]> git.saurik.com Git - apt.git/blob - doc/apt.conf.5.xml
apt-pkg/contrib/md5.cc: fix md5sum by using the right type (unsinged char*) and avoid...
[apt.git] / doc / apt.conf.5.xml
1 <?xml version="1.0" encoding="utf-8" standalone="no"?>
2 <!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.2//EN"
3 "http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd" [
4
5 <!ENTITY % aptent SYSTEM "apt.ent">
6 %aptent;
7
8 <!ENTITY % aptverbatiment SYSTEM "apt-verbatim.ent">
9 %aptverbatiment;
10
11 ]>
12
13 <refentry>
14
15 <refentryinfo>
16 &apt-author.jgunthorpe;
17 &apt-author.team;
18 <author>
19 <firstname>Daniel</firstname>
20 <surname>Burrows</surname>
21 <contrib>Initial documentation of Debug::*.</contrib>
22 <email>dburrows@debian.org</email>
23 </author>
24 &apt-email;
25 &apt-product;
26 <!-- The last update date -->
27 <date>16 January 2010</date>
28 </refentryinfo>
29
30 <refmeta>
31 <refentrytitle>apt.conf</refentrytitle>
32 <manvolnum>5</manvolnum>
33 <refmiscinfo class="manual">APT</refmiscinfo>
34 </refmeta>
35
36 <!-- Man page title -->
37 <refnamediv>
38 <refname>apt.conf</refname>
39 <refpurpose>Configuration file for APT</refpurpose>
40 </refnamediv>
41
42 <refsect1><title>Description</title>
43 <para><filename>apt.conf</filename> is the main configuration file for
44 the APT suite of tools, but by far not the only place changes to options
45 can be made. All tools therefore share the configuration files and also
46 use a common command line parser to provide a uniform environment.</para>
47 <orderedlist>
48 <para>When an APT tool starts up it will read the configuration files
49 in the following order:</para>
50 <listitem><para>the file specified by the <envar>APT_CONFIG</envar>
51 environment variable (if any)</para></listitem>
52 <listitem><para>all files in <literal>Dir::Etc::Parts</literal> in
53 alphanumeric ascending order which have no or "<literal>conf</literal>"
54 as filename extension and which only contain alphanumeric,
55 hyphen (-), underscore (_) and period (.) characters -
56 otherwise they will be silently ignored.</para></listitem>
57 <listitem><para>the main configuration file specified by
58 <literal>Dir::Etc::main</literal></para></listitem>
59 <listitem><para>the command line options are applied to override the
60 configuration directives or to load even more configuration files.</para></listitem>
61 </orderedlist>
62 </refsect1>
63 <refsect1><title>Syntax</title>
64 <para>The configuration file is organized in a tree with options organized into
65 functional groups. Option specification is given with a double colon
66 notation, for instance <literal>APT::Get::Assume-Yes</literal> is an option within
67 the APT tool group, for the Get tool. Options do not inherit from their
68 parent groups.</para>
69
70 <para>Syntactically the configuration language is modeled after what the ISC tools
71 such as bind and dhcp use. Lines starting with
72 <literal>//</literal> are treated as comments (ignored), as well as all text
73 between <literal>/*</literal> and <literal>*/</literal>, just like C/C++ comments.
74 Each line is of the form
75 <literal>APT::Get::Assume-Yes "true";</literal>. The trailing
76 semicolon and the quotes are required. The value must be on one line, and
77 there is no kind of string concatenation. It must not include inside quotes.
78 The behavior of the backslash "\" and escaped characters inside a value is
79 undefined and it should not be used. An option name may include
80 alphanumerical characters and the "/-:._+" characters. A new scope can
81 be opened with curly braces, like:</para>
82
83 <informalexample><programlisting>
84 APT {
85 Get {
86 Assume-Yes "true";
87 Fix-Broken "true";
88 };
89 };
90 </programlisting></informalexample>
91
92 <para>with newlines placed to make it more readable. Lists can be created by
93 opening a scope and including a single string enclosed in quotes followed by a
94 semicolon. Multiple entries can be included, each separated by a semicolon.</para>
95
96 <informalexample><programlisting>
97 DPkg::Pre-Install-Pkgs {"/usr/sbin/dpkg-preconfigure --apt";};
98 </programlisting></informalexample>
99
100 <para>In general the sample configuration file in
101 <filename>&docdir;examples/apt.conf</filename> &configureindex;
102 is a good guide for how it should look.</para>
103
104 <para>The names of the configuration items are not case-sensitive. So in the previous example
105 you could use <literal>dpkg::pre-install-pkgs</literal>.</para>
106
107 <para>Names for the configuration items are optional if a list is defined as it can be see in
108 the <literal>DPkg::Pre-Install-Pkgs</literal> example above. If you don't specify a name a
109 new entry will simply add a new option to the list. If you specify a name you can override
110 the option as every other option by reassigning a new value to the option.</para>
111
112 <para>Two specials are allowed, <literal>#include</literal> (which is deprecated
113 and not supported by alternative implementations) and <literal>#clear</literal>:
114 <literal>#include</literal> will include the given file, unless the filename
115 ends in a slash, then the whole directory is included.
116 <literal>#clear</literal> is used to erase a part of the configuration tree. The
117 specified element and all its descendants are erased.
118 (Note that these lines also need to end with a semicolon.)</para>
119
120 <para>The #clear command is the only way to delete a list or a complete scope.
121 Reopening a scope or the ::-style described below will <emphasis>not</emphasis>
122 override previously written entries. Only options can be overridden by addressing a new
123 value to it - lists and scopes can't be overridden, only cleared.</para>
124
125 <para>All of the APT tools take a -o option which allows an arbitrary configuration
126 directive to be specified on the command line. The syntax is a full option
127 name (<literal>APT::Get::Assume-Yes</literal> for instance) followed by an equals
128 sign then the new value of the option. Lists can be appended too by adding
129 a trailing :: to the list name. (As you might suspect: The scope syntax can't be used
130 on the command line.)</para>
131
132 <para>Note that you can use :: only for appending one item per line to a list and
133 that you should not use it in combination with the scope syntax.
134 (The scope syntax implicit insert ::) Using both syntaxes together will trigger a bug
135 which some users unfortunately relay on: An option with the unusual name "<literal>::</literal>"
136 which acts like every other option with a name. These introduces many problems
137 including that a user who writes multiple lines in this <emphasis>wrong</emphasis> syntax in
138 the hope to append to a list will gain the opposite as only the last assignment for this option
139 "<literal>::</literal>" will be used. Upcoming APT versions will raise errors and
140 will stop working if they encounter this misuse, so please correct such statements now
141 as long as APT doesn't complain explicit about them.</para>
142 </refsect1>
143
144 <refsect1><title>The APT Group</title>
145 <para>This group of options controls general APT behavior as well as holding the
146 options for all of the tools.</para>
147
148 <variablelist>
149 <varlistentry><term>Architecture</term>
150 <listitem><para>System Architecture; sets the architecture to use when fetching files and
151 parsing package lists. The internal default is the architecture apt was
152 compiled for.</para></listitem>
153 </varlistentry>
154
155 <varlistentry><term>Default-Release</term>
156 <listitem><para>Default release to install packages from if more than one
157 version available. Contains release name, codename or release version. Examples: 'stable', 'testing',
158 'unstable', '&stable-codename;', '&testing-codename;', '4.0', '5.0*'. See also &apt-preferences;.</para></listitem>
159 </varlistentry>
160
161 <varlistentry><term>Ignore-Hold</term>
162 <listitem><para>Ignore Held packages; This global option causes the problem resolver to
163 ignore held packages in its decision making.</para></listitem>
164 </varlistentry>
165
166 <varlistentry><term>Clean-Installed</term>
167 <listitem><para>Defaults to on. When turned on the autoclean feature will remove any packages
168 which can no longer be downloaded from the cache. If turned off then
169 packages that are locally installed are also excluded from cleaning - but
170 note that APT provides no direct means to reinstall them.</para></listitem>
171 </varlistentry>
172
173 <varlistentry><term>Immediate-Configure</term>
174 <listitem><para>Defaults to on which will cause APT to install essential and important packages
175 as fast as possible in the install/upgrade operation. This is done to limit the effect of a failing
176 &dpkg; call: If this option is disabled APT does treat an important package in the same way as
177 an extra package: Between the unpacking of the important package A and his configuration can then
178 be many other unpack or configuration calls, e.g. for package B which has no relation to A, but
179 causes the dpkg call to fail (e.g. because maintainer script of package B generates an error) which results
180 in a system state in which package A is unpacked but unconfigured - each package depending on A is now no
181 longer guaranteed to work as their dependency on A is not longer satisfied. The immediate configuration marker
182 is also applied to all dependencies which can generate a problem if the dependencies e.g. form a circle
183 as a dependency with the immediate flag is comparable with a Pre-Dependency. So in theory it is possible
184 that APT encounters a situation in which it is unable to perform immediate configuration, errors out and
185 refers to this option so the user can deactivate the immediate configuration temporarily to be able to perform
186 an install/upgrade again. Note the use of the word "theory" here as this problem was only encountered by now
187 in real world a few times in non-stable distribution versions and was caused by wrong dependencies of the package
188 in question or by a system in an already broken state, so you should not blindly disable this option as
189 the mentioned scenario above is not the only problem immediate configuration can help to prevent in the first place.
190 Before a big operation like <literal>dist-upgrade</literal> is run with this option disabled it should be tried to
191 explicitly <literal>install</literal> the package APT is unable to configure immediately, but please make sure to
192 report your problem also to your distribution and to the APT team with the buglink below so they can work on
193 improving or correcting the upgrade process.</para></listitem>
194 </varlistentry>
195
196 <varlistentry><term>Force-LoopBreak</term>
197 <listitem><para>Never Enable this option unless you -really- know what you are doing. It
198 permits APT to temporarily remove an essential package to break a
199 Conflicts/Conflicts or Conflicts/Pre-Depend loop between two essential
200 packages. SUCH A LOOP SHOULD NEVER EXIST AND IS A GRAVE BUG. This option
201 will work if the essential packages are not tar, gzip, libc, dpkg, bash or
202 anything that those packages depend on.</para></listitem>
203 </varlistentry>
204
205 <varlistentry><term>Cache-Start, Cache-Grow and Cache-Limit</term>
206 <listitem><para>APT uses since version 0.7.26 a resizable memory mapped cache file to store the 'available'
207 information. <literal>Cache-Start</literal> acts as a hint to which size the Cache will grow
208 and is therefore the amount of memory APT will request at startup. The default value is
209 20971520 bytes (~20 MB). Note that these amount of space need to be available for APT
210 otherwise it will likely fail ungracefully, so for memory restricted devices these value should
211 be lowered while on systems with a lot of configured sources this might be increased.
212 <literal>Cache-Grow</literal> defines in byte with the default of 1048576 (~1 MB) how much
213 the Cache size will be increased in the event the space defined by <literal>Cache-Start</literal>
214 is not enough. These value will be applied again and again until either the cache is big
215 enough to store all information or the size of the cache reaches the <literal>Cache-Limit</literal>.
216 The default of <literal>Cache-Limit</literal> is 0 which stands for no limit.
217 If <literal>Cache-Grow</literal> is set to 0 the automatic grow of the cache is disabled.
218 </para></listitem>
219 </varlistentry>
220
221 <varlistentry><term>Build-Essential</term>
222 <listitem><para>Defines which package(s) are considered essential build dependencies.</para></listitem>
223 </varlistentry>
224
225 <varlistentry><term>Get</term>
226 <listitem><para>The Get subsection controls the &apt-get; tool, please see its
227 documentation for more information about the options here.</para></listitem>
228 </varlistentry>
229
230 <varlistentry><term>Cache</term>
231 <listitem><para>The Cache subsection controls the &apt-cache; tool, please see its
232 documentation for more information about the options here.</para></listitem>
233 </varlistentry>
234
235 <varlistentry><term>CDROM</term>
236 <listitem><para>The CDROM subsection controls the &apt-cdrom; tool, please see its
237 documentation for more information about the options here.</para></listitem>
238 </varlistentry>
239 </variablelist>
240 </refsect1>
241
242 <refsect1><title>The Acquire Group</title>
243 <para>The <literal>Acquire</literal> group of options controls the download of packages
244 and the URI handlers.
245
246 <variablelist>
247 <varlistentry><term>Check-Valid-Until</term>
248 <listitem><para>Security related option defaulting to true as an
249 expiring validation for a Release file prevents longtime replay attacks
250 and can e.g. also help users to identify no longer updated mirrors -
251 but the feature depends on the correctness of the time on the user system.
252 Archive maintainers are encouraged to create Release files with the
253 <literal>Valid-Until</literal> header, but if they don't or a stricter value
254 is volitional the following <literal>Max-ValidTime</literal> option can be used.
255 </para></listitem>
256 </varlistentry>
257
258 <varlistentry><term>Max-ValidTime</term>
259 <listitem><para>Seconds the Release file should be considered valid after
260 it was created. The default is "for ever" (0) if the Release file of the
261 archive doesn't include a <literal>Valid-Until</literal> header.
262 If it does then this date is the default. The date from the Release file or
263 the date specified by the creation time of the Release file
264 (<literal>Date</literal> header) plus the seconds specified with this
265 options are used to check if the validation of a file has expired by using
266 the earlier date of the two. Archive specific settings can be made by
267 appending the label of the archive to the option name.
268 </para></listitem>
269 </varlistentry>
270
271 <varlistentry><term>PDiffs</term>
272 <listitem><para>Try to download deltas called <literal>PDiffs</literal> for
273 Packages or Sources files instead of downloading whole ones. True
274 by default.</para>
275 <para>Two sub-options to limit the use of PDiffs are also available:
276 With <literal>FileLimit</literal> can be specified how many PDiff files
277 are downloaded at most to patch a file. <literal>SizeLimit</literal>
278 on the other hand is the maximum precentage of the size of all patches
279 compared to the size of the targeted file. If one of these limits is
280 exceeded the complete file is downloaded instead of the patches.
281 </para></listitem>
282 </varlistentry>
283
284 <varlistentry><term>Queue-Mode</term>
285 <listitem><para>Queuing mode; <literal>Queue-Mode</literal> can be one of <literal>host</literal> or
286 <literal>access</literal> which determines how APT parallelizes outgoing
287 connections. <literal>host</literal> means that one connection per target host
288 will be opened, <literal>access</literal> means that one connection per URI type
289 will be opened.</para></listitem>
290 </varlistentry>
291
292 <varlistentry><term>Retries</term>
293 <listitem><para>Number of retries to perform. If this is non-zero APT will retry failed
294 files the given number of times.</para></listitem>
295 </varlistentry>
296
297 <varlistentry><term>Source-Symlinks</term>
298 <listitem><para>Use symlinks for source archives. If set to true then source archives will
299 be symlinked when possible instead of copying. True is the default.</para></listitem>
300 </varlistentry>
301
302 <varlistentry><term>http</term>
303 <listitem><para>HTTP URIs; http::Proxy is the default http proxy to use. It is in the
304 standard form of <literal>http://[[user][:pass]@]host[:port]/</literal>. Per
305 host proxies can also be specified by using the form
306 <literal>http::Proxy::&lt;host&gt;</literal> with the special keyword <literal>DIRECT</literal>
307 meaning to use no proxies. If no one of the above settings is specified,
308 <envar>http_proxy</envar> environment variable
309 will be used.</para>
310
311 <para>Three settings are provided for cache control with HTTP/1.1 compliant
312 proxy caches. <literal>No-Cache</literal> tells the proxy to not use its cached
313 response under any circumstances, <literal>Max-Age</literal> is sent only for
314 index files and tells the cache to refresh its object if it is older than
315 the given number of seconds. Debian updates its index files daily so the
316 default is 1 day. <literal>No-Store</literal> specifies that the cache should never
317 store this request, it is only set for archive files. This may be useful
318 to prevent polluting a proxy cache with very large .deb files. Note:
319 Squid 2.0.2 does not support any of these options.</para>
320
321 <para>The option <literal>timeout</literal> sets the timeout timer used by the method,
322 this applies to all things including connection timeout and data timeout.</para>
323
324 <para>One setting is provided to control the pipeline depth in cases where the
325 remote server is not RFC conforming or buggy (such as Squid 2.0.2).
326 <literal>Acquire::http::Pipeline-Depth</literal> can be a value from 0 to 5
327 indicating how many outstanding requests APT should send. A value of
328 zero MUST be specified if the remote host does not properly linger
329 on TCP connections - otherwise data corruption will occur. Hosts which
330 require this are in violation of RFC 2068.</para>
331
332 <para>The used bandwidth can be limited with <literal>Acquire::http::Dl-Limit</literal>
333 which accepts integer values in kilobyte. The default value is 0 which deactivates
334 the limit and tries uses as much as possible of the bandwidth (Note that this option implicit
335 deactivates the download from multiple servers at the same time.)</para>
336
337 <para><literal>Acquire::http::User-Agent</literal> can be used to set a different
338 User-Agent for the http download method as some proxies allow access for clients
339 only if the client uses a known identifier.</para>
340 </listitem>
341 </varlistentry>
342
343 <varlistentry><term>https</term>
344 <listitem><para>HTTPS URIs. Cache-control, Timeout, AllowRedirect, Dl-Limit and
345 proxy options are the same as for <literal>http</literal> method and will also
346 default to the options from the <literal>http</literal> method if they are not
347 explicitly set for https. <literal>Pipeline-Depth</literal> option is not
348 supported yet.</para>
349
350 <para><literal>CaInfo</literal> suboption specifies place of file that
351 holds info about trusted certificates.
352 <literal>&lt;host&gt;::CaInfo</literal> is corresponding per-host option.
353 <literal>Verify-Peer</literal> boolean suboption determines whether verify
354 server's host certificate against trusted certificates or not.
355 <literal>&lt;host&gt;::Verify-Peer</literal> is corresponding per-host option.
356 <literal>Verify-Host</literal> boolean suboption determines whether verify
357 server's hostname or not.
358 <literal>&lt;host&gt;::Verify-Host</literal> is corresponding per-host option.
359 <literal>SslCert</literal> determines what certificate to use for client
360 authentication. <literal>&lt;host&gt;::SslCert</literal> is corresponding per-host option.
361 <literal>SslKey</literal> determines what private key to use for client
362 authentication. <literal>&lt;host&gt;::SslKey</literal> is corresponding per-host option.
363 <literal>SslForceVersion</literal> overrides default SSL version to use.
364 Can contain 'TLSv1' or 'SSLv3' string.
365 <literal>&lt;host&gt;::SslForceVersion</literal> is corresponding per-host option.
366 </para></listitem></varlistentry>
367
368 <varlistentry><term>ftp</term>
369 <listitem><para>FTP URIs; ftp::Proxy is the default ftp proxy to use. It is in the
370 standard form of <literal>ftp://[[user][:pass]@]host[:port]/</literal>. Per
371 host proxies can also be specified by using the form
372 <literal>ftp::Proxy::&lt;host&gt;</literal> with the special keyword <literal>DIRECT</literal>
373 meaning to use no proxies. If no one of the above settings is specified,
374 <envar>ftp_proxy</envar> environment variable
375 will be used. To use a ftp
376 proxy you will have to set the <literal>ftp::ProxyLogin</literal> script in the
377 configuration file. This entry specifies the commands to send to tell
378 the proxy server what to connect to. Please see
379 &configureindex; for an example of
380 how to do this. The substitution variables available are
381 <literal>$(PROXY_USER)</literal> <literal>$(PROXY_PASS)</literal> <literal>$(SITE_USER)</literal>
382 <literal>$(SITE_PASS)</literal> <literal>$(SITE)</literal> and <literal>$(SITE_PORT)</literal>
383 Each is taken from it's respective URI component.</para>
384
385 <para>The option <literal>timeout</literal> sets the timeout timer used by the method,
386 this applies to all things including connection timeout and data timeout.</para>
387
388 <para>Several settings are provided to control passive mode. Generally it is
389 safe to leave passive mode on, it works in nearly every environment.
390 However some situations require that passive mode be disabled and port
391 mode ftp used instead. This can be done globally, for connections that
392 go through a proxy or for a specific host (See the sample config file
393 for examples).</para>
394
395 <para>It is possible to proxy FTP over HTTP by setting the <envar>ftp_proxy</envar>
396 environment variable to a http url - see the discussion of the http method
397 above for syntax. You cannot set this in the configuration file and it is
398 not recommended to use FTP over HTTP due to its low efficiency.</para>
399
400 <para>The setting <literal>ForceExtended</literal> controls the use of RFC2428
401 <literal>EPSV</literal> and <literal>EPRT</literal> commands. The default is false, which means
402 these commands are only used if the control connection is IPv6. Setting this
403 to true forces their use even on IPv4 connections. Note that most FTP servers
404 do not support RFC2428.</para></listitem>
405 </varlistentry>
406
407 <varlistentry><term>cdrom</term>
408 <listitem><para>CDROM URIs; the only setting for CDROM URIs is the mount point,
409 <literal>cdrom::Mount</literal> which must be the mount point for the CDROM drive
410 as specified in <filename>/etc/fstab</filename>. It is possible to provide
411 alternate mount and unmount commands if your mount point cannot be listed
412 in the fstab (such as an SMB mount and old mount packages). The syntax
413 is to put <literallayout>/cdrom/::Mount "foo";</literallayout> within
414 the cdrom block. It is important to have the trailing slash. Unmount
415 commands can be specified using UMount.</para></listitem>
416 </varlistentry>
417
418 <varlistentry><term>gpgv</term>
419 <listitem><para>GPGV URIs; the only option for GPGV URIs is the option to pass additional parameters to gpgv.
420 <literal>gpgv::Options</literal> Additional options passed to gpgv.
421 </para></listitem>
422 </varlistentry>
423
424 <varlistentry><term>CompressionTypes</term>
425 <listitem><para>List of compression types which are understood by the acquire methods.
426 Files like <filename>Packages</filename> can be available in various compression formats.
427 Per default the acquire methods can decompress <command>bzip2</command>, <command>lzma</command>
428 and <command>gzip</command> compressed files, with this setting more formats can be added
429 on the fly or the used method can be changed. The syntax for this is:
430 <synopsis>Acquire::CompressionTypes::<replaceable>FileExtension</replaceable> "<replaceable>Methodname</replaceable>";</synopsis>
431 </para><para>Also the <literal>Order</literal> subgroup can be used to define in which order
432 the acquire system will try to download the compressed files. The acquire system will try the first
433 and proceed with the next compression type in this list on error, so to prefer one over the other type
434 simple add the preferred type at first - not already added default types will be added at run time
435 to the end of the list, so e.g. <synopsis>Acquire::CompressionTypes::Order:: "gz";</synopsis> can
436 be used to prefer <command>gzip</command> compressed files over <command>bzip2</command> and <command>lzma</command>.
437 If <command>lzma</command> should be preferred over <command>gzip</command> and <command>bzip2</command> the
438 configure setting should look like this <synopsis>Acquire::CompressionTypes::Order { "lzma"; "gz"; };</synopsis>
439 It is not needed to add <literal>bz2</literal> explicit to the list as it will be added automatic.</para>
440 <para>Note that at run time the <literal>Dir::Bin::<replaceable>Methodname</replaceable></literal> will
441 be checked: If this setting exists the method will only be used if this file exists, e.g. for
442 the bzip2 method (the inbuilt) setting is <literallayout>Dir::Bin::bzip2 "/bin/bzip2";</literallayout>
443 Note also that list entries specified on the command line will be added at the end of the list
444 specified in the configuration files, but before the default entries. To prefer a type in this case
445 over the ones specified in the configuration files you can set the option direct - not in list style.
446 This will not override the defined list, it will only prefix the list with this type.</para>
447 <para>The special type <literal>uncompressed</literal> can be used to give uncompressed files a
448 preference, but note that most archives doesn't provide uncompressed files so this is mostly only
449 useable for local mirrors.</para></listitem>
450 </varlistentry>
451
452 <varlistentry><term>GzipIndexes</term>
453 <listitem><para>
454 When downloading <literal>gzip</literal> compressed indexes (Packages, Sources, or
455 Translations), keep them gzip compressed locally instead of unpacking
456 them. This saves quite a lot of disk space at the expense of more CPU
457 requirements when building the local package caches. False by default.
458 </para></listitem>
459 </varlistentry>
460
461 <varlistentry><term>Languages</term>
462 <listitem><para>The Languages subsection controls which <filename>Translation</filename> files are downloaded
463 and in which order APT tries to display the Description-Translations. APT will try to display the first
464 available Description in the Language which is listed at first. Languages can be defined with their
465 short or long Languagecodes. Note that not all archives provide <filename>Translation</filename>
466 files for every Language - especially the long Languagecodes are rare, so please
467 inform you which ones are available before you set here impossible values.</para>
468 <para>The default list includes "environment" and "en". "<literal>environment</literal>" has a special meaning here:
469 It will be replaced at runtime with the languagecodes extracted from the <literal>LC_MESSAGES</literal> environment variable.
470 It will also ensure that these codes are not included twice in the list. If <literal>LC_MESSAGES</literal>
471 is set to "C" only the <filename>Translation-en</filename> file (if available) will be used.
472 To force apt to use no Translation file use the setting <literal>Acquire::Languages=none</literal>. "<literal>none</literal>"
473 is another special meaning code which will stop the search for a fitting <filename>Translation</filename> file.
474 This can be used by the system administrator to let APT know that it should download also this files without
475 actually use them if the environment doesn't specify this languages. So the following example configuration will
476 result in the order "en, de" in an english and in "de, en" in a german localization. Note that "fr" is downloaded,
477 but not used if APT is not used in a french localization, in such an environment the order would be "fr, de, en".
478 <programlisting>Acquire::Languages { "environment"; "de"; "en"; "none"; "fr"; };</programlisting></para></listitem>
479 </varlistentry>
480
481 </variablelist>
482 </para>
483 </refsect1>
484
485 <refsect1><title>Directories</title>
486
487 <para>The <literal>Dir::State</literal> section has directories that pertain to local
488 state information. <literal>lists</literal> is the directory to place downloaded
489 package lists in and <literal>status</literal> is the name of the dpkg status file.
490 <literal>preferences</literal> is the name of the APT preferences file.
491 <literal>Dir::State</literal> contains the default directory to prefix on all sub
492 items if they do not start with <filename>/</filename> or <filename>./</filename>.</para>
493
494 <para><literal>Dir::Cache</literal> contains locations pertaining to local cache
495 information, such as the two package caches <literal>srcpkgcache</literal> and
496 <literal>pkgcache</literal> as well as the location to place downloaded archives,
497 <literal>Dir::Cache::archives</literal>. Generation of caches can be turned off
498 by setting their names to be blank. This will slow down startup but
499 save disk space. It is probably preferred to turn off the pkgcache rather
500 than the srcpkgcache. Like <literal>Dir::State</literal> the default
501 directory is contained in <literal>Dir::Cache</literal></para>
502
503 <para><literal>Dir::Etc</literal> contains the location of configuration files,
504 <literal>sourcelist</literal> gives the location of the sourcelist and
505 <literal>main</literal> is the default configuration file (setting has no effect,
506 unless it is done from the config file specified by
507 <envar>APT_CONFIG</envar>).</para>
508
509 <para>The <literal>Dir::Parts</literal> setting reads in all the config fragments in
510 lexical order from the directory specified. After this is done then the
511 main config file is loaded.</para>
512
513 <para>Binary programs are pointed to by <literal>Dir::Bin</literal>. <literal>Dir::Bin::Methods</literal>
514 specifies the location of the method handlers and <literal>gzip</literal>,
515 <literal>bzip2</literal>, <literal>lzma</literal>,
516 <literal>dpkg</literal>, <literal>apt-get</literal> <literal>dpkg-source</literal>
517 <literal>dpkg-buildpackage</literal> and <literal>apt-cache</literal> specify the location
518 of the respective programs.</para>
519
520 <para>
521 The configuration item <literal>RootDir</literal> has a special
522 meaning. If set, all paths in <literal>Dir::</literal> will be
523 relative to <literal>RootDir</literal>, <emphasis>even paths that
524 are specified absolutely</emphasis>. So, for instance, if
525 <literal>RootDir</literal> is set to
526 <filename>/tmp/staging</filename> and
527 <literal>Dir::State::status</literal> is set to
528 <filename>/var/lib/dpkg/status</filename>, then the status file
529 will be looked up in
530 <filename>/tmp/staging/var/lib/dpkg/status</filename>.
531 </para>
532
533 <para>
534 The <literal>Ignore-Files-Silently</literal> list can be used to specify
535 which files APT should silently ignore while parsing the files in the
536 fragment directories. Per default a file which end with <literal>.disabled</literal>,
537 <literal>~</literal>, <literal>.bak</literal> or <literal>.dpkg-[a-z]+</literal>
538 is silently ignored. As seen in the last default value these patterns can use regular
539 expression syntax.
540 </para>
541 </refsect1>
542
543 <refsect1><title>APT in DSelect</title>
544 <para>
545 When APT is used as a &dselect; method several configuration directives
546 control the default behaviour. These are in the <literal>DSelect</literal> section.</para>
547
548 <variablelist>
549 <varlistentry><term>Clean</term>
550 <listitem><para>Cache Clean mode; this value may be one of always, prompt, auto,
551 pre-auto and never. always and prompt will remove all packages from
552 the cache after upgrading, prompt (the default) does so conditionally.
553 auto removes only those packages which are no longer downloadable
554 (replaced with a new version for instance). pre-auto performs this
555 action before downloading new packages.</para></listitem>
556 </varlistentry>
557
558 <varlistentry><term>options</term>
559 <listitem><para>The contents of this variable is passed to &apt-get; as command line
560 options when it is run for the install phase.</para></listitem>
561 </varlistentry>
562
563 <varlistentry><term>Updateoptions</term>
564 <listitem><para>The contents of this variable is passed to &apt-get; as command line
565 options when it is run for the update phase.</para></listitem>
566 </varlistentry>
567
568 <varlistentry><term>PromptAfterUpdate</term>
569 <listitem><para>If true the [U]pdate operation in &dselect; will always prompt to continue.
570 The default is to prompt only on error.</para></listitem>
571 </varlistentry>
572 </variablelist>
573 </refsect1>
574
575 <refsect1><title>How APT calls dpkg</title>
576 <para>Several configuration directives control how APT invokes &dpkg;. These are
577 in the <literal>DPkg</literal> section.</para>
578
579 <variablelist>
580 <varlistentry><term>options</term>
581 <listitem><para>This is a list of options to pass to dpkg. The options must be specified
582 using the list notation and each list item is passed as a single argument
583 to &dpkg;.</para></listitem>
584 </varlistentry>
585
586 <varlistentry><term>Pre-Invoke</term><term>Post-Invoke</term>
587 <listitem><para>This is a list of shell commands to run before/after invoking &dpkg;.
588 Like <literal>options</literal> this must be specified in list notation. The
589 commands are invoked in order using <filename>/bin/sh</filename>, should any
590 fail APT will abort.</para></listitem>
591 </varlistentry>
592
593 <varlistentry><term>Pre-Install-Pkgs</term>
594 <listitem><para>This is a list of shell commands to run before invoking dpkg. Like
595 <literal>options</literal> this must be specified in list notation. The commands
596 are invoked in order using <filename>/bin/sh</filename>, should any fail APT
597 will abort. APT will pass to the commands on standard input the
598 filenames of all .deb files it is going to install, one per line.</para>
599
600 <para>Version 2 of this protocol dumps more information, including the
601 protocol version, the APT configuration space and the packages, files
602 and versions being changed. Version 2 is enabled by setting
603 <literal>DPkg::Tools::options::cmd::Version</literal> to 2. <literal>cmd</literal> is a
604 command given to <literal>Pre-Install-Pkgs</literal>.</para></listitem>
605 </varlistentry>
606
607 <varlistentry><term>Run-Directory</term>
608 <listitem><para>APT chdirs to this directory before invoking dpkg, the default is
609 <filename>/</filename>.</para></listitem>
610 </varlistentry>
611
612 <varlistentry><term>Build-options</term>
613 <listitem><para>These options are passed to &dpkg-buildpackage; when compiling packages,
614 the default is to disable signing and produce all binaries.</para></listitem>
615 </varlistentry>
616 </variablelist>
617
618 <refsect2><title>dpkg trigger usage (and related options)</title>
619 <para>APT can call dpkg in a way so it can make aggressive use of triggers over
620 multiple calls of dpkg. Without further options dpkg will use triggers only in between his
621 own run. Activating these options can therefore decrease the time needed to perform the
622 install / upgrade. Note that it is intended to activate these options per default in the
623 future, but as it changes the way APT calling dpkg drastically it needs a lot more testing.
624 <emphasis>These options are therefore currently experimental and should not be used in
625 productive environments.</emphasis> Also it breaks the progress reporting so all frontends will
626 currently stay around half (or more) of the time in the 100% state while it actually configures
627 all packages.</para>
628 <para>Note that it is not guaranteed that APT will support these options or that these options will
629 not cause (big) trouble in the future. If you have understand the current risks and problems with
630 these options, but are brave enough to help testing them create a new configuration file and test a
631 combination of options. Please report any bugs, problems and improvements you encounter and make sure
632 to note which options you have used in your reports. Asking dpkg for help could also be useful for
633 debugging proposes, see e.g. <command>dpkg --audit</command>. A defensive option combination would be
634 <literallayout>DPkg::NoTriggers "true";
635 PackageManager::Configure "smart";
636 DPkg::ConfigurePending "true";
637 DPkg::TriggersPending "true";</literallayout></para>
638
639 <variablelist>
640 <varlistentry><term>DPkg::NoTriggers</term>
641 <listitem><para>Add the no triggers flag to all dpkg calls (except the ConfigurePending call).
642 See &dpkg; if you are interested in what this actually means. In short: dpkg will not run the
643 triggers when this flag is present unless it is explicitly called to do so in an extra call.
644 Note that this option exists (undocumented) also in older apt versions with a slightly different
645 meaning: Previously these option only append --no-triggers to the configure calls to dpkg -
646 now apt will add these flag also to the unpack and remove calls.</para></listitem>
647 </varlistentry>
648 <varlistentry><term>PackageManager::Configure</term>
649 <listitem><para>Valid values are "<literal>all</literal>", "<literal>smart</literal>" and "<literal>no</literal>".
650 "<literal>all</literal>" is the default value and causes APT to configure all packages explicit.
651 The "<literal>smart</literal>" way is it to configure only packages which need to be configured before
652 another package can be unpacked (Pre-Depends) and let the rest configure by dpkg with a call generated
653 by the next option. "<literal>no</literal>" on the other hand will not configure anything and totally
654 rely on dpkg for configuration (which will at the moment fail if a Pre-Depends is encountered).
655 Setting this option to another than the all value will implicitly activate also the next option per
656 default as otherwise the system could end in an unconfigured status which could be unbootable!
657 </para></listitem>
658 </varlistentry>
659 <varlistentry><term>DPkg::ConfigurePending</term>
660 <listitem><para>If this option is set apt will call <command>dpkg --configure --pending</command>
661 to let dpkg handle all required configurations and triggers. This option is activated automatic
662 per default if the previous option is not set to <literal>all</literal>, but deactivating could be useful
663 if you want to run APT multiple times in a row - e.g. in an installer. In these sceneries you could
664 deactivate this option in all but the last run.</para></listitem>
665 </varlistentry>
666 <varlistentry><term>DPkg::TriggersPending</term>
667 <listitem><para>Useful for <literal>smart</literal> configuration as a package which has pending
668 triggers is not considered as <literal>installed</literal> and dpkg treats them as <literal>unpacked</literal>
669 currently which is a dealbreaker for Pre-Dependencies (see debbugs #526774). Note that this will
670 process all triggers, not only the triggers needed to configure this package.</para></listitem>
671 </varlistentry>
672 <varlistentry><term>PackageManager::UnpackAll</term>
673 <listitem><para>As the configuration can be deferred to be done at the end by dpkg it can be
674 tried to order the unpack series only by critical needs, e.g. by Pre-Depends. Default is true
675 and therefore the "old" method of ordering in various steps by everything. While both method
676 were present in earlier APT versions the <literal>OrderCritical</literal> method was unused, so
677 this method is very experimental and needs further improvements before becoming really useful.
678 </para></listitem>
679 </varlistentry>
680 <varlistentry><term>OrderList::Score::Immediate</term>
681 <listitem><para>Essential packages (and there dependencies) should be configured immediately
682 after unpacking. It will be a good idea to do this quite early in the upgrade process as these
683 these configure calls require currently also <literal>DPkg::TriggersPending</literal> which
684 will run quite a few triggers (which maybe not needed). Essentials get per default a high score
685 but the immediate flag is relatively low (a package which has a Pre-Depends is higher rated).
686 These option and the others in the same group can be used to change the scoring. The following
687 example shows the settings with there default values.
688 <literallayout>OrderList::Score {
689 Delete 500;
690 Essential 200;
691 Immediate 10;
692 PreDepends 50;
693 };</literallayout>
694 </para></listitem>
695 </varlistentry>
696 </variablelist>
697 </refsect2>
698 </refsect1>
699
700 <refsect1>
701 <title>Periodic and Archives options</title>
702 <para><literal>APT::Periodic</literal> and <literal>APT::Archives</literal>
703 groups of options configure behavior of apt periodic updates, which is
704 done by <literal>/etc/cron.daily/apt</literal> script. See header of
705 this script for the brief documentation of these options.
706 </para>
707 </refsect1>
708
709 <refsect1>
710 <title>Debug options</title>
711 <para>
712 Enabling options in the <literal>Debug::</literal> section will
713 cause debugging information to be sent to the standard error
714 stream of the program utilizing the <literal>apt</literal>
715 libraries, or enable special program modes that are primarily
716 useful for debugging the behavior of <literal>apt</literal>.
717 Most of these options are not interesting to a normal user, but a
718 few may be:
719
720 <itemizedlist>
721 <listitem>
722 <para>
723 <literal>Debug::pkgProblemResolver</literal> enables output
724 about the decisions made by
725 <literal>dist-upgrade, upgrade, install, remove, purge</literal>.
726 </para>
727 </listitem>
728
729 <listitem>
730 <para>
731 <literal>Debug::NoLocking</literal> disables all file
732 locking. This can be used to run some operations (for
733 instance, <literal>apt-get -s install</literal>) as a
734 non-root user.
735 </para>
736 </listitem>
737
738 <listitem>
739 <para>
740 <literal>Debug::pkgDPkgPM</literal> prints out the actual
741 command line each time that <literal>apt</literal> invokes
742 &dpkg;.
743 </para>
744 </listitem>
745
746 <listitem>
747 <para>
748 <literal>Debug::IdentCdrom</literal> disables the inclusion
749 of statfs data in CDROM IDs. <!-- TODO: provide a
750 motivating example, except I haven't a clue why you'd want
751 to do this. -->
752 </para>
753 </listitem>
754 </itemizedlist>
755 </para>
756
757 <para>
758 A full list of debugging options to apt follows.
759 </para>
760
761 <variablelist>
762 <varlistentry>
763 <term><literal>Debug::Acquire::cdrom</literal></term>
764
765 <listitem>
766 <para>
767 Print information related to accessing
768 <literal>cdrom://</literal> sources.
769 </para>
770 </listitem>
771 </varlistentry>
772
773 <varlistentry>
774 <term><literal>Debug::Acquire::ftp</literal></term>
775
776 <listitem>
777 <para>
778 Print information related to downloading packages using
779 FTP.
780 </para>
781 </listitem>
782 </varlistentry>
783
784 <varlistentry>
785 <term><literal>Debug::Acquire::http</literal></term>
786
787 <listitem>
788 <para>
789 Print information related to downloading packages using
790 HTTP.
791 </para>
792 </listitem>
793 </varlistentry>
794
795 <varlistentry>
796 <term><literal>Debug::Acquire::https</literal></term>
797
798 <listitem>
799 <para>
800 Print information related to downloading packages using
801 HTTPS.
802 </para>
803 </listitem>
804 </varlistentry>
805
806 <varlistentry>
807 <term><literal>Debug::Acquire::gpgv</literal></term>
808
809 <listitem>
810 <para>
811 Print information related to verifying cryptographic
812 signatures using <literal>gpg</literal>.
813 </para>
814 </listitem>
815 </varlistentry>
816
817 <varlistentry>
818 <term><literal>Debug::aptcdrom</literal></term>
819
820 <listitem>
821 <para>
822 Output information about the process of accessing
823 collections of packages stored on CD-ROMs.
824 </para>
825 </listitem>
826 </varlistentry>
827
828 <varlistentry>
829 <term><literal>Debug::BuildDeps</literal></term>
830 <listitem>
831 <para>
832 Describes the process of resolving build-dependencies in
833 &apt-get;.
834 </para>
835 </listitem>
836 </varlistentry>
837
838 <varlistentry>
839 <term><literal>Debug::Hashes</literal></term>
840 <listitem>
841 <para>
842 Output each cryptographic hash that is generated by the
843 <literal>apt</literal> libraries.
844 </para>
845 </listitem>
846 </varlistentry>
847
848 <varlistentry>
849 <term><literal>Debug::IdentCDROM</literal></term>
850 <listitem>
851 <para>
852 Do not include information from <literal>statfs</literal>,
853 namely the number of used and free blocks on the CD-ROM
854 filesystem, when generating an ID for a CD-ROM.
855 </para>
856 </listitem>
857 </varlistentry>
858
859 <varlistentry>
860 <term><literal>Debug::NoLocking</literal></term>
861 <listitem>
862 <para>
863 Disable all file locking. For instance, this will allow
864 two instances of <quote><literal>apt-get
865 update</literal></quote> to run at the same time.
866 </para>
867 </listitem>
868 </varlistentry>
869
870 <varlistentry>
871 <term><literal>Debug::pkgAcquire</literal></term>
872
873 <listitem>
874 <para>
875 Log when items are added to or removed from the global
876 download queue.
877 </para>
878 </listitem>
879 </varlistentry>
880
881 <varlistentry>
882 <term><literal>Debug::pkgAcquire::Auth</literal></term>
883 <listitem>
884 <para>
885 Output status messages and errors related to verifying
886 checksums and cryptographic signatures of downloaded files.
887 </para>
888 </listitem>
889 </varlistentry>
890
891 <varlistentry>
892 <term><literal>Debug::pkgAcquire::Diffs</literal></term>
893 <listitem>
894 <para>
895 Output information about downloading and applying package
896 index list diffs, and errors relating to package index list
897 diffs.
898 </para>
899 </listitem>
900 </varlistentry>
901
902 <varlistentry>
903 <term><literal>Debug::pkgAcquire::RRed</literal></term>
904
905 <listitem>
906 <para>
907 Output information related to patching apt package lists
908 when downloading index diffs instead of full indices.
909 </para>
910 </listitem>
911 </varlistentry>
912
913 <varlistentry>
914 <term><literal>Debug::pkgAcquire::Worker</literal></term>
915
916 <listitem>
917 <para>
918 Log all interactions with the sub-processes that actually
919 perform downloads.
920 </para>
921 </listitem>
922 </varlistentry>
923
924 <varlistentry>
925 <term><literal>Debug::pkgAutoRemove</literal></term>
926
927 <listitem>
928 <para>
929 Log events related to the automatically-installed status of
930 packages and to the removal of unused packages.
931 </para>
932 </listitem>
933 </varlistentry>
934
935 <varlistentry>
936 <term><literal>Debug::pkgDepCache::AutoInstall</literal></term>
937 <listitem>
938 <para>
939 Generate debug messages describing which packages are being
940 automatically installed to resolve dependencies. This
941 corresponds to the initial auto-install pass performed in,
942 e.g., <literal>apt-get install</literal>, and not to the
943 full <literal>apt</literal> dependency resolver; see
944 <literal>Debug::pkgProblemResolver</literal> for that.
945 </para>
946 </listitem>
947 </varlistentry>
948
949 <varlistentry>
950 <term><literal>Debug::pkgDepCache::Marker</literal></term>
951 <listitem>
952 <para>
953 Generate debug messages describing which package is marked
954 as keep/install/remove while the ProblemResolver does his work.
955 Each addition or deletion may trigger additional actions;
956 they are shown indented two additional space under the original entry.
957 The format for each line is <literal>MarkKeep</literal>,
958 <literal>MarkDelete</literal> or <literal>MarkInstall</literal> followed by
959 <literal>package-name &lt;a.b.c -&gt; d.e.f | x.y.z&gt; (section)</literal>
960 where <literal>a.b.c</literal> is the current version of the package,
961 <literal>d.e.f</literal> is the version considered for installation and
962 <literal>x.y.z</literal> is a newer version, but not considered for installation
963 (because of a low pin score). The later two can be omitted if there is none or if
964 it is the same version as the installed.
965 <literal>section</literal> is the name of the section the package appears in.
966 </para>
967 </listitem>
968 </varlistentry>
969
970 <!-- Question: why doesn't this do anything? The code says it should. -->
971 <varlistentry>
972 <term><literal>Debug::pkgInitConfig</literal></term>
973 <listitem>
974 <para>
975 Dump the default configuration to standard error on
976 startup.
977 </para>
978 </listitem>
979 </varlistentry>
980
981 <varlistentry>
982 <term><literal>Debug::pkgDPkgPM</literal></term>
983 <listitem>
984 <para>
985 When invoking &dpkg;, output the precise command line with
986 which it is being invoked, with arguments separated by a
987 single space character.
988 </para>
989 </listitem>
990 </varlistentry>
991
992 <varlistentry>
993 <term><literal>Debug::pkgDPkgProgressReporting</literal></term>
994 <listitem>
995 <para>
996 Output all the data received from &dpkg; on the status file
997 descriptor and any errors encountered while parsing it.
998 </para>
999 </listitem>
1000 </varlistentry>
1001
1002 <varlistentry>
1003 <term><literal>Debug::pkgOrderList</literal></term>
1004
1005 <listitem>
1006 <para>
1007 Generate a trace of the algorithm that decides the order in
1008 which <literal>apt</literal> should pass packages to
1009 &dpkg;.
1010 </para>
1011 </listitem>
1012 </varlistentry>
1013
1014 <varlistentry>
1015 <term><literal>Debug::pkgPackageManager</literal></term>
1016
1017 <listitem>
1018 <para>
1019 Output status messages tracing the steps performed when
1020 invoking &dpkg;.
1021 </para>
1022 </listitem>
1023 </varlistentry>
1024
1025 <varlistentry>
1026 <term><literal>Debug::pkgPolicy</literal></term>
1027
1028 <listitem>
1029 <para>
1030 Output the priority of each package list on startup.
1031 </para>
1032 </listitem>
1033 </varlistentry>
1034
1035 <varlistentry>
1036 <term><literal>Debug::pkgProblemResolver</literal></term>
1037
1038 <listitem>
1039 <para>
1040 Trace the execution of the dependency resolver (this
1041 applies only to what happens when a complex dependency
1042 problem is encountered).
1043 </para>
1044 </listitem>
1045 </varlistentry>
1046
1047 <varlistentry>
1048 <term><literal>Debug::pkgProblemResolver::ShowScores</literal></term>
1049 <listitem>
1050 <para>
1051 Display a list of all installed packages with their calculated score
1052 used by the pkgProblemResolver. The description of the package
1053 is the same as described in <literal>Debug::pkgDepCache::Marker</literal>
1054 </para>
1055 </listitem>
1056 </varlistentry>
1057
1058 <varlistentry>
1059 <term><literal>Debug::sourceList</literal></term>
1060
1061 <listitem>
1062 <para>
1063 Print information about the vendors read from
1064 <filename>/etc/apt/vendors.list</filename>.
1065 </para>
1066 </listitem>
1067 </varlistentry>
1068
1069 <!-- 2009/07/11 Currently used nowhere. The corresponding code
1070 is commented.
1071 <varlistentry>
1072 <term><literal>Debug::Vendor</literal></term>
1073
1074 <listitem>
1075 <para>
1076 Print information about each vendor.
1077 </para>
1078 </listitem>
1079 </varlistentry>
1080 -->
1081
1082 </variablelist>
1083 </refsect1>
1084
1085 <refsect1><title>Examples</title>
1086 <para>&configureindex; is a
1087 configuration file showing example values for all possible
1088 options.</para>
1089 </refsect1>
1090
1091 <refsect1><title>Files</title>
1092 <variablelist>
1093 &file-aptconf;
1094 </variablelist>
1095 </refsect1>
1096
1097 <refsect1><title>See Also</title>
1098 <para>&apt-cache;, &apt-config;<!-- ? reading apt.conf -->, &apt-preferences;.</para>
1099 </refsect1>
1100
1101 &manbugs;
1102
1103 </refentry>
1104