Merge from bittboy/buildroot@db180c0

package/nginx-naxsi/Config.in

@@ -0,0 +1,29 @@
+config BR2_PACKAGE_NGINX_NAXSI
+	bool "nginx-naxsi"
+	depends on BR2_PACKAGE_NGINX_HTTP
+	# uses pcre, so nginx needs to be built with pcre support
+	select BR2_PACKAGE_PCRE
+	help
+	  NAXSI means Nginx Anti XSS & SQL Injection.
+
+	  Technically, it is a third party nginx module, available as
+	  a package for many UNIX-like platforms. This module, by
+	  default, reads a small subset of simple (and readable) rules
+	  containing 99% of known patterns involved in website
+	  vulnerabilities. For example, <, | or drop are not supposed
+	  to be part of a URI.
+
+	  Being very simple, those patterns may match legitimate
+	  queries, it is the Naxsi's administrator duty to add
+	  specific rules that will whitelist legitimate
+	  behaviours. The administrator can either add whitelists
+	  manually by analyzing nginx's error log, or (recommended)
+	  start the project with an intensive auto-learning phase that
+	  will automatically generate whitelisting rules regarding a
+	  website's behaviour.
+
+	  In short, Naxsi behaves like a DROP-by-default firewall, the
+	  only task is to add required ACCEPT rules for the target
+	  website to work properly.
+
+	  https://github.com/nbs-system/naxsi

package/nginx-naxsi/nginx-naxsi.hash

@@ -0,0 +1,3 @@
+# Locally calculated
+sha256	0a66dcadd32432460fab180be9f2efe24e911e3798917b2787ee710e02901eb4	nginx-naxsi-0.56.tar.gz
+sha256	046812ddc8f250f85b5d6e04218c185849c618b309271ef9d8b01e92c6f7a6ac	naxsi_src/naxsi_json.c

package/nginx-naxsi/nginx-naxsi.mk

@@ -0,0 +1,12 @@
+################################################################################
+#
+# nginx-naxsi
+#
+################################################################################
+
+NGINX_NAXSI_VERSION = 0.56
+NGINX_NAXSI_SITE = $(call github,nbs-system,naxsi,$(NGINX_NAXSI_VERSION))
+NGINX_NAXSI_LICENSE = GPL-2.0+ with OpenSSL exception
+NGINX_NAXSI_LICENSE_FILES = naxsi_src/naxsi_json.c
+
+$(eval $(generic-package))