ssl_set1_host() is not available without openssl-1.1.0. Unbound can not do
host cert verification. DNS over TLS connects, but hosts are unverified. A
patch for log err is added with a noitce in README.md.
(see: https://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=658)

Also, squash some minor robustness and TLS usability fixes.

Signed-off-by: Eric Luehrsen <ericluehrsen@gmail.com>

Signed-off-by: Rosen Penev <rosenp@gmail.com>

Signed-off-by: W. Michael Petullo <mike@flyn.org>

Signed-off-by: W. Michael Petullo <mike@flyn.org>

Signed-off-by: Rosen Penev <rosenp@gmail.com>

Switched to .xz as that is a smaller archive.

Signed-off-by: Rosen Penev <rosenp@gmail.com>

Signed-off-by: W. Michael Petullo <mike@flyn.org>

Signed-off-by: Chen Minqiang <ptpt52@gmail.com>

- globals src_ip to none
 - ip route back to source
 - add mwan3rtmon
 - update version to 2.7

Signed-off-by: Chen Minqiang <ptpt52@gmail.com>

* include /etc/netconfig
* cleanup old patches
* update via patch to 1.0.4-rc2

Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>

arp-scan: Update to 1.9.5

joe: Update to 4.6

Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>

Signed-off-by: Rosen Penev <rosenp@gmail.com>

Cosmetic makefile changes

Signed-off-by: Rosen Penev <rosenp@gmail.com>

Signed-off-by: Rosen Penev <rosenp@gmail.com>

cryptsetup: Update to 2.0.4

Signed-off-by: Rosen Penev <rosenp@gmail.com>

Shorewall: Bump to version 5.2.0.5

bluez: Update to 5.50

Signed-off-by: W. van den Akker <wvdakker@wilsoft.nl>

Signed-off-by: W. van den Akker <wvdakker@wilsoft.nl>

Signed-off-by: W. van den Akker <wvdakker@wilsoft.nl>

Signed-off-by: W. van den Akker <wvdakker@wilsoft.nl>

Signed-off-by: W. van den Akker <wvdakker@wilsoft.nl>

Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>

RFC2326 specifies the attribute client_port as the RTP/RTCP port pair on
which the client has chosen to receive media data and control info;
however some clients (mostly STBs) embed the client_port value in the
destination attribute in the form of destination=<address:port> without
specifying the client_port attribute in the SETUP message.
To support such clients check if the destination attribute contains a
port value and use it as port value for the expected RTP connection.

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>

Fix compile issue with Werror:

nf_conntrack_rtsp.c:667:39: error: implicit declaration of function 'nf_ct_zone' [-Werror=implicit-function-declaration]
   exp_ct = nf_ct_expect_find_get(net, nf_ct_zone(ct), &t);

Fix compile warning:

nf_conntrack_rtsp.c:474:2: warning: enumeration value 'IP_CT_DIR_MAX' not handled in switch [-Wswitch]
  switch (CTINFO2DIR(ctinfo)) {
  ^~~~~~

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>

CMake 3.0.12 uses SWIG_DIR to set SWIG_LIB, is used as the library
install location, which defaults to
$(STAGING_HOSTPKG)/share/sig/(SWIGVERSION).  If it is set, then the
installed swig library directory is ignored, and compilation fails:
[ 32%] Swig source
 Error: Unable to find 'swig.swg'
:3: Error: Unable to find 'python.swg'

Instead of setting it manually, let the default be used, which works
well.

Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>

netdata: create missing folder /etc/netdata/customs-plugins.d

Switch to codeload as well for easier package bumping.

Signed-off-by: Rosen Penev <rosenp@gmail.com>

Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>

Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>

* remove samba4 build helper

Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>

* switch waf build to cross-answer files
* move timemachine related vfs modules to default vfs option

Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>

Changes:
- added folder /etc/netdata/customs-plugins.d
which is set in netdata.conf as 2nd plugin directory

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>

Simpler and easier to bump the version in the future.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
Signed-off-by: Jonathan McCrohan <jmccrohan@gmail.com>

mtr: Fix compile with libcap

loudmouth: fix build

coova-chilli: Update to 1.4

Simplifies the Makefile quite a bit.

Signed-off-by: Rosen Penev <rosenp@gmail.com>

rtl-sdr: Update to 0.5.4 and switch to tarballs

digitemp: Switch to codeload

miniupnpd: Update to 2.1.20180706

rtl_433: Update to 18.05 and switch to codeload

fio: Update to 3.8

haproxy: Update HAProxy patches for v1.8.13 & Update Lua

Since https://git.openwrt.org/d0e0b7049f88774e67c3d5ad6b573f7070e5f900,
OpenWrt SDKs ship the appropriate sources for building usbip userspace
packages, so special nonshared handling is not required anymore.

Sucessfully tested by compiling usbip utilities for various architectures
using self built SDKs after applying the change linked above.

Signed-off-by: Jo-Philipp Wich <jo@mein.io>

Simpler

Signed-off-by: Rosen Penev <rosenp@gmail.com>

Currently uscan fails on this as it tries to look for a download link in the
wrong location. Switching it to a GitHub tarball will probably fix it.

Signed-off-by: Rosen Penev <rosenp@gmail.com>