* Stephan Kulow
For the use case of "non-root user has rights to install updates", updates must be strictly monotic increasing. Otherwise its a security hole since this user could install older software with known risks.
Then the application doing the update shouldn't INSTALL_SOLVABLE a solvable it knows should not be installed. Hardly job of the solver.
Depends on the application <-> solver interface and where the 'access granted' decision is taken. According to security, this decision must not be taken by the application. So you have to enforce the 'do not downgrade' policy somewhere outside of the application. Klaus -- To unsubscribe, e-mail: zypp-devel+unsubscribe@opensuse.org For additional commands, e-mail: zypp-devel+help@opensuse.org