## minutes. If an automatic request for refresh comes before <repo.refresh.delay>
## minutes passed since the last check, the request is ignored.
##
-## A value of 0 means the repository will always be checked. To get the oposite
+## A value of 0 means the repository will always be checked. To get the opposite
## effect, disable autorefresh for your repositories.
##
## This option has no effect for repositories with autorefresh disabled, nor for
## download.media_preference = download
##
-## Signature checking (repo metadata and downloaded rpm packages)
+## Path where media are preferably mounted or downloaded
+##
+## Valid values: A (writable) directory
+## Default value: /var/adm/mount
+##
+## The media backend will try to organize media mount points and download areas
+## below this directory, unless a different location is requested by the application.
+##
+## If the directory is not accessible and read/writable for a specific user,
+## the fallback is to use /var/tmp.
+##
+## download.media_mountdir = /var/adm/mount
+
+##
+## Signature checking (repodata and rpm packages)
##
## boolean gpgcheck (default: on)
## boolean repo_gpgcheck (default: unset -> according to gpgcheck)
## boolean pkg_gpgcheck (default: unset -> according to gpgcheck)
##
+## If 'gpgcheck' is 'on' we will either check the signature of repo metadata
+## (packages are secured via checksum in the metadata), or the signature of
+## an rpm package to install if it's repo metadata are not signed or not
+## checked.
+##
+## The default behavior can be altered by explicitly setting 'repo_gpgcheck' and/or
+## 'pkg_gpgcheck' to perform those checks always (if 'on') or never (if 'off').
+##
## Explicitly setting 'gpgcheck', 'repo_gpgcheck' 'pkg_gpgcheck' in a
-## repositories .repo file will overwrite the defaults for this specific
-## repo.
-##
-## If 'gpgcheck' is 'on' (the default) we will check the signature of repo metadata
-## (packages are secured via checksum inside the metadata). Using unsigned repos
-## needs to be confirmed.
-## Packages from signed repos are accepted if their checksum matches the checksum
-## stated in the repo metadata.
-## Packages from unsigned repos need a valid gpg signature, using unsigned packages
-## needs to be confirmed.
-##
-## The above default behavior can be tuned by explicitly setting 'repo_gpgcheck'
-## and/or 'pkg_gpgcheck':
-##
-## 'repo_gpgcheck = on' same as the default.
-##
-## 'repo_gpgcheck = off' will silently accept unsigned repos. It will NOT turn off
-## signature checking on the whole, nevertheless it's not a secure setting.
-##
-## 'pkg_gpgcheck = on' will enforce the package signature checking and the need
-## to confirm unsigned packages for all repos (signed and unsigned).
-##
-## 'pkg_gpgcheck = off' will silently accept unsigned packages. It will NOT turn off
-## signature checking on the whole, nevertheless it's not a secure setting.
-##
-## If 'gpgCheck' is 'off' (not recommended), no checks are performed. You can still
-## enable them individually by setting 'repo_gpgcheck' and/or 'pkg_gpgcheck' to 'on'.
-##
-## NOTE:
-## BSC#1038984: For a short period of time, libzypp-16.15.x
-## will silently accept unsigned packages IFF a repositories gpgcheck
-## configuration is explicitly turned OFF like this:
-## gpgcheck = 0
-## repo_gpgcheck = 0
-## pkg_gpgcheck = 1
-## This will allow some already released products to adapt to the behavioral
-## changes introduced by fixing BSC#1038984, while systems with a default
-## configuration (gpgcheck = 1) already benefit from the fix in libzypp-16.15.x.
-## With libzypp-16.16.x the above configuration will reject unsigned packages
-## as it is supposed to do.
+## repositories .repo file will overwrite the defaults here.
##
## DISABLING GPG CHECKS IS NOT RECOMMENDED.
## Signing data enables the recipient to verify that no modifications
# solver.allowVendorChange = false
##
+## EXPERTS ONLY: TUNE DISTRIBUTION UPGRADE (DUP)
+## Set whether to allow package version downgrades upon DUP.
+##
+## CHANGING THE DEFAULT IS NOT RECOMMENDED.
+##
+## Valid values: boolean
+## Default value: true
+##
+# solver.dupAllowDowngrade = true
+
+##
+## EXPERTS ONLY: TUNE DISTRIBUTION UPGRADE (DUP)
+## Set whether follow package renames upon DUP.
+##
+## CHANGING THE DEFAULT IS NOT RECOMMENDED.
+##
+## Valid values: boolean
+## Default value: true
+##
+# solver.dupAllowNameChange = true
+
+##
+## EXPERTS ONLY: TUNE DISTRIBUTION UPGRADE (DUP)
+## Set whether to allow changing the packages architecture upon DUP.
+##
+## CHANGING THE DEFAULT IS NOT RECOMMENDED.
+##
+## Valid values: boolean
+## Default value: true
+##
+# solver.dupAllowArchChange = true
+
+##
+## EXPERTS ONLY: TUNE DISTRIBUTION UPGRADE (DUP)
+## Set whether to allow changing the packages vendor upon DUP. If you
+## are following a continuous distribution like Tumbleweed or Factory
+## where you use 'zypper dup --no-allow-vendor-change' quite frequently,
+## you may indeed benefit from disabling the VendorChange. Packages from
+## OBS repos will then be kept rather than being overwritten by Tumbleweeds
+## version.
+##
+## CHANGING THE DEFAULT IS NOT RECOMMENDED.
+##
+## Valid values: boolean
+## Default value: true
+##
+# solver.dupAllowVendorChange = true
+
+##
## EXPERTS ONLY: Cleanup when deleting packages. Whether the solver should
## per default try to remove packages exclusively required by the ones he's
## asked to delete.
# solver.checkSystemFile = /etc/zypp/systemCheck
##
+## This directory can contain files that contain requirements/conflicts
+## which fulfill the needs of a running system (see checkSystemFile).
+##
+## Files are read in alphabetical order.
+##
+## Default value: {configdir}/systemCheck.d
+##
+# solver.checkSystemFileDir = /etc/zypp/systemCheck.d
+
+##
## When committing a dist upgrade (e.g. 'zypper dup') a solver testcase
## is written to /var/log/updateTestcase-<date>. It is needed in bugreports.
## This option returns the number of testcases to keep on the system. Old