LILiK
/
openwrt-packages-dist
5
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
14736 Commits
1 Branch
46 MiB
Tree: f05b8f47c3
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f05b8f47c3'
${ noResults }
openwrt-packages-dist/net/stubby/files/stubby.init

273 lines
8.8 KiB
Raw Normal View History

stubby: Initial commit of openwrt package for stubby daemon (This daemon utilizes the getdns library) Signed-off-by: David Mora <iamperson347+public@gmail.com>
7 years ago
stubby: update to version 0.2.4 This upstream release adds support for trust_anchors_backoff_time configuration parameter. UCI support has been added for this. This commit also includes a number of clean-ups: o change START=50 to START=30 in init file Starting earlier in the boot means less chance of missing interface trigger events. See: https://github.com/openwrt/packages/pull/4675 o remove unused variables from init file o separate local declarations and assignments in init file o add defensive quoting in init file o use default values for procd respawn in init file o make use of {} in variables consistent in init file o remove unused variable from init file Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: Initial commit of openwrt package for stubby daemon (This daemon utilizes the getdns library) Signed-off-by: David Mora <iamperson347+public@gmail.com>
7 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: update to version 0.2.4 This upstream release adds support for trust_anchors_backoff_time configuration parameter. UCI support has been added for this. This commit also includes a number of clean-ups: o change START=50 to START=30 in init file Starting earlier in the boot means less chance of missing interface trigger events. See: https://github.com/openwrt/packages/pull/4675 o remove unused variables from init file o separate local declarations and assignments in init file o add defensive quoting in init file o use default values for procd respawn in init file o make use of {} in variables consistent in init file o remove unused variable from init file Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: add support for TLS configuration options - tls_cipher_list - tls_ciphersuites - tls_min_version - tls_max_version Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
5 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: update to version 0.2.4 This upstream release adds support for trust_anchors_backoff_time configuration parameter. UCI support has been added for this. This commit also includes a number of clean-ups: o change START=50 to START=30 in init file Starting earlier in the boot means less chance of missing interface trigger events. See: https://github.com/openwrt/packages/pull/4675 o remove unused variables from init file o separate local declarations and assignments in init file o add defensive quoting in init file o use default values for procd respawn in init file o make use of {} in variables consistent in init file o remove unused variable from init file Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: add support for TLS configuration options - tls_cipher_list - tls_ciphersuites - tls_min_version - tls_max_version Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
5 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: add support for tls_port resolver config option (#8889) Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
5 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: add support for TLS configuration options - tls_cipher_list - tls_ciphersuites - tls_min_version - tls_max_version Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
5 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: add support for TLS configuration options - tls_cipher_list - tls_ciphersuites - tls_min_version - tls_max_version Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
5 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: add support for TLS configuration options - tls_cipher_list - tls_ciphersuites - tls_min_version - tls_max_version Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
5 years ago
stubby: add support for tls_port resolver config option (#8889) Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
5 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: add support for TLS configuration options - tls_cipher_list - tls_ciphersuites - tls_min_version - tls_max_version Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
5 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: fix handling of pkis in config (#8888) Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
5 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: Initial commit of openwrt package for stubby daemon (This daemon utilizes the getdns library) Signed-off-by: David Mora <iamperson347+public@gmail.com>
7 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: Initial commit of openwrt package for stubby daemon (This daemon utilizes the getdns library) Signed-off-by: David Mora <iamperson347+public@gmail.com>
7 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: Initial commit of openwrt package for stubby daemon (This daemon utilizes the getdns library) Signed-off-by: David Mora <iamperson347+public@gmail.com>
7 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: Initial commit of openwrt package for stubby daemon (This daemon utilizes the getdns library) Signed-off-by: David Mora <iamperson347+public@gmail.com>
7 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: update to version 0.2.4 This upstream release adds support for trust_anchors_backoff_time configuration parameter. UCI support has been added for this. This commit also includes a number of clean-ups: o change START=50 to START=30 in init file Starting earlier in the boot means less chance of missing interface trigger events. See: https://github.com/openwrt/packages/pull/4675 o remove unused variables from init file o separate local declarations and assignments in init file o add defensive quoting in init file o use default values for procd respawn in init file o make use of {} in variables consistent in init file o remove unused variable from init file Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: fix loading of config file Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: update to version 0.2.4 This upstream release adds support for trust_anchors_backoff_time configuration parameter. UCI support has been added for this. This commit also includes a number of clean-ups: o change START=50 to START=30 in init file Starting earlier in the boot means less chance of missing interface trigger events. See: https://github.com/openwrt/packages/pull/4675 o remove unused variables from init file o separate local declarations and assignments in init file o add defensive quoting in init file o use default values for procd respawn in init file o make use of {} in variables consistent in init file o remove unused variable from init file Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: Initial commit of openwrt package for stubby daemon (This daemon utilizes the getdns library) Signed-off-by: David Mora <iamperson347+public@gmail.com>
7 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: update to version 0.2.4 This upstream release adds support for trust_anchors_backoff_time configuration parameter. UCI support has been added for this. This commit also includes a number of clean-ups: o change START=50 to START=30 in init file Starting earlier in the boot means less chance of missing interface trigger events. See: https://github.com/openwrt/packages/pull/4675 o remove unused variables from init file o separate local declarations and assignments in init file o add defensive quoting in init file o use default values for procd respawn in init file o make use of {} in variables consistent in init file o remove unused variable from init file Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: update to version 0.2.4 This upstream release adds support for trust_anchors_backoff_time configuration parameter. UCI support has been added for this. This commit also includes a number of clean-ups: o change START=50 to START=30 in init file Starting earlier in the boot means less chance of missing interface trigger events. See: https://github.com/openwrt/packages/pull/4675 o remove unused variables from init file o separate local declarations and assignments in init file o add defensive quoting in init file o use default values for procd respawn in init file o make use of {} in variables consistent in init file o remove unused variable from init file Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: update to version 0.2.4 This upstream release adds support for trust_anchors_backoff_time configuration parameter. UCI support has been added for this. This commit also includes a number of clean-ups: o change START=50 to START=30 in init file Starting earlier in the boot means less chance of missing interface trigger events. See: https://github.com/openwrt/packages/pull/4675 o remove unused variables from init file o separate local declarations and assignments in init file o add defensive quoting in init file o use default values for procd respawn in init file o make use of {} in variables consistent in init file o remove unused variable from init file Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
stubby: add uci support to init file This commit brings UCI support to the stubby package. o All options are documented in the README.md file. o The README.md file has been re-written to include a short usage manual. o The default configuration now includes more Cloudflare addresses. o The stubby service is (re)started using procd triggers from a specified interface with a configurable time delay. o Round robin use of upstream resolvers is now activated by default. o Client privacy is now activated by default. o Options are added for specifying the log level of the daemon and command line options passed to the stubby command. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
6 years ago
 
  1. #!/bin/sh /etc/rc.common
  2. 

  3. USE_PROCD=1
  4. 

  5. START=30
  6. STOP=51
  7. 

  8. stubby="/usr/sbin/stubby"
  9. stubby_init="/etc/init.d/stubby"
  10. stubby_config_dir="/var/etc/stubby"
  11. stubby_config="$stubby_config_dir/stubby.yml"
  12. stubby_pid_file="/var/run/stubby.pid"
  13. stubby_manual_config="/etc/stubby/stubby.yml"
  14. 

  15. boot()
  16. {
  17.     stubby_boot=1
  18.     rc_procd start_service
  19. }
  20. 

  21. generate_config()
  22. {
  23.     local config_file="$1"
  24.     local round_robin
  25.     local tls_authentication
  26.     local tls_query_padding_blocksize
  27.     local edns_client_subnet_private
  28.     local idle_timeout
  29.     local appdata_dir
  30.     local trust_anchors_backoff_time
  31.     local tls_connection_retries
  32.     local tls_backoff_time
  33.     local timeout
  34.     local dnssec_return_status
  35.     local dnssec_trust_anchors
  36.     local listen_addresses_section=0
  37.     local dns_transport_list_section=0
  38.     local upstream_recursive_servers_section=0
  39.     local command_line_arguments
  40.     local log_level
  41.     local tls_cipher_list
  42.     local tls_ciphersuites
  43.     local tls_min_version
  44.     local tls_max_version
  45. 

  46.     # Generate configuration. See: https://github.com/getdnsapi/stubby/blob/develop/stubby.yml.example
  47.     echo "# Autogenerated configuration from uci data" > "$config_file"
  48.     echo "resolution_type: GETDNS_RESOLUTION_STUB" >> "$config_file"
  49. 

  50.     config_get round_robin "global" round_robin_upstreams "1"
  51.     echo "round_robin_upstreams: $round_robin" >> "$config_file"
  52. 

  53.     config_get appdata_dir "global" appdata_dir "/var/lib/stubby"
  54.     echo "appdata_dir: \"$appdata_dir\"" >> "$config_file"
  55. 

  56.     config_get trust_anchors_backoff_time "global" trust_anchors_backoff_time "2500"
  57.     echo "trust_anchors_backoff_time: $trust_anchors_backoff_time" >> "$config_file"
  58. 

  59.     config_get tls_connection_retries "global" tls_connection_retries ""
  60.     if [ -n "$tls_connection_retries" ]; then
  61.         echo "tls_connection_retries: $tls_connection_retries" >> "$config_file"
  62.     fi
  63. 

  64.     config_get tls_backoff_time "global" tls_backoff_time ""
  65.     if [ -n "$tls_backoff_time" ]; then
  66.         echo "tls_backoff_time: $tls_backoff_time" >> "$config_file"
  67.     fi
  68. 

  69.     config_get timeout "global" timeout ""
  70.     if [ -n "$timeout" ]; then
  71.         echo "timeout: $timeout" >> "$config_file"
  72.     fi
  73. 

  74.     config_get_bool tls_authentication "global" tls_authentication "1"
  75.     if [ "$tls_authentication" = "1" ]; then
  76.         echo "tls_authentication: GETDNS_AUTHENTICATION_REQUIRED" >> "$config_file"
  77.     else
  78.         echo "tls_authentication: GETDNS_AUTHENTICATION_NONE" >> "$config_file"
  79.     fi
  80. 

  81.     config_get_bool dnssec_return_status "global" dnssec_return_status "0"
  82.     if [ "$dnssec_return_status" = "1" ]; then
  83.         echo "dnssec_return_status: GETDNS_EXTENSION_TRUE" >> "$config_file"
  84.     fi
  85. 

  86.     config_get dnssec_trust_anchors "global" dnssec_trust_anchors ""
  87.     if [ -n "$dnssec_trust_anchors" ]; then
  88.         echo "dnssec_trust_anchors: \"$dnssec_trust_anchors\"" >> "$config_file"
  89.     fi
  90. 

  91.     config_get tls_query_padding_blocksize "global" tls_query_padding_blocksize "128"
  92.     echo "tls_query_padding_blocksize: $tls_query_padding_blocksize" >> "$config_file"
  93. 

  94.     config_get_bool edns_client_subnet_private "global" edns_client_subnet_private "1"
  95.     echo "edns_client_subnet_private: $edns_client_subnet_private" >> "$config_file"
  96. 

  97.     config_get idle_timeout "global" idle_timeout "10000"
  98.     echo "idle_timeout: $idle_timeout" >> "$config_file"
  99. 

  100.     config_get tls_cipher_list "global" tls_cipher_list ""
  101.     if [ -n "$tls_cipher_list" ]; then
  102.         echo "tls_cipher_list: \"$tls_cipher_list\"" >> "$config_file"
  103.     fi
  104. 

  105.     config_get tls_ciphersuites "global" tls_ciphersuites ""
  106.     if [ -n "$tls_ciphersuites" ]; then
  107.         echo "tls_ciphersuites: \"$tls_ciphersuites\"" >> "$config_file"
  108.     fi
  109. 

  110.     config_get tls_min_version "global" tls_min_version ""
  111.     if [ -n "$tls_min_version" ]; then
  112.         echo "tls_min_version: GETDNS_TLS${tls_min_version/\./_}" >> "$config_file"
  113.     fi
  114. 

  115.     config_get tls_max_version "global" tls_max_version ""
  116.     if [ -n "$tls_max_version" ]; then
  117.         echo "tls_max_version: GETDNS_TLS${tls_max_version/\./_}" >> "$config_file"
  118.     fi
  119. 

  120.     handle_listen_address_value()
  121.     {
  122.         local value="$1"
  123. 

  124.         if [ "$listen_addresses_section" = 0 ]; then
  125.             echo "listen_addresses:" >> "$config_file"
  126.             listen_addresses_section=1
  127.         fi
  128.         echo "  - $value" >> "$config_file"
  129.     }
  130.     config_list_foreach "global" listen_address handle_listen_address_value
  131. 

  132.     handle_dns_transport_list_value()
  133.     {
  134.         local value="$1"
  135. 

  136.         if [ "$dns_transport_list_section" = 0 ]; then
  137.             echo "dns_transport_list:" >> "$config_file"
  138.             dns_transport_list_section=1
  139.         fi
  140.         echo "  - $value" >> "$config_file"
  141.     }
  142.     config_list_foreach "global" dns_transport handle_dns_transport_list_value
  143. 

  144.     handle_resolver()
  145.     {
  146.         local config=$1
  147.         local address
  148.         local tls_auth_name
  149.         local tls_port
  150.         local tls_pubkey_pinset_section=0
  151.         local tls_cipher_list
  152.         local tls_ciphersuites
  153.         local tls_min_version
  154.         local tls_max_version
  155. 

  156.         if [ "$upstream_recursive_servers_section" = 0 ]; then
  157.             echo "upstream_recursive_servers:" >> "$config_file"
  158.             upstream_recursive_servers_section=1
  159.         fi
  160.         config_get address "$config" address
  161.         echo "  - address_data: $address" >> "$config_file"
  162. 

  163.         config_get tls_auth_name "$config" tls_auth_name
  164.         echo "    tls_auth_name: \"$tls_auth_name\"" >> "$config_file"
  165. 

  166.         config_get tls_auth_port "$config" tls_port ""
  167.         if [ -n "$tls_port" ]; then
  168.             echo "    tls_port: $tls_port"  >> "$config_file"
  169.         fi
  170. 

  171.         config_get tls_cipher_list "$config" tls_cipher_list ""
  172.         if [ -n "$tls_cipher_list" ]; then
  173.             echo "    tls_cipher_list: \"$tls_cipher_list\"" >> "$config_file"
  174.         fi
  175. 

  176.         config_get tls_ciphersuites "$config" tls_ciphersuites ""
  177.         if [ -n "$tls_ciphersuites" ]; then
  178.             echo "    tls_ciphersuites: \"$tls_ciphersuites\"" >> "$config_file"
  179.         fi
  180. 

  181.         config_get tls_min_version "$config" tls_min_version ""
  182.         if [ -n "$tls_min_version" ]; then
  183.             echo "    tls_min_version: GETDNS_TLS${tls_min_version/\./_}" >> "$config_file"
  184.         fi
  185. 

  186.         config_get tls_max_version "$config" tls_max_version ""
  187.         if [ -n "$tls_max_version" ]; then
  188.             echo "    tls_max_version: GETDNS_TLS${tls_max_version/\./_}" >> "$config_file"
  189.         fi
  190. 

  191.         handle_resolver_spki()
  192.         {
  193.             local val="$1"
  194.             local digest="${val%%/*}"
  195.             local value="${val#*/}"
  196. 

  197.             if [ "$tls_pubkey_pinset_section" = 0 ]; then
  198.                 echo "    tls_pubkey_pinset:" >> "$config_file"
  199.                 tls_pubkey_pinset_section=1
  200.             fi
  201.             echo "      - digest: \"$digest\"" >> "$config_file"
  202.             echo "        value: $value" >> "$config_file"
  203.         }
  204.         config_list_foreach "$config" spki handle_resolver_spki
  205.     }
  206. 

  207.     config_foreach handle_resolver resolver
  208. }
  209. 

  210. start_service() {
  211.     local config_file_tmp
  212.     local manual
  213.     local log_level
  214.     local command_line_arguments
  215. 

  216.     mkdir -p "$stubby_config_dir"
  217. 

  218.     config_load "stubby"
  219. 

  220.     config_get_bool manual "global" manual "0"
  221. 

  222.     if [ "$manual" = "1" ]; then
  223.         cp "$stubby_manual_config" "$stubby_config"
  224.     else
  225.         config_file_tmp="$stubby_config.$$"
  226.         generate_config "$config_file_tmp"
  227.         mv "$config_file_tmp" "$stubby_config"
  228.     fi
  229. 

  230.     config_get command_line_arguments "global" command_line_arguments ""
  231. 

  232.     config_get log_level "global" log_level ""
  233. 

  234.     if [ "$("$stubby_init" enabled; printf "%u" $?)" -eq 0 ]; then
  235.         if [ -n "$stubby_boot" ]; then
  236.             local trigger
  237.             trigger="$(uci_get stubby global trigger)"
  238.             if [ "$trigger" != "timed" ]; then
  239.                 return 0
  240.             fi
  241.         fi
  242.         procd_open_instance "stubby"
  243.         procd_set_param command "$stubby" -C "$stubby_config"
  244.         if [ -n "$log_level" ]; then
  245.             procd_append_param command -v "$log_level"
  246.         fi
  247.         if [ -n "$command_line_arguments" ]; then
  248.             procd_append_param command "$command_line_arguments"
  249.         fi
  250.         procd_set_param respawn
  251.         procd_set_param file "$stubby_config"
  252.         procd_set_param stdout 1
  253.         procd_set_param stderr 1
  254.         procd_set_param pidfile "$stubby_pid_file"
  255.         procd_set_param user stubby
  256.         procd_close_instance
  257.     fi
  258. }
  259. 

  260. service_triggers()
  261. {
  262.     local trigger
  263.     local delay
  264. 

  265.     trigger="$(uci_get stubby global trigger)"
  266.     delay="$(uci_get stubby global triggerdelay "2")"
  267. 

  268.     if [ "$trigger" != "none" ] && [ "$trigger" != "timed" ]; then
  269.         PROCD_RELOAD_DELAY=$((${delay:-2} * 1000))
  270.         procd_add_interface_trigger "interface.*.up" "$trigger" "$stubby_init" start
  271.     fi
  272.     procd_add_reload_trigger "stubby"
  273. }