--- /dev/null
+#!/bin/bash
+###############################################################################
+# #
+# IPFire.org - A Linux-based firewall #
+# Copyright (C) 2020 IPFire Team <info@ipfire.org> #
+# #
+# This program is free software: you can redistribute it and/or modify #
+# it under the terms of the GNU General Public License as published by #
+# the Free Software Foundation, either version 3 of the License, or #
+# (at your option) any later version. #
+# #
+# This program is distributed in the hope that it will be useful, #
+# but WITHOUT ANY WARRANTY; without even the implied warranty of #
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
+# GNU General Public License for more details. #
+# #
+# You should have received a copy of the GNU General Public License #
+# along with this program. If not, see <http://www.gnu.org/licenses/>. #
+# #
+###############################################################################
+
+main() {
+ # Do not convert anything if we already have some servers set
+ if [ ! -s "/var/ipfire/dns/servers" ]; then
+ local DNS0 DNS1 DNS2
+ eval $(/usr/local/bin/readhash /var/ipfire/ethernet/settings)
+
+ if [ -s "/var/ipfire/ppp/settings" ]; then
+ eval $(/usr/local/bin/readhash /var/ipfire/ppp/settings)
+
+ # Remove DNS, DNS1 and DNS2
+ sed -i "/^DNS[12]?=/d" /var/ipfire/ppp/settings
+ elif [ -s "/var/ipfire/dns/settings" ]; then
+ eval $(/usr/local/bin/readhash /var/ipfire/dns/settings)
+ fi
+
+ local var
+ local i=3
+ for var in DNS0 DNS1 DNS2; do
+ if [ -n "${!var}" ]; then
+ echo "${i},${!var},,enabled,"
+ (( i++ ))
+ fi
+ done > /var/ipfire/dns/servers
+
+ # Empty the old settings file
+ : > /var/ipfire/dns/settings
+
+ # Disable using ISP name servers when we already have some configured
+ if [ ${i} -gt 3 ]; then
+ echo "USE_ISP_NAMESERVERS=off" \
+ >> /var/ipfire/dns/settings
+ fi
+ fi
+
+ # Set correct ownership.
+ chown nobody:nobody /var/ipfire/dns/settings
+
+ # Convert old unbound settings file
+ if [ -e "/etc/sysconfig/unbound" ]; then
+ local USE_FORWARDERS
+ local ENABLE_SAFE_SEARCH
+ local FORCE_TCP
+
+ # Read settings
+ eval $(/usr/local/bin/readhash /etc/sysconfig/unbound)
+
+ # Safe Search
+ if [ "${ENABLE_SAFE_SEARCH}" = "on" ]; then
+ echo "ENABLE_SAFE_SEARCH=${ENABLE_SAFE_SEARCH}" \
+ >> /var/ipfire/dns/settings
+ fi
+
+ # Force TCP
+ if [ "${FORCE_TCP}" = "on" ]; then
+ echo "PROTO=TCP" >> /var/ipfire/dns/settings
+ fi
+
+ # Run in recursor mode
+ if [ "${USE_FORWARDERS}" = "0" ]; then
+ # Remove all servers
+ : > /var/ipfire/dns/servers
+ fi
+
+ rm -f "/etc/sysconfig/unbound"
+ fi
+
+ # Set correct ownership.
+ chown nobody:nobody /var/ipfire/dns/servers
+
+ # Make DHCP leases readable for nobody
+ chown 644 /etc/unbound/dhcp-leases.conf
+}
+
+main "$@" || exit $?