fixes:
    * path traversal vulnerability in mod_http_files (CVE-2016-1231)
    * use of weak PRNG in generation of dialback secrets (CVE-2016-1232)

Signed-off-by: heil <heil@terminal-consulting.de>

Signed-off-by: Michael Heimpold <mhei@heimpold.de>

devel/libtool-bin: new package

- add support for "hostip" to get_registered_ip() as alternative to "Bind host" package https://dev.openwrt.org/ticket/20893#comment:5
- allow to send updates using compiled-in certificate file/path of curl/wget #2242 #2243 #2245
- add support for uclient-fetch / libustream-ssl.so
- remove /128 prefix-filter in get_local_ip() via interface #2268
- add dyndns.org to services_ipv6 https://forum.openwrt.org/viewtopic.php?id=62103
- readd duckdns.org to services #2251 (lost somewhere in data heaven)
- add zzzz.io service #2302
- updated tld_names.dat

Signed-off-by: Christian Schoenebeck <christian.schoenebeck@gmail.com>

Fixes CVE-2016-1567.

Signed-off-by: Miroslav Lichvar <mlichvar0@gmail.com>

Signed-off-by: Felix Fietkau <nbd@openwrt.org>

GNU libtool is used to ease the usage of shared libraries in Makefiles.

The new package libtool-bin contains the script libtoolize which is used
to prepare a package to use libtool.

Signed-off-by: Heinrich Schuchardt <xypron.glpk@gmx.de>

Import cifs-utils from old packages:

* update to 6.4
* add upstream patch to fix builds with musl
* add license information
* add myself as maintainer

Signed-off-by: Florian Fainelli <florian@openwrt.org>

Signed-off-by: Noah Meyerhans <frodo@morgul.net>

Fixes:
 * CVE-2015-8704
 * CVE-2015-3193
 * CVE-2015-8000
 * CVE-2015-8461

Signed-off-by: Noah Meyerhans <frodo@morgul.net>

perl: ensure File::Spec::canonpath() preserves taint [CVE-2015-8607]

Signed-off-by: Marcel Denia <naoir@gmx.net>

Signed-off-by: Marcel Denia <naoir@gmx.net>

Signed-off-by: Marcel Denia <naoir@gmx.net>

Signed-off-by: Felix Fietkau <nbd@openwrt.org>

Signed-off-by: Felix Fietkau <nbd@openwrt.org>

Signed-off-by: Felix Fietkau <nbd@openwrt.org>

Signed-off-by: Felix Fietkau <nbd@openwrt.org>

Signed-off-by: Felix Fietkau <nbd@openwrt.org>

minidlna: update to 1.1.5

Signed-off-by: Felix Fietkau <nbd@openwrt.org>

Signed-off-by: Steven Barth <steven@midlink.org>

strongswan: preserve /etc/ipsec.d during upgrade

mdnsresponder: bump to 576.30.4.

Signed-off-by: Felix Fietkau <nbd@openwrt.org>

cryptodev-linux: bump to 1.8

Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>

Building both variants improperly tried to include the passwd utility
for the non-ssl variant, as the variable was set for the ssl variant.

Use properly separated install tasks to install additional files, rather
than hacking around inside the single target.

Signed-off-by: Karl Palsson <karlp@remake.is>

Introduced back in 2014

Fixes: cd21cbb82e
Signed-off-by: Karl Palsson <karlp@tweak.net.au>

and improves collectd support

Signed-off-by: Daniel Golle <daniel@makrotopia.org>

Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>

Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

flashrom: include io.h to fix compile error

This fixes compile time errors using kernel 4.3 and above

Signed-off-by: Rob Mosher <nyt-openwrt@countercultured.net>

This patch includes sys/io.h from flash.h to fix compile errors

Signed-off-by: Rob Mosher <nyt-openwrt@countercultured.net>

Instead of explicitly specyfing an Apache mirror use the
@APACHE download facility.

Signed-off-by: Heinrich Schuchardt <xypron.glpk@gmx.de>

Instead of explicitly specyfing an Apache mirror use the
@APACHE download facility.

Signed-off-by: Heinrich Schuchardt <xypron.glpk@gmx.de>

Instead of explicitly specyfing an Apache mirror use the
@APACHE download facility.

Signed-off-by: Heinrich Schuchardt <xypron.glpk@gmx.de>

Signed-off-by: Peter Wagner <tripolar@gmx.at>

Minor changes mostly unrelated to OpenWRT.
Full changelog at http://mosquitto.org/2015/12/version-1-4-7-released/

Signed-off-by: Karl Palsson <karlp@remake.is>

Many users of the SSL build of mosquitto need the passwd utility for
managing keys.

Fixes github issue #1909

Signed-off-by: Karl Palsson <karlp@remake.is>

Signed-off-by: Peter Wagner <tripolar@gmx.at>

Beginning in PathTools 3.47 and/or perl 5.20.0, the File::Spec::canonpath()
routine returned untained strings even if passed tainted input. This defect
undermines the guarantee of taint propagation, which is sometimes used to
ensure that unvalidated user input does not reach sensitive code.

This defect was found and reported by David Golden of MongoDB, and a patch
was provided by Tony Cook.

References:

 * https://rt.perl.org/Public/Bug/Display.html?id=126862
 * https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8607

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

Signed-off-by: Daniel Golle <daniel@makrotopia.org>

Signed-off-by: Daniel Golle <daniel@makrotopia.org>

Signed-off-by: Daniel Golle <daniel@makrotopia.org>

Signed-off-by: Daniel Golle <daniel@makrotopia.org>

Signed-off-by: Daniel Golle <daniel@makrotopia.org>

Signed-off-by: Daniel Golle <daniel@makrotopia.org>