On Thursday 02 April 2009 14:45:48 Jan Kupec wrote:
Michael Andres wrote:
Maybe 'zypper dup' should be deprecated and replaced by some command
simply 'dup's one repo:
zypper follow-repo KDE4 // raise KDE4 prio and update the packages. As per earlier discussion, i plan to add --from <repo> option to several commands, including dup.
zypper dup --from repo1 --from repo2 ...
Yes, but 'zypper dup' still has a "dangerous" default behavior, if
Michael Andres schrieb: that priorities
are present.
We could require a --from argument and use --from-all for the current behavior. 'zypper dup' without arg could print a message to educate.
Michael Schroeder schrieb:
On Mon, Mar 30, 2009 at 03:47:24PM +0100, Elmar Stellnberger wrote:
Perhaps these things should not happen if all repos have the same priority; but they still can: Yust imagine an update for program X is released sooner for OpenSuse11.0 than for OpenSuse11.1 (normally that should not happen, but in practice if something can go wrong it will go wrong). Then program X will be replaced for the OpenSuse11.0 version instead of waiting for the same update as an Opensuse11.1 version. This is not what we actually want.
No, because the 11.0 package has a lower version-release than the 11.1 package.
I would suggest user added repos to have a lower priority i.e. a higher number (how confusing) because these sources are generally less trustworthy (Packman, SW self compiled by Opensuse-users , 3rd party SW).
But all opensuse repos and the opensuse update repos have same priority? Good, that's one point we're agreeing on.
This is also a security issue; and Opensuse has some kind of pent-up demand for more security (http://en.opensuse.org/Security). Besides this security may still be a reason to switch from Windows to Linux. We should not destroy our security concept by a slackness like this.
You're not getting all the bug reports like "zypper dup is downgrading all my packman packages to opensuse"...
Cheers, Michael.
I see zypper up does not change the source a package is installed from
as I have suspected (no difference between dvd, update and repo-oss,
non-oss i.e. the sysrepos assumed). Consequently package priority
assignments are for installation time only (at least as long as we do
not use zypper dup on all repos which maybe should be forbidden at all).
Now let us agree on a default priority table for the next release.
The tables I have proposed so far look like the following:
-----------------------------------------------
20 updates (unchanged)
30 DVD
40 repo-oss, repo-non-oss
99 user repos
install precedence:
1. priority
2. version
updates:
1. look for newer version in the same issuer/vendor-group
(20/30/40:suse, 99:packman, 99:vendor2)
evtl. only for repos with same or higher priority than the initially
installed repo - should not make any difference in here
if a package can be installed from DVD it should be installed from DVD
because not all users have a broadband internet connection.
if a user does not have his DVD handy, it should be possible to disable
the DVD-repo by an alert box temporarily and simply continue the current
YaST installation run. The update repo is supposed to contain updates
and delta.rpms only so that it is not considered as an initial installation.
i.e. 30 DVD < 40 repo-oss, repo-non-oss
Can we agree on giving the user repos the lowest priority for reasons of
security and clean design?
If a user wants a package offered by the core distro to be alternatively
installed from packman (amarok f.i.) zypper up should not change this
anyway.
Selecting certain packages to be installed from a different repo should
be possible via YaST or simply by
zypper in amarok -r packman [--from-deps - use all active repos for
dependency resolution; this could become the default; i.e. if not
desired specify --no-deps]
i.e. sys repos < 99 user repos
---------------------------------------------------
20 updates
40 DVD, repo-oss, repo-non-oss
99 user repos
alternatively the user may select at installation time to have a high
speed internet connection so that a newer package should be downloaded
directly from an online repo rather than at first being installed from
DVD and later on being updated.
install precedence:
1. priority
2. version
3. local repos precede remote repos i.e. DVD