wireguard: T2241: make address and bridge membership mutually exclusive

Bridge members should not have any addresses assigned.

1 files changed, 5 insertions, 0 deletions

diff --git a/src/conf_mode/interfaces-wireguard.py b/src/conf_mode/interfaces-wireguard.py
index 3fb527401..3b18f8a15 100755
--- a/src/conf_mode/interfaces-wireguard.py
+++ b/src/conf_mode/interfaces-wireguard.py
@@ -200,6 +200,11 @@ def verify(wg):
 
         return None
 
+    if wg['is_bridge_member'] and wg['address']:
+        raise ConfigError((
+            f'Cannot assign address to interface "{wg["intf"]}" '
+            f'as it is a member of bridge "{wg["is_bridge_member"]}"!'))
+
     if wg['vrf']:
         if wg['vrf'] not in interfaces():
             raise ConfigError(f'VRF "{wg["vrf"]}" does not exist')