fakechroot runs a command in an environment were is additional possibility to use chroot command without root privileges. This is useful for allowing users to create own chrooted environment with possibility to install another packages without need for root privileges.

It works by providing libfakechroot.so, a shared library meant to be set as LD_PRELOAD to override the C library file system functions.

This package contains Advanced Linux Sound Architecture topology configuration files that can be used for specific audio hardware.

GNU Linux-Libre is a free (as in freedom) variant of the Linux kernel. It has been modified to remove all non-free binary blobs.

GNU Linux-Libre is a free (as in freedom) variant of the Linux kernel. It has been modified to remove all non-free binary blobs.

These are a set of utilities built upon sysfs, a virtual file system in Linux kernel versions 2.5+ that exposes a system's device tree. The package also contains the libsysfs library.

cpupower is a set of user-space tools that use the cpufreq feature of the Linux kernel to retrieve and control processor features related to power saving, such as frequency and voltage scaling.

WirePlumber is a modular session / policy manager for PipeWire and a GObject-based high-level library that wraps PipeWire's API, providing convenience for writing the daemon's modules as well as external tools for managing PipeWire.

This package contains keytable files and keyboard utilities compatible for systems using the Linux kernel. This includes commands such as loadkeys, setfont, kbdinfo, and chvt.

rfkill is a simple tool for accessing the rfkill device interface, which is used to enable and disable wireless networking devices, typically WLAN, Bluetooth and mobile broadband.

Headers of the Linux-Libre kernel.

This package is low-level user-level Intel's communications interface. The PSM2 API is a high-performance vendor-specific protocol that provides a low-level communications interface for the Intel Omni-Path family of high-speed networking devices.

BlueZ provides support for the core Bluetooth layers and protocols. It is flexible, efficient and uses a modular implementation.

ulogd is a userspace logging daemon for netfilter/iptables related logging. This includes per-packet logging of security violations, per-packet logging for accounting, per-flow logging and flexible user-defined accounting.

1. Packet and flow-based traffic accounting

2. Flexible user-defined traffic accounting via nfacct infrastructure

3. SQL database back-end support: SQLite3, PostgreSQL, MySQL

4. Text-based output formats: CSV, XML, Netfilter's LOG, Netfilter's conntrack

This simple daemon feeds entropy from the CPU Jitter RNG core to the kernel Linux's entropy estimator. This prevents the /dev/random device from blocking and should benefit users of the preferred /dev/urandom and getrandom() interfaces too.

The CPU Jitter RNG itself is part of the kernel and claims to provide good entropy by collecting and magnifying differences in CPU execution time as measured by the high-resolution timer built into modern CPUs. It requires no additional hardware or external entropy source.

The random bit stream generated by jitterentropy-rngd is not processed by a cryptographically secure whitening function. Nonetheless, its authors believe it to be a suitable source of cryptographically secure key material or other cryptographically sensitive data.

If you agree with them, start this daemon as early as possible to provide properly seeded random numbers to services like SSH or those using TLS during early boot when entropy may be low, especially in virtualised environments.

Python-evdev provides bindings to the generic input event interface in Linux. The evdev interface serves the purpose of passing events generated in the kernel directly to userspace through character devices that are typically located in /dev/input/.

This package also comes with bindings to uinput, the userspace input subsystem. uinput allows userspace programs to create and handle input devices that can inject events directly into the input subsystem.

iptables is the user-space command line program used to configure the Linux 2.4.x and later IPv4 packet filtering ruleset (firewall), including NAT (Network Address Translation).

This package also includes ip6tables, which is used to configure the IPv6 packet filter.

Both commands are targeted at system administrators.

The i2c-tools package contains a heterogeneous set of I2C tools for Linux: a bus probing tool, a chip dumper, register-level SMBus access helpers, EEPROM decoding scripts, EEPROM programming tools, and a python module for SMBus access.

PipeWire is a project that aims to greatly improve handling of audio and video under Linux. It aims to support the usecases currently handled by both PulseAudio and Jack and at the same time provide same level of powerful handling of Video input and output. It also introduces a security model that makes interacting with audio and video devices from containerized applications easy, with supporting Flatpak applications being the primary goal. Alongside Wayland and Flatpak we expect PipeWire to provide a core building block for the future of Linux application development.

Libcap2 provides a programming interface to POSIX capabilities on Linux-based operating systems.

Monitor a hardware random number generator, and supply entropy from that to the system kernel's /dev/random machinery.

This package provides a shell script to assess your system's resilience against the several transient execution CVEs that were published since early 2018, and gives guidance as to how to mitigate them.

Singularity is a container platform supporting a number of container image formats. It can build SquashFS container images or import existing Docker images. Singularity requires kernel support for container isolation or root privileges.

This utility can read or write specific registers or all the available registers of the EC supported by the ec_sys Linux driver.

Zerofree finds the unallocated blocks with non-zero value content in an ext2, ext3, or ext4 file system and fills them with zeroes (or another value). This is a simple way to make disk images more compressible. Zerofree requires the file system to be unmounted or mounted read-only.