Headers of the Linux-Libre kernel.

This package contains the wireless regulatory database for the CRDA. The database contains information on country-specific regulations for the wireless spectrum.

The i2c-tools package contains a heterogeneous set of I2C tools for Linux: a bus probing tool, a chip dumper, register-level SMBus access helpers, EEPROM decoding scripts, EEPROM programming tools, and a python module for SMBus access.

lshw (Hardware Lister) is a small tool to provide detailed information on the hardware configuration of the machine. It can report exact memory configuration, firmware version, mainboard configuration, CPU version and speed, cache configuration, bus speed, and more on DMI-capable x86 or EFI (IA-64) systems and on some PowerPC machines (PowerMac G4 is known to work).

IP sets are a framework inside the Linux 2.4.x and 2.6.x kernel which can be administered by the ipset utility. Depending on the type, currently an IP set may store IP addresses, (TCP/UDP) port numbers or IP addresses with MAC addresses in a way which ensures lightning speed when matching an entry against a set.

If you want to

• store multiple IP addresses or port numbers and match against the entire collection using a single iptables rule.

• dynamically update iptables rules against IP addresses or ports without performance penalty.

• express complex IP address and ports based rulesets with a single iptables rule and benefit from the speed of IP sets.

then IP sets may be the proper tool for you.

The Falco security libraries include libsinsp and libscap. libscap manages the data capture process, while libsinsp is a system inspection library that enriches events from libscap with machine state. libsinsp also performs events filtering with rule evaluation through its internal rule engine. These libraries are used by the sysdig command-line utility.

GNU Linux-Libre is a free (as in freedom) variant of the Linux kernel. It has been modified to remove all non-free binary blobs.

GNU Linux-Libre is a free (as in freedom) variant of the Linux kernel. It has been modified to remove all non-free binary blobs.

fbcat saves the contents of the Linux framebuffer (/dev/fb*), or a dump thereof. It supports a wide range of drivers and pixel formats.

fbcat can take screenshots of virtually any application that can be made to write its output to the framebuffer, including (but not limited to) text-mode or graphical applications that don't use a display server.

Also included is fbgrab, a wrapper around fbcat that emulates the behaviour of Gunnar Monell's older fbgrab utility.

Libnfsidmap is a library holding multiple methods of mapping names to ids and visa versa, mainly for NFSv4. It provides an extensible array of mapping functions, currently consisting of two choices: the default nsswitch and the experimental umich_ldap.

Dwarves is a set of tools that use the debugging information inserted in ELF binaries by compilers such as GCC, used by well known debuggers such as GDB.

Utilities in the Dwarves suite include pahole, that can be used to find alignment holes in structures and classes in languages such as C, C++, but not limited to these. These tools can also be used to encode and read the BTF type information format used with the kernel Linux bpf syscall.

The codiff command can be used to compare the effects changes in source code generate on the resulting binaries.

The pfunct command can be used to find all sorts of information about functions, inlines, decisions made by the compiler about inlining, etc.

The pahole command can be used to use all this type information to pretty print raw data according to command line directions.

Headers can have its data format described from debugging info and offsets from it can be used to further format a number of records.

Finally, the btfdiff command can be used to compare the output of pahole from BTF and DWARF, to make sure they produce the same results.

iptables is the user-space command line program used to configure the Linux 2.4.x and later IPv4 packet filtering ruleset (firewall), including NAT (Network Address Translation).

This package also includes ip6tables, which is used to configure the IPv6 packet filter.

Both commands are targeted at system administrators.

This package provides a Linux Kernel module that controls battery charging of specific ThinkPad laptops. It also includes an improved version of the HDAPS driver. The underlying hardware interfaces are SMAPI and direct access to the embedded controller.

This package provides boltd, a userspace daemon for Thunderbolt devices, and boltctl, a command-line utility for managing those devices.

The daemon boltd exposes devices via D-Bus to clients. It also stores a database of previously authorized devices and will, depending on the policy set for the individual devices, automatically authorize newly connected devices without user interaction.

The command-line utility boltctl manages Thunderbolt devices via boltd. It can list devices, monitor changes, and initiate authorization of devices.

eCryptfs is a POSIX-compliant stacked cryptographic file system for Linux. Each file's cryptographic meta-data is stored inside the file itself, along with the encrypted contents. This allows individual encrypted files to be copied between hosts and still be decrypted with the proper key. eCryptfs is a native Linux file system, and has been part of the Linux kernel since version 2.6.19. This package contains the userland utilities to manage it.

Btrfs is a CoW file system for Linux aimed at implementing advanced features while focusing on fault tolerance, repair and easy administration.

UnionFS-FUSE is a flexible union file system implementation in user space, using the FUSE library. Mounting a union file system allows you to "aggregate" the contents of several directories into a single mount point. UnionFS-FUSE additionally supports copy-on-write.

NTFS-3G provides read-write access to NTFS file systems, which are commonly found on Microsoft Windows. It is implemented as a FUSE file system. The package provides additional NTFS tools.

This package provides a C library with C++ bindings and command-line tools for interacting with GPIO devices that avoids the usage of older system-wide /sys interface.

ddate displays the Discordian date and holidays of a given date. The Discordian calendar was made popular by the "Illuminatus!" trilogy by Robert Shea and Robert Anton Wilson.

The kernel Linux's frame buffers provide a simple interface to different kinds of graphic displays. The fbset utility can query and change various device settings such as depth, virtual resolution, and timing parameters.

OpenFabrics Interfaces (OFI) is a framework focused on exporting fabric communication services to applications. OFI is best described as a collection of libraries and applications used to export fabric services. The key components of OFI are: application interfaces, provider libraries, kernel services, daemons, and test applications.

Libfabric is a core component of OFI. It is the library that defines and exports the user-space API of OFI, and is typically the only software that applications deal with directly. It works in conjunction with provider libraries, which are often integrated directly into libfabric.

acpid is designed to notify user-space programs of Advanced Configuration and Power Interface (ACPI) events. acpid should be started during the system boot, and will run as a background process. When an ACPI event is received from the kernel, acpid will examine the list of rules specified in /etc/acpi/events and execute the rules that match the event.

kernel-hardening-checker is a tool for checking the security hardening options of the Linux kernel. Provided preferences are based on suggestions from various sources, including:

• KSPP recommended settings

• CLIP OS kernel configuration

• Last public grsecurity patch (options which they disable)

• SECURITY_LOCKDOWN_LSM patchset

• Direct feedback from the Linux kernel maintainers

This tool supports checking Kconfig options and kernel cmdline parameters.