##
# servicesdir = /etc/zypp/services.d
+##
+## Path where custom repo variable definitions are kept
+##
+## Valid values: A directory
+## Default value: {configdir}/vars.d
+##
+## Changing this undefines all custom repo variables. Built-in
+## variables (like '$arch', '$basearch' or $releasever) are not
+## affected, but reset to their default values.
+##
+## A custom repo variable is defined by creating a file inside the
+## directory. The variable name equals the file name. The files fist
+## line (up to but not including the newline character) defines the
+## variables value.
+##
+# varsdir = /etc/zypp/vars.d
##
## Whether repository urls should be probed when added
## minutes. If an automatic request for refresh comes before <repo.refresh.delay>
## minutes passed since the last check, the request is ignored.
##
-## A value of 0 means the repository will always be checked. To get the oposite
+## A value of 0 means the repository will always be checked. To get the opposite
## effect, disable autorefresh for your repositories.
##
## This option has no effect for repositories with autorefresh disabled, nor for
## download.media_preference = download
##
+## Path where media are preferably mounted or downloaded
+##
+## Valid values: A (writable) directory
+## Default value: /var/adm/mount
+##
+## The media backend will try to organize media mount points and download areas
+## below this directory, unless a different location is requested by the application.
+##
+## If the directory is not accessible and read/writable for a specific user,
+## the fallback is to use /var/tmp.
+##
+## download.media_mountdir = /var/adm/mount
+
+##
+## Signature checking (repo metadata and downloaded rpm packages)
+##
+## boolean gpgcheck (default: on)
+## boolean repo_gpgcheck (default: unset -> according to gpgcheck)
+## boolean pkg_gpgcheck (default: unset -> according to gpgcheck)
+##
+## Explicitly setting 'gpgcheck', 'repo_gpgcheck' 'pkg_gpgcheck' in a
+## repositories .repo file will overwrite the defaults for this specific
+## repo.
+##
+## If 'gpgcheck' is 'on' (the default) we will check the signature of repo metadata
+## (packages are secured via checksum inside the metadata). Using unsigned repos
+## needs to be confirmed.
+## Packages from signed repos are accepted if their checksum matches the checksum
+## stated in the repo metadata.
+## Packages from unsigned repos need a valid gpg signature, using unsigned packages
+## needs to be confirmed.
+##
+## The above default behavior can be tuned by explicitly setting 'repo_gpgcheck'
+## and/or 'pkg_gpgcheck':
+##
+## 'repo_gpgcheck = on' same as the default.
+##
+## 'repo_gpgcheck = off' will silently accept unsigned repos. It will NOT turn off
+## signature checking on the whole, nevertheless it's not a secure setting.
+##
+## 'pkg_gpgcheck = on' will enforce the package signature checking and the need
+## to confirm unsigned packages for all repos (signed and unsigned).
+##
+## 'pkg_gpgcheck = off' will silently accept unsigned packages. It will NOT turn off
+## signature checking on the whole, nevertheless it's not a secure setting.
+##
+## If 'gpgCheck' is 'off' (not recommended), no checks are performed. You can still
+## enable them individually by setting 'repo_gpgcheck' and/or 'pkg_gpgcheck' to 'on'.
+##
+## DISABLING GPG CHECKS IS NOT RECOMMENDED.
+## Signing data enables the recipient to verify that no modifications
+## occurred after the data were signed. Accepting data with no, wrong
+## or unknown signature can lead to a corrupted system and in extreme
+## cases even to a system compromise.
+##
+# repo_gpgcheck = unset -> according to gpgcheck
+# pkg_gpgcheck = unset -> according to gpgcheck
+
+##
## Commit download policy to use as default.
##
## DownloadOnly, Just download all packages to the local cache.
##
## Defining directory which contains vendor description files.
##
-## One file in this directory reflects a group of equivalent vendors. e.G.:
-## (filename is "nvidia" but could be any other name):
-## ------------------------- file contains begin -----------------------
+## Each file in this directory defines a (comma separated) list of
+## equivalent vendors string prefixes (case-insensitive comparision):
+## ------------------------- file begin -----------------------
## [main]
-##
-## vendors = nvidia,suse,opensuse
-##
-## ------------------------- file contains end -----------------------
-## Libzypp makes an string comparision (like strncmp, case-insensitive)
-## whereas the beginning of the strings are compared only.
-## e.G. vendor "opensuse11.0" is compatible to "openSuSE".
+## vendors = MyVendor,AlternateName
+## ------------------------- file end -----------------------
+## By this vendor strings starting with "MyVendor" or "AlternateName"
+## are considered to be equivalent. Packages from equivalent vendors
+## may replace each other without being considered as a 'vendor change'.
##
## Valid values: A directory
## Default value: {configdir}/vendors.d
##
-## Whether required packages are installed ONLY
-## So recommended packages, language packages and packages which depend
-## on hardware (modalias) will not be regarded.
+## Whether only required packages are installed.
+##
+## Recommended packages, will not be regarded.
##
## Valid values: boolean
## Default value: false
# solver.allowVendorChange = false
##
+## EXPERTS ONLY: TUNE DISTRIBUTION UPGRADE (DUP)
+## Set whether to allow package version downgrades upon DUP.
+##
+## CHANGING THE DEFAULT IS NOT RECOMMENDED.
+##
+## Valid values: boolean
+## Default value: true
+##
+# solver.dupAllowDowngrade = true
+
+##
+## EXPERTS ONLY: TUNE DISTRIBUTION UPGRADE (DUP)
+## Set whether follow package renames upon DUP.
+##
+## CHANGING THE DEFAULT IS NOT RECOMMENDED.
+##
+## Valid values: boolean
+## Default value: true
+##
+# solver.dupAllowNameChange = true
+
+##
+## EXPERTS ONLY: TUNE DISTRIBUTION UPGRADE (DUP)
+## Set whether to allow changing the packages architecture upon DUP.
+##
+## CHANGING THE DEFAULT IS NOT RECOMMENDED.
+##
+## Valid values: boolean
+## Default value: true
+##
+# solver.dupAllowArchChange = true
+
+##
+## EXPERTS ONLY: TUNE DISTRIBUTION UPGRADE (DUP)
+## Set whether to allow changing the packages vendor upon DUP. If you
+## are following a continuous distribution like Tumbleweed or Factory
+## where you use 'zypper dup --no-allow-vendor-change' quite frequently,
+## you may indeed benefit from disabling the VendorChange. Packages from
+## OBS repos will then be kept rather than being overwritten by Tumbleweeds
+## version.
+##
+## CHANGING THE DEFAULT IS NOT RECOMMENDED.
+##
+## Valid values: boolean
+## Default value: true
+##
+# solver.dupAllowVendorChange = true
+
+##
## EXPERTS ONLY: Cleanup when deleting packages. Whether the solver should
## per default try to remove packages exclusively required by the ones he's
## asked to delete.
# solver.checkSystemFile = /etc/zypp/systemCheck
##
+## This directory can contain files that contain requirements/conflicts
+## which fulfill the needs of a running system (see checkSystemFile).
+##
+## Files are read in alphabetical order.
+##
+## Default value: {configdir}/systemCheck.d
+##
+# solver.checkSystemFileDir = /etc/zypp/systemCheck.d
+
+##
## When committing a dist upgrade (e.g. 'zypper dup') a solver testcase
## is written to /var/log/updateTestcase-<date>. It is needed in bugreports.
## This option returns the number of testcases to keep on the system. Old
## Examples: single | mail -s 'Update message from %p' root
## none | my-send-script -f %P
##
-## Default value: single | /usr/lib/zypp/notify-message -p %p
+## Default value: <empty>
##
-# update.messages.notify = single | /usr/lib/zypp/notify-message -p %p
+# update.messages.notify =
##
## Options for package installation: excludedocs