
if ($publicKey === '') {
throw new Exception('Refusing to add client with empty public key');
}
// 1. Create temp file for PSK (to avoid shell escaping issues)
$pskFile = '/tmp/' . bin2hex(random_bytes(8)) . '.psk';