Merge remote-tracking branch 'origin/master' into harald-bak

VerityBook.te

@@ -34,6 +34,8 @@ require {
 	type user_home_dir_t;
         type chkpwd_t;
 	type xdm_var_lib_t;
+        type container_t;
+        type kvm_device_t;
 	class sock_file { create write };
 	class file { create getattr map open read relabelfrom relabelto rename setattr unlink write };
 	class process { dyntransition setcurrent };
@@ -43,8 +45,13 @@ require {
 	class dbus send_msg;
 	class sock_file { read write };
 	class lnk_file { getattr read };
+        class chr_file { getattr ioctl open read write };
 }
 
+#============= container_t ==============
+allow container_t kvm_device_t:chr_file getattr;
+allow container_t kvm_device_t:chr_file { ioctl open read write };
+
 #============= NetworkManager_t ==============
 allow NetworkManager_t iscsi_unit_file_t:service { reload status };
 

pkglist.txt

@@ -3,24 +3,41 @@ adwaita-gtk2-theme
 adwaita-icon-theme
 alsa-firmware
 alsa-tools-firmware.x86_64
+asciidoc
+asciinema
 atmel-firmware
+audit-libs-devel
 authselect
 autofs
 b43-openfwwf
 bash-completion
+bat
 bfa-firmware
 bind-utils
 bzip2
 ca-certificates
+@c-development
+clang-devel
+cmake
 container-selinux
 crun
+cryptsetup-devel
 cups
 cups-client
 cups-ipptool
+@development-libs
+@development-tools
+dnf
+docbook-dtds
+docbook-style-xsl
 ebtables
-emacs
+elfutils-devel
+exa
+fd-find
 fedora-gpg-keys
+fedora-packager
 fedora-release
+fedpkg
 findutils
 firefox
 firewalld-filesystem
@@ -28,17 +45,33 @@ flatpak
 @Fonts
 fwupd
 gawk
+gcc
+gcc-c++
 GeoIP-GeoLite-data
 geolite2-city
 geolite2-country
+gettext
 git
+glib2-devel
+glibc-static
 @GNOME
 gnome-initial-setup
 gnome-remote-desktop
 gnu-efi
+gnu-efi-devel
 gnupg
+gnutls-devel
+gobject-introspection-devel
+golang
+gperf
+gpgme-devel
+gstreamer1-plugin-openh264
+gtk3-devel
 help2man
+ibm-plex-mono-fonts
+ImageMagick
 iptables
+iptables-devel
 iputils
 ipw2100-firmware
 ipw2200-firmware
@@ -59,16 +92,50 @@ iwl6000g2a-firmware
 iwl6000g2b-firmware
 iwl6050-firmware
 iwl7260-firmware
+java
+keybase
+kmod-devel
+kup
+libacl-devel
+libassuan-devel
+libblkid-devel
+libcap-devel
+libcurl-devel
 libertas-sd8686-firmware
 libertas-sd8787-firmware
 libertas-usb8388-firmware
+libgcrypt-devel
+libgpg-error-devel
+libidn2-devel
+libmicrohttpd-devel
+libmount-devel
+libpng12
+libseccomp-devel
+libselinux-devel
+libvarlink-devel
+libvarlink-util
+libvirt-bash-completion
+libvirt-client
+libvirt-daemon-config-network
+libvirt-daemon-kvm
+libxkbcommon-devel
+libxslt
 linux-firmware
+lld
 lsof
+lz4
+lz4-devel
 make
 man-db
 mc
+meson
 midisport-firmware
 mosh
+mozilla-openh264
+musl-clang
+musl-devel
+musl-gcc
+musl-libc-static
 nautilus
 net-tools
 NetworkManager
@@ -85,17 +152,37 @@ nss-mdns
 nss-tools
 opensc
 openssh-server
+openssl-devel
+openssl-static
+ostree-devel
+pam-devel
+pam_yubico
+perl-File-Slurp
 pesign
 pigz
+pkgconfig
 podman
+procps-ng
 psmisc
+python3-devel
+python3-future
 python3-lxml
-python3-pip
 python3-wheel
+qemu-system-aarch64
+qemu-system-arm
+qemu-system-ppc
+qemu-system-s390x
+qrencode-devel
+ripgrep
+rlwrap
 rpcbind
 rsync
+ruby
 screen
+slirp4netns
 sssd-kcm
+systemd-devel
+thunderbird
 tmux
 toolbox
 tree
@@ -106,4 +193,6 @@ virt-manager
 which
 xclip
 xz
+xz-devel
 zd1211-firmware
+zlib-static