- Update haproxy download URL and hash

Signed-off-by: Christian Lachner <gladiac@gmail.com>

openldap: Switch tarball sources to https and http

Make OLA more useful for untrained users which depend on the built-in
webserver. We may split the ola package into smaller parts to allow
not having web-stuff in case this breaks the space-constraints for some
users.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>

Signed-off-by: Peter Wagner <tripolar@gmx.at>

Signed-off-by: Peter Wagner <tripolar@gmx.at>

Signed-off-by: Peter Wagner <tripolar@gmx.at>

prometheus-node-exporter-lua: handle fancy release

Should fix build with SDK on buildbots.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>

Recent protobuf requires C++11 while OLA was forcing C++98 in order
to keep using auto_ptr without getting warnings... Use gnu++11 to make
everyone happy and live with the warnings about auto_ptr being
deprecated.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>

snmpd: Add snmp_extend config option

Closes #5764

node: Fix incorrect detection of arm_version and arm_fpu

qemu-nbd is used to 'mount' images to /dev/nbdX block devices, for
example, to manipulate a qcow2 image as a disk device

Signed-off-by: Mathew McBride <matt@traverse.com.au>

qemu-img is used for converting between different VM image types,
such as qcow2 to raw and vice versa.

Signed-off-by: Mathew McBride <matt@traverse.com.au>

sound/fdk-aac: Clean up Makefile, add overflow patch

gptfdisk is a gpt-aware disk partitioning tool. It can be used to
convert mbr partitioned disk to gpt and vice versa.

It supports reading GPT, MBR, and BSD disklabels.

Signed-off-by: Alif M. Ahmad <alive4ever@live.com>

libuwsc: Update to 2.0.4

rtty: Update to 5.1.0

Signed-off-by: Jianhui Zhao <jianhuizhao329@gmail.com>

Signed-off-by: Jianhui Zhao <jianhuizhao329@gmail.com>

nginx: add luci-support package

Clean up Makefile by utilizing toolchain logic
Make package pkg-config friendly
Add patch to prevent crashes due to overflow
Source: a50eecf65b

Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>

sispmctl: Change URL to HTTPS

dovecot: explicitly disable use of sodium

uwsgi-cgi: improve uwsgi configuration

Some releases may have non letters in it's name currently resulting in
an empty ("") output which is then discarded, resulting in *missing*
labels in the metric.

Now it uses `.-` to catch as little as possible, but anything.

Signed-off-by: Paul Spooren <mail@aparcar.org>

Signed-off-by: W. Michael Petullo <mike@flyn.org>

avahi: patch systemd runtime_dir change in 0.7

This fix wrong configuration to the luci uwsgi conf

Signed-off-by: Ansuel Smith <ansuelsmth@gmail.com>

lvm2: use explicit run/lock dir defaults

uwsgi: add luci-support package

nut: Add PKG_FIXUP:=autoreconf

The configure scripts for lvm2 guess defaults for run/lock based on if
/run exists on the build host.  Use explicit values for the defaults
for consistency across build hosts.

Signed-off-by: Jeremiah McConnell <miah@miah.com>

In avahi 0.7 the runtime_dir was updated to be /run instead of /var/run
for better systemd compatibility.  Patch out that change to fix
avahi-daemon.

Signed-off-by: Jeremiah McConnell <miah@miah.com>

Signed-off-by: Saverio Proto <zioproto@gmail.com>

opensc: Update to 0.18.0

glpk: Update to 4.65

cryptsetup: Update to 2.0.3

Signed-off-by: Rosen Penev <rosenp@gmail.com>

Add HTTPS too.

Signed-off-by: Rosen Penev <rosenp@gmail.com>

gawk: Update to 4.2.1

rtty: Update to 5.0.2

This adds additional specific files to support luci on the nginx

Signed-off-by: Ansuel Smith <ansuelsmth@gmail.com>

This adds an additional file for ngix that contains all the files need to make luci works on the nginx webserver.

Signed-off-by: Ansuel Smith <ansuelsmth@gmail.com>

libuwsc: update to 2.0.3

rp-pppoe: redo glibc patch

Previous fix broke compilation with kernel < 4.8

Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>

Signed-off-by: Jianhui Zhao <jianhuizhao329@gmail.com>

Signed-off-by: Jianhui Zhao <jianhuizhao329@gmail.com>

Signed-off-by: Noah Meyerhans <frodo@morgul.net>

EdDSA support is optional and currently defaults to being disabled.

The following security issues are addressed with this update:

  * An error in TSIG handling could permit unauthorized zone transfers
    or zone updates. These flaws are disclosed in CVE-2017-3142 and
    CVE-2017-3143.
  * The BIND installer on Windows used an unquoted service path, which
    can enable privilege escalation. This flaw is disclosed in
    CVE-2017-3141.
  * With certain RPZ configurations, a response with TTL 0 could cause
    named to go into an infinite query loop. This flaw is disclosed in
    CVE-2017-3140.
  * Addresses could be referenced after being freed during resolver
    processing, causing an assertion failure. The chances of this
    happening were remote, but the introduction of a delay in
    resolution increased them. This bug is disclosed in CVE-2017-3145.

Signed-off-by: Noah Meyerhans <frodo@morgul.net>