]> git.saurik.com Git - apt.git/blob - doc/apt.conf.5.xml
* doc/apt.conf.5.xml:
[apt.git] / doc / apt.conf.5.xml
1 <?xml version="1.0" encoding="utf-8" standalone="no"?>
2 <!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.2//EN"
3 "http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd" [
4
5 <!ENTITY % aptent SYSTEM "apt.ent">
6 %aptent;
7
8 ]>
9
10 <refentry>
11
12 <refentryinfo>
13 &apt-author.jgunthorpe;
14 &apt-author.team;
15 <author>
16 <firstname>Daniel</firstname>
17 <surname>Burrows</surname>
18 <contrib>Initial documentation of Debug::*.</contrib>
19 <email>dburrows@debian.org</email>
20 </author>
21 &apt-email;
22 &apt-product;
23 <!-- The last update date -->
24 <date>16 January 2010</date>
25 </refentryinfo>
26
27 <refmeta>
28 <refentrytitle>apt.conf</refentrytitle>
29 <manvolnum>5</manvolnum>
30 <refmiscinfo class="manual">APT</refmiscinfo>
31 </refmeta>
32
33 <!-- Man page title -->
34 <refnamediv>
35 <refname>apt.conf</refname>
36 <refpurpose>Configuration file for APT</refpurpose>
37 </refnamediv>
38
39 <refsect1><title>Description</title>
40 <para><filename>apt.conf</filename> is the main configuration file for
41 the APT suite of tools, but by far not the only place changes to options
42 can be made. All tools therefore share the configuration files and also
43 use a common command line parser to provide a uniform environment.</para>
44 <orderedlist>
45 <para>When an APT tool starts up it will read the configuration files
46 in the following order:</para>
47 <listitem><para>the file specified by the <envar>APT_CONFIG</envar>
48 environment variable (if any)</para></listitem>
49 <listitem><para>all files in <literal>Dir::Etc::Parts</literal> in
50 alphanumeric ascending order which have no or "<literal>conf</literal>"
51 as filename extension and which only contain alphanumeric,
52 hyphen (-), underscore (_) and period (.) characters -
53 otherwise they will be silently ignored.</para></listitem>
54 <listitem><para>the main configuration file specified by
55 <literal>Dir::Etc::main</literal></para></listitem>
56 <listitem><para>the command line options are applied to override the
57 configuration directives or to load even more configuration files.</para></listitem>
58 </orderedlist>
59 </refsect1>
60 <refsect1><title>Syntax</title>
61 <para>The configuration file is organized in a tree with options organized into
62 functional groups. Option specification is given with a double colon
63 notation, for instance <literal>APT::Get::Assume-Yes</literal> is an option within
64 the APT tool group, for the Get tool. Options do not inherit from their
65 parent groups.</para>
66
67 <para>Syntactically the configuration language is modeled after what the ISC tools
68 such as bind and dhcp use. Lines starting with
69 <literal>//</literal> are treated as comments (ignored), as well as all text
70 between <literal>/*</literal> and <literal>*/</literal>, just like C/C++ comments.
71 Each line is of the form
72 <literal>APT::Get::Assume-Yes "true";</literal>. The trailing
73 semicolon and the quotes are required. The value must be on one line, and
74 there is no kind of string concatenation. It must not include inside quotes.
75 The behavior of the backslash "\" and escaped characters inside a value is
76 undefined and it should not be used. An option name may include
77 alphanumerical characters and the "/-:._+" characters. A new scope can
78 be opened with curly braces, like:</para>
79
80 <informalexample><programlisting>
81 APT {
82 Get {
83 Assume-Yes "true";
84 Fix-Broken "true";
85 };
86 };
87 </programlisting></informalexample>
88
89 <para>with newlines placed to make it more readable. Lists can be created by
90 opening a scope and including a single string enclosed in quotes followed by a
91 semicolon. Multiple entries can be included, each separated by a semicolon.</para>
92
93 <informalexample><programlisting>
94 DPkg::Pre-Install-Pkgs {"/usr/sbin/dpkg-preconfigure --apt";};
95 </programlisting></informalexample>
96
97 <para>In general the sample configuration file in
98 <filename>&docdir;examples/apt.conf</filename> &configureindex;
99 is a good guide for how it should look.</para>
100
101 <para>The names of the configuration items are not case-sensitive. So in the previous example
102 you could use <literal>dpkg::pre-install-pkgs</literal>.</para>
103
104 <para>Names for the configuration items are optional if a list is defined as it can be see in
105 the <literal>DPkg::Pre-Install-Pkgs</literal> example above. If you don't specify a name a
106 new entry will simply add a new option to the list. If you specify a name you can override
107 the option as every other option by reassigning a new value to the option.</para>
108
109 <para>Two specials are allowed, <literal>#include</literal> (which is deprecated
110 and not supported by alternative implementations) and <literal>#clear</literal>:
111 <literal>#include</literal> will include the given file, unless the filename
112 ends in a slash, then the whole directory is included.
113 <literal>#clear</literal> is used to erase a part of the configuration tree. The
114 specified element and all its descendants are erased.
115 (Note that these lines also need to end with a semicolon.)</para>
116
117 <para>The #clear command is the only way to delete a list or a complete scope.
118 Reopening a scope or the ::-style described below will <emphasis>not</emphasis>
119 override previously written entries. Only options can be overridden by addressing a new
120 value to it - lists and scopes can't be overridden, only cleared.</para>
121
122 <para>All of the APT tools take a -o option which allows an arbitrary configuration
123 directive to be specified on the command line. The syntax is a full option
124 name (<literal>APT::Get::Assume-Yes</literal> for instance) followed by an equals
125 sign then the new value of the option. Lists can be appended too by adding
126 a trailing :: to the list name. (As you might suspect: The scope syntax can't be used
127 on the command line.)</para>
128
129 <para>Note that you can use :: only for appending one item per line to a list and
130 that you should not use it in combination with the scope syntax.
131 (The scope syntax implicit insert ::) Using both syntaxes together will trigger a bug
132 which some users unfortunately relay on: An option with the unusual name "<literal>::</literal>"
133 which acts like every other option with a name. These introduces many problems
134 including that a user who writes multiple lines in this <emphasis>wrong</emphasis> syntax in
135 the hope to append to a list will gain the opposite as only the last assignment for this option
136 "<literal>::</literal>" will be used. Upcoming APT versions will raise errors and
137 will stop working if they encounter this misuse, so please correct such statements now
138 as long as APT doesn't complain explicit about them.</para>
139 </refsect1>
140
141 <refsect1><title>The APT Group</title>
142 <para>This group of options controls general APT behavior as well as holding the
143 options for all of the tools.</para>
144
145 <variablelist>
146 <varlistentry><term>Architecture</term>
147 <listitem><para>System Architecture; sets the architecture to use when fetching files and
148 parsing package lists. The internal default is the architecture apt was
149 compiled for.</para></listitem>
150 </varlistentry>
151
152 <varlistentry><term>Default-Release</term>
153 <listitem><para>Default release to install packages from if more than one
154 version available. Contains release name, codename or release version. Examples: 'stable', 'testing',
155 'unstable', '&stable-codename;', '&testing-codename;', '4.0', '5.0*'. See also &apt-preferences;.</para></listitem>
156 </varlistentry>
157
158 <varlistentry><term>Ignore-Hold</term>
159 <listitem><para>Ignore Held packages; This global option causes the problem resolver to
160 ignore held packages in its decision making.</para></listitem>
161 </varlistentry>
162
163 <varlistentry><term>Clean-Installed</term>
164 <listitem><para>Defaults to on. When turned on the autoclean feature will remove any packages
165 which can no longer be downloaded from the cache. If turned off then
166 packages that are locally installed are also excluded from cleaning - but
167 note that APT provides no direct means to reinstall them.</para></listitem>
168 </varlistentry>
169
170 <varlistentry><term>Immediate-Configure</term>
171 <listitem><para>Defaults to on which will cause APT to install essential and important packages
172 as fast as possible in the install/upgrade operation. This is done to limit the effect of a failing
173 &dpkg; call: If this option is disabled APT does treat an important package in the same way as
174 an extra package: Between the unpacking of the important package A and his configuration can then
175 be many other unpack or configuration calls, e.g. for package B which has no relation to A, but
176 causes the dpkg call to fail (e.g. because maintainer script of package B generates an error) which results
177 in a system state in which package A is unpacked but unconfigured - each package depending on A is now no
178 longer guaranteed to work as their dependency on A is not longer satisfied. The immediate configuration marker
179 is also applied to all dependencies which can generate a problem if the dependencies e.g. form a circle
180 as a dependency with the immediate flag is comparable with a Pre-Dependency. So in theory it is possible
181 that APT encounters a situation in which it is unable to perform immediate configuration, errors out and
182 refers to this option so the user can deactivate the immediate configuration temporarily to be able to perform
183 an install/upgrade again. Note the use of the word "theory" here as this problem was only encountered by now
184 in real world a few times in non-stable distribution versions and was caused by wrong dependencies of the package
185 in question or by a system in an already broken state, so you should not blindly disable this option as
186 the mentioned scenario above is not the only problem immediate configuration can help to prevent in the first place.
187 Before a big operation like <literal>dist-upgrade</literal> is run with this option disabled it should be tried to
188 explicitly <literal>install</literal> the package APT is unable to configure immediately, but please make sure to
189 report your problem also to your distribution and to the APT team with the buglink below so they can work on
190 improving or correcting the upgrade process.</para></listitem>
191 </varlistentry>
192
193 <varlistentry><term>Force-LoopBreak</term>
194 <listitem><para>Never Enable this option unless you -really- know what you are doing. It
195 permits APT to temporarily remove an essential package to break a
196 Conflicts/Conflicts or Conflicts/Pre-Depend loop between two essential
197 packages. SUCH A LOOP SHOULD NEVER EXIST AND IS A GRAVE BUG. This option
198 will work if the essential packages are not tar, gzip, libc, dpkg, bash or
199 anything that those packages depend on.</para></listitem>
200 </varlistentry>
201
202 <varlistentry><term>Cache-Start, Cache-Grow and Cache-Limit</term>
203 <listitem><para>APT uses since version 0.7.26 a resizable memory mapped cache file to store the 'available'
204 information. <literal>Cache-Start</literal> acts as a hint to which size the Cache will grow
205 and is therefore the amount of memory APT will request at startup. The default value is
206 20971520 bytes (~20 MB). Note that these amount of space need to be available for APT
207 otherwise it will likely fail ungracefully, so for memory restricted devices these value should
208 be lowered while on systems with a lot of configured sources this might be increased.
209 <literal>Cache-Grow</literal> defines in byte with the default of 1048576 (~1 MB) how much
210 the Cache size will be increased in the event the space defined by <literal>Cache-Start</literal>
211 is not enough. These value will be applied again and again until either the cache is big
212 enough to store all information or the size of the cache reaches the <literal>Cache-Limit</literal>.
213 The default of <literal>Cache-Limit</literal> is 0 which stands for no limit.
214 If <literal>Cache-Grow</literal> is set to 0 the automatic grow of the cache is disabled.
215 </para></listitem>
216 </varlistentry>
217
218 <varlistentry><term>Build-Essential</term>
219 <listitem><para>Defines which package(s) are considered essential build dependencies.</para></listitem>
220 </varlistentry>
221
222 <varlistentry><term>Get</term>
223 <listitem><para>The Get subsection controls the &apt-get; tool, please see its
224 documentation for more information about the options here.</para></listitem>
225 </varlistentry>
226
227 <varlistentry><term>Cache</term>
228 <listitem><para>The Cache subsection controls the &apt-cache; tool, please see its
229 documentation for more information about the options here.</para></listitem>
230 </varlistentry>
231
232 <varlistentry><term>CDROM</term>
233 <listitem><para>The CDROM subsection controls the &apt-cdrom; tool, please see its
234 documentation for more information about the options here.</para></listitem>
235 </varlistentry>
236 </variablelist>
237 </refsect1>
238
239 <refsect1><title>The Acquire Group</title>
240 <para>The <literal>Acquire</literal> group of options controls the download of packages
241 and the URI handlers.
242
243 <variablelist>
244 <varlistentry><term>Check-Valid-Until</term>
245 <listitem><para>Security related option defaulting to true as an
246 expiring validation for a Release file prevents longtime replay attacks
247 and can e.g. also help users to identify no longer updated mirrors -
248 but the feature depends on the correctness of the time on the user system.
249 Archive maintainers are encouraged to create Release files with the
250 <literal>Valid-Until</literal> header, but if they don't or a stricter value
251 is volitional the following <literal>Max-ValidTime</literal> option can be used.
252 </para></listitem>
253 </varlistentry>
254
255 <varlistentry><term>Max-ValidTime</term>
256 <listitem><para>Seconds the Release file should be considered valid after
257 it was created. The default is "for ever" (0) if the Release file of the
258 archive doesn't include a <literal>Valid-Until</literal> header.
259 If it does then this date is the default. The date from the Release file or
260 the date specified by the creation time of the Release file
261 (<literal>Date</literal> header) plus the seconds specified with this
262 options are used to check if the validation of a file has expired by using
263 the earlier date of the two. Archive specific settings can be made by
264 appending the label of the archive to the option name.
265 </para></listitem>
266 </varlistentry>
267
268 <varlistentry><term>PDiffs</term>
269 <listitem><para>Try to download deltas called <literal>PDiffs</literal> for
270 Packages or Sources files instead of downloading whole ones. True
271 by default.</para>
272 <para>Two sub-options to limit the use of PDiffs are also available:
273 With <literal>FileLimit</literal> can be specified how many PDiff files
274 are downloaded at most to patch a file. <literal>SizeLimit</literal>
275 on the other hand is the maximum precentage of the size of all patches
276 compared to the size of the targeted file. If one of these limits is
277 exceeded the complete file is downloaded instead of the patches.
278 </para></listitem>
279 </varlistentry>
280
281 <varlistentry><term>Queue-Mode</term>
282 <listitem><para>Queuing mode; <literal>Queue-Mode</literal> can be one of <literal>host</literal> or
283 <literal>access</literal> which determines how APT parallelizes outgoing
284 connections. <literal>host</literal> means that one connection per target host
285 will be opened, <literal>access</literal> means that one connection per URI type
286 will be opened.</para></listitem>
287 </varlistentry>
288
289 <varlistentry><term>Retries</term>
290 <listitem><para>Number of retries to perform. If this is non-zero APT will retry failed
291 files the given number of times.</para></listitem>
292 </varlistentry>
293
294 <varlistentry><term>Source-Symlinks</term>
295 <listitem><para>Use symlinks for source archives. If set to true then source archives will
296 be symlinked when possible instead of copying. True is the default.</para></listitem>
297 </varlistentry>
298
299 <varlistentry><term>http</term>
300 <listitem><para>HTTP URIs; http::Proxy is the default http proxy to use. It is in the
301 standard form of <literal>http://[[user][:pass]@]host[:port]/</literal>. Per
302 host proxies can also be specified by using the form
303 <literal>http::Proxy::&lt;host&gt;</literal> with the special keyword <literal>DIRECT</literal>
304 meaning to use no proxies. If no one of the above settings is specified,
305 <envar>http_proxy</envar> environment variable
306 will be used.</para>
307
308 <para>Three settings are provided for cache control with HTTP/1.1 compliant
309 proxy caches. <literal>No-Cache</literal> tells the proxy to not use its cached
310 response under any circumstances, <literal>Max-Age</literal> is sent only for
311 index files and tells the cache to refresh its object if it is older than
312 the given number of seconds. Debian updates its index files daily so the
313 default is 1 day. <literal>No-Store</literal> specifies that the cache should never
314 store this request, it is only set for archive files. This may be useful
315 to prevent polluting a proxy cache with very large .deb files. Note:
316 Squid 2.0.2 does not support any of these options.</para>
317
318 <para>The option <literal>timeout</literal> sets the timeout timer used by the method,
319 this applies to all things including connection timeout and data timeout.</para>
320
321 <para>One setting is provided to control the pipeline depth in cases where the
322 remote server is not RFC conforming or buggy (such as Squid 2.0.2).
323 <literal>Acquire::http::Pipeline-Depth</literal> can be a value from 0 to 5
324 indicating how many outstanding requests APT should send. A value of
325 zero MUST be specified if the remote host does not properly linger
326 on TCP connections - otherwise data corruption will occur. Hosts which
327 require this are in violation of RFC 2068.</para>
328
329 <para>The used bandwidth can be limited with <literal>Acquire::http::Dl-Limit</literal>
330 which accepts integer values in kilobyte. The default value is 0 which deactivates
331 the limit and tries uses as much as possible of the bandwidth (Note that this option implicit
332 deactivates the download from multiple servers at the same time.)</para>
333
334 <para><literal>Acquire::http::User-Agent</literal> can be used to set a different
335 User-Agent for the http download method as some proxies allow access for clients
336 only if the client uses a known identifier.</para>
337 </listitem>
338 </varlistentry>
339
340 <varlistentry><term>https</term>
341 <listitem><para>HTTPS URIs. Cache-control, Timeout, AllowRedirect, Dl-Limit and
342 proxy options are the same as for <literal>http</literal> method and will also
343 default to the options from the <literal>http</literal> method if they are not
344 explicitly set for https. <literal>Pipeline-Depth</literal> option is not
345 supported yet.</para>
346
347 <para><literal>CaInfo</literal> suboption specifies place of file that
348 holds info about trusted certificates.
349 <literal>&lt;host&gt;::CaInfo</literal> is corresponding per-host option.
350 <literal>Verify-Peer</literal> boolean suboption determines whether verify
351 server's host certificate against trusted certificates or not.
352 <literal>&lt;host&gt;::Verify-Peer</literal> is corresponding per-host option.
353 <literal>Verify-Host</literal> boolean suboption determines whether verify
354 server's hostname or not.
355 <literal>&lt;host&gt;::Verify-Host</literal> is corresponding per-host option.
356 <literal>SslCert</literal> determines what certificate to use for client
357 authentication. <literal>&lt;host&gt;::SslCert</literal> is corresponding per-host option.
358 <literal>SslKey</literal> determines what private key to use for client
359 authentication. <literal>&lt;host&gt;::SslKey</literal> is corresponding per-host option.
360 <literal>SslForceVersion</literal> overrides default SSL version to use.
361 Can contain 'TLSv1' or 'SSLv3' string.
362 <literal>&lt;host&gt;::SslForceVersion</literal> is corresponding per-host option.
363 </para></listitem></varlistentry>
364
365 <varlistentry><term>ftp</term>
366 <listitem><para>FTP URIs; ftp::Proxy is the default ftp proxy to use. It is in the
367 standard form of <literal>ftp://[[user][:pass]@]host[:port]/</literal>. Per
368 host proxies can also be specified by using the form
369 <literal>ftp::Proxy::&lt;host&gt;</literal> with the special keyword <literal>DIRECT</literal>
370 meaning to use no proxies. If no one of the above settings is specified,
371 <envar>ftp_proxy</envar> environment variable
372 will be used. To use a ftp
373 proxy you will have to set the <literal>ftp::ProxyLogin</literal> script in the
374 configuration file. This entry specifies the commands to send to tell
375 the proxy server what to connect to. Please see
376 &configureindex; for an example of
377 how to do this. The substitution variables available are
378 <literal>$(PROXY_USER)</literal> <literal>$(PROXY_PASS)</literal> <literal>$(SITE_USER)</literal>
379 <literal>$(SITE_PASS)</literal> <literal>$(SITE)</literal> and <literal>$(SITE_PORT)</literal>
380 Each is taken from it's respective URI component.</para>
381
382 <para>The option <literal>timeout</literal> sets the timeout timer used by the method,
383 this applies to all things including connection timeout and data timeout.</para>
384
385 <para>Several settings are provided to control passive mode. Generally it is
386 safe to leave passive mode on, it works in nearly every environment.
387 However some situations require that passive mode be disabled and port
388 mode ftp used instead. This can be done globally, for connections that
389 go through a proxy or for a specific host (See the sample config file
390 for examples).</para>
391
392 <para>It is possible to proxy FTP over HTTP by setting the <envar>ftp_proxy</envar>
393 environment variable to a http url - see the discussion of the http method
394 above for syntax. You cannot set this in the configuration file and it is
395 not recommended to use FTP over HTTP due to its low efficiency.</para>
396
397 <para>The setting <literal>ForceExtended</literal> controls the use of RFC2428
398 <literal>EPSV</literal> and <literal>EPRT</literal> commands. The default is false, which means
399 these commands are only used if the control connection is IPv6. Setting this
400 to true forces their use even on IPv4 connections. Note that most FTP servers
401 do not support RFC2428.</para></listitem>
402 </varlistentry>
403
404 <varlistentry><term>cdrom</term>
405 <listitem><para>CDROM URIs; the only setting for CDROM URIs is the mount point,
406 <literal>cdrom::Mount</literal> which must be the mount point for the CDROM drive
407 as specified in <filename>/etc/fstab</filename>. It is possible to provide
408 alternate mount and unmount commands if your mount point cannot be listed
409 in the fstab (such as an SMB mount and old mount packages). The syntax
410 is to put <literallayout>/cdrom/::Mount "foo";</literallayout> within
411 the cdrom block. It is important to have the trailing slash. Unmount
412 commands can be specified using UMount.</para></listitem>
413 </varlistentry>
414
415 <varlistentry><term>gpgv</term>
416 <listitem><para>GPGV URIs; the only option for GPGV URIs is the option to pass additional parameters to gpgv.
417 <literal>gpgv::Options</literal> Additional options passed to gpgv.
418 </para></listitem>
419 </varlistentry>
420
421 <varlistentry><term>CompressionTypes</term>
422 <listitem><para>List of compression types which are understood by the acquire methods.
423 Files like <filename>Packages</filename> can be available in various compression formats.
424 Per default the acquire methods can decompress <command>bzip2</command>, <command>lzma</command>
425 and <command>gzip</command> compressed files, with this setting more formats can be added
426 on the fly or the used method can be changed. The syntax for this is:
427 <synopsis>Acquire::CompressionTypes::<replaceable>FileExtension</replaceable> "<replaceable>Methodname</replaceable>";</synopsis>
428 </para><para>Also the <literal>Order</literal> subgroup can be used to define in which order
429 the acquire system will try to download the compressed files. The acquire system will try the first
430 and proceed with the next compression type in this list on error, so to prefer one over the other type
431 simple add the preferred type at first - not already added default types will be added at run time
432 to the end of the list, so e.g. <synopsis>Acquire::CompressionTypes::Order:: "gz";</synopsis> can
433 be used to prefer <command>gzip</command> compressed files over <command>bzip2</command> and <command>lzma</command>.
434 If <command>lzma</command> should be preferred over <command>gzip</command> and <command>bzip2</command> the
435 configure setting should look like this <synopsis>Acquire::CompressionTypes::Order { "lzma"; "gz"; };</synopsis>
436 It is not needed to add <literal>bz2</literal> explicit to the list as it will be added automatic.</para>
437 <para>Note that at run time the <literal>Dir::Bin::<replaceable>Methodname</replaceable></literal> will
438 be checked: If this setting exists the method will only be used if this file exists, e.g. for
439 the bzip2 method (the inbuilt) setting is <literallayout>Dir::Bin::bzip2 "/bin/bzip2";</literallayout>
440 Note also that list entries specified on the command line will be added at the end of the list
441 specified in the configuration files, but before the default entries. To prefer a type in this case
442 over the ones specified in in the configuration files you can set the option direct - not in list style.
443 This will not override the defined list, it will only prefix the list with this type.</para>
444 <para>While it is possible to add an empty compression type to the order list, but APT in its current
445 version doesn't understand it correctly and will display many warnings about not downloaded files -
446 these warnings are most of the time false negatives. Future versions will maybe include a way to
447 really prefer uncompressed files to support the usage of local mirrors.</para></listitem>
448 </varlistentry>
449
450 <varlistentry><term>Languages</term>
451 <listitem><para>The Languages subsection controls which <filename>Translation</filename> files are downloaded
452 and in which order APT tries to display the Description-Translations. APT will try to display the first
453 available Description in the Language which is listed at first. Languages can be defined with their
454 short or long Languagecodes. Note that not all archives provide <filename>Translation</filename>
455 files for every Language - especially the long Languagecodes are rare, so please
456 inform you which ones are available before you set here impossible values.</para>
457 <para>The default list includes "environment" and "en". "<literal>environment</literal>" has a special meaning here:
458 It will be replaced at runtime with the languagecodes extracted from the <literal>LC_MESSAGES</literal> environment variable.
459 It will also ensure that these codes are not included twice in the list. If <literal>LC_MESSAGES</literal>
460 is set to "C" only the <filename>Translation-en</filename> file (if available) will be used.
461 To force apt to use no Translation file use the setting <literal>Acquire::Languages=none</literal>. "<literal>none</literal>"
462 is another special meaning code which will stop the search for a fitting <filename>Translation</filename> file.
463 This can be used by the system administrator to let APT know that it should download also this files without
464 actually use them if the environment doesn't specify this languages. So the following example configuration will
465 result in the order "en, de" in an english and in "de, en" in a german localization. Note that "fr" is downloaded,
466 but not used if APT is not used in a french localization, in such an environment the order would be "fr, de, en".
467 <programlisting>Acquire::Languages { "environment"; "de"; "en"; "none"; "fr"; };</programlisting></para></listitem>
468 </varlistentry>
469
470 </variablelist>
471 </para>
472 </refsect1>
473
474 <refsect1><title>Directories</title>
475
476 <para>The <literal>Dir::State</literal> section has directories that pertain to local
477 state information. <literal>lists</literal> is the directory to place downloaded
478 package lists in and <literal>status</literal> is the name of the dpkg status file.
479 <literal>preferences</literal> is the name of the APT preferences file.
480 <literal>Dir::State</literal> contains the default directory to prefix on all sub
481 items if they do not start with <filename>/</filename> or <filename>./</filename>.</para>
482
483 <para><literal>Dir::Cache</literal> contains locations pertaining to local cache
484 information, such as the two package caches <literal>srcpkgcache</literal> and
485 <literal>pkgcache</literal> as well as the location to place downloaded archives,
486 <literal>Dir::Cache::archives</literal>. Generation of caches can be turned off
487 by setting their names to be blank. This will slow down startup but
488 save disk space. It is probably preferred to turn off the pkgcache rather
489 than the srcpkgcache. Like <literal>Dir::State</literal> the default
490 directory is contained in <literal>Dir::Cache</literal></para>
491
492 <para><literal>Dir::Etc</literal> contains the location of configuration files,
493 <literal>sourcelist</literal> gives the location of the sourcelist and
494 <literal>main</literal> is the default configuration file (setting has no effect,
495 unless it is done from the config file specified by
496 <envar>APT_CONFIG</envar>).</para>
497
498 <para>The <literal>Dir::Parts</literal> setting reads in all the config fragments in
499 lexical order from the directory specified. After this is done then the
500 main config file is loaded.</para>
501
502 <para>Binary programs are pointed to by <literal>Dir::Bin</literal>. <literal>Dir::Bin::Methods</literal>
503 specifies the location of the method handlers and <literal>gzip</literal>,
504 <literal>bzip2</literal>, <literal>lzma</literal>,
505 <literal>dpkg</literal>, <literal>apt-get</literal> <literal>dpkg-source</literal>
506 <literal>dpkg-buildpackage</literal> and <literal>apt-cache</literal> specify the location
507 of the respective programs.</para>
508
509 <para>
510 The configuration item <literal>RootDir</literal> has a special
511 meaning. If set, all paths in <literal>Dir::</literal> will be
512 relative to <literal>RootDir</literal>, <emphasis>even paths that
513 are specified absolutely</emphasis>. So, for instance, if
514 <literal>RootDir</literal> is set to
515 <filename>/tmp/staging</filename> and
516 <literal>Dir::State::status</literal> is set to
517 <filename>/var/lib/dpkg/status</filename>, then the status file
518 will be looked up in
519 <filename>/tmp/staging/var/lib/dpkg/status</filename>.
520 </para>
521
522 <para>
523 The <literal>Ignore-Files-Silently</literal> list can be used to specify
524 which files APT should silently ignore while parsing the files in the
525 fragment directories. Per default a file which end with <literal>.disabled</literal>,
526 <literal>~</literal>, <literal>.bak</literal> or <literal>.dpkg-[a-z]+</literal>
527 is silently ignored. As seen in the last default value these patterns can use regular
528 expression syntax.
529 </para>
530 </refsect1>
531
532 <refsect1><title>APT in DSelect</title>
533 <para>
534 When APT is used as a &dselect; method several configuration directives
535 control the default behaviour. These are in the <literal>DSelect</literal> section.</para>
536
537 <variablelist>
538 <varlistentry><term>Clean</term>
539 <listitem><para>Cache Clean mode; this value may be one of always, prompt, auto,
540 pre-auto and never. always and prompt will remove all packages from
541 the cache after upgrading, prompt (the default) does so conditionally.
542 auto removes only those packages which are no longer downloadable
543 (replaced with a new version for instance). pre-auto performs this
544 action before downloading new packages.</para></listitem>
545 </varlistentry>
546
547 <varlistentry><term>options</term>
548 <listitem><para>The contents of this variable is passed to &apt-get; as command line
549 options when it is run for the install phase.</para></listitem>
550 </varlistentry>
551
552 <varlistentry><term>Updateoptions</term>
553 <listitem><para>The contents of this variable is passed to &apt-get; as command line
554 options when it is run for the update phase.</para></listitem>
555 </varlistentry>
556
557 <varlistentry><term>PromptAfterUpdate</term>
558 <listitem><para>If true the [U]pdate operation in &dselect; will always prompt to continue.
559 The default is to prompt only on error.</para></listitem>
560 </varlistentry>
561 </variablelist>
562 </refsect1>
563
564 <refsect1><title>How APT calls dpkg</title>
565 <para>Several configuration directives control how APT invokes &dpkg;. These are
566 in the <literal>DPkg</literal> section.</para>
567
568 <variablelist>
569 <varlistentry><term>options</term>
570 <listitem><para>This is a list of options to pass to dpkg. The options must be specified
571 using the list notation and each list item is passed as a single argument
572 to &dpkg;.</para></listitem>
573 </varlistentry>
574
575 <varlistentry><term>Pre-Invoke</term><term>Post-Invoke</term>
576 <listitem><para>This is a list of shell commands to run before/after invoking &dpkg;.
577 Like <literal>options</literal> this must be specified in list notation. The
578 commands are invoked in order using <filename>/bin/sh</filename>, should any
579 fail APT will abort.</para></listitem>
580 </varlistentry>
581
582 <varlistentry><term>Pre-Install-Pkgs</term>
583 <listitem><para>This is a list of shell commands to run before invoking dpkg. Like
584 <literal>options</literal> this must be specified in list notation. The commands
585 are invoked in order using <filename>/bin/sh</filename>, should any fail APT
586 will abort. APT will pass to the commands on standard input the
587 filenames of all .deb files it is going to install, one per line.</para>
588
589 <para>Version 2 of this protocol dumps more information, including the
590 protocol version, the APT configuration space and the packages, files
591 and versions being changed. Version 2 is enabled by setting
592 <literal>DPkg::Tools::options::cmd::Version</literal> to 2. <literal>cmd</literal> is a
593 command given to <literal>Pre-Install-Pkgs</literal>.</para></listitem>
594 </varlistentry>
595
596 <varlistentry><term>Run-Directory</term>
597 <listitem><para>APT chdirs to this directory before invoking dpkg, the default is
598 <filename>/</filename>.</para></listitem>
599 </varlistentry>
600
601 <varlistentry><term>Build-options</term>
602 <listitem><para>These options are passed to &dpkg-buildpackage; when compiling packages,
603 the default is to disable signing and produce all binaries.</para></listitem>
604 </varlistentry>
605 </variablelist>
606
607 <refsect2><title>dpkg trigger usage (and related options)</title>
608 <para>APT can call dpkg in a way so it can make aggressive use of triggers over
609 multiply calls of dpkg. Without further options dpkg will use triggers only in between his
610 own run. Activating these options can therefore decrease the time needed to perform the
611 install / upgrade. Note that it is intended to activate these options per default in the
612 future, but as it changes the way APT calling dpkg drastically it needs a lot more testing.
613 <emphasis>These options are therefore currently experimental and should not be used in
614 productive environments.</emphasis> Also it breaks the progress reporting so all frontends will
615 currently stay around half (or more) of the time in the 100% state while it actually configures
616 all packages.</para>
617 <para>Note that it is not guaranteed that APT will support these options or that these options will
618 not cause (big) trouble in the future. If you have understand the current risks and problems with
619 these options, but are brave enough to help testing them create a new configuration file and test a
620 combination of options. Please report any bugs, problems and improvements you encounter and make sure
621 to note which options you have used in your reports. Asking dpkg for help could also be useful for
622 debugging proposes, see e.g. <command>dpkg --audit</command>. A defensive option combination would be
623 <literallayout>DPkg::NoTriggers "true";
624 PackageManager::Configure "smart";
625 DPkg::ConfigurePending "true";
626 DPkg::TriggersPending "true";</literallayout></para>
627
628 <variablelist>
629 <varlistentry><term>DPkg::NoTriggers</term>
630 <listitem><para>Add the no triggers flag to all dpkg calls (except the ConfigurePending call).
631 See &dpkg; if you are interested in what this actually means. In short: dpkg will not run the
632 triggers when this flag is present unless it is explicitly called to do so in an extra call.
633 Note that this option exists (undocumented) also in older apt versions with a slightly different
634 meaning: Previously these option only append --no-triggers to the configure calls to dpkg -
635 now apt will add these flag also to the unpack and remove calls.</para></listitem>
636 </varlistentry>
637 <varlistentry><term>PackageManager::Configure</term>
638 <listitem><para>Valid values are "<literal>all</literal>", "<literal>smart</literal>" and "<literal>no</literal>".
639 "<literal>all</literal>" is the default value and causes APT to configure all packages explicit.
640 The "<literal>smart</literal>" way is it to configure only packages which need to be configured before
641 another package can be unpacked (Pre-Depends) and let the rest configure by dpkg with a call generated
642 by the next option. "<literal>no</literal>" on the other hand will not configure anything and totally
643 rely on dpkg for configuration (which will at the moment fail if a Pre-Depends is encountered).
644 Setting this option to another than the all value will implicitly activate also the next option per
645 default as otherwise the system could end in an unconfigured status which could be unbootable!
646 </para></listitem>
647 </varlistentry>
648 <varlistentry><term>DPkg::ConfigurePending</term>
649 <listitem><para>If this option is set apt will call <command>dpkg --configure --pending</command>
650 to let dpkg handle all required configurations and triggers. This option is activated automatic
651 per default if the previous option is not set to <literal>all</literal>, but deactivating could be useful
652 if you want to run APT multiple times in a row - e.g. in an installer. In these sceneries you could
653 deactivate this option in all but the last run.</para></listitem>
654 </varlistentry>
655 <varlistentry><term>DPkg::TriggersPending</term>
656 <listitem><para>Useful for <literal>smart</literal> configuration as a package which has pending
657 triggers is not considered as <literal>installed</literal> and dpkg treats them as <literal>unpacked</literal>
658 currently which is a dealbreaker for Pre-Dependencies (see debbugs #526774). Note that this will
659 process all triggers, not only the triggers needed to configure this package.</para></listitem>
660 </varlistentry>
661 <varlistentry><term>PackageManager::UnpackAll</term>
662 <listitem><para>As the configuration can be deferred to be done at the end by dpkg it can be
663 tried to order the unpack series only by critical needs, e.g. by Pre-Depends. Default is true
664 and therefore the "old" method of ordering in various steps by everything. While both method
665 were present in earlier APT versions the <literal>OrderCritical</literal> method was unused, so
666 this method is very experimental and needs further improvements before becoming really useful.
667 </para></listitem>
668 </varlistentry>
669 <varlistentry><term>OrderList::Score::Immediate</term>
670 <listitem><para>Essential packages (and there dependencies) should be configured immediately
671 after unpacking. It will be a good idea to do this quite early in the upgrade process as these
672 these configure calls require currently also <literal>DPkg::TriggersPending</literal> which
673 will run quite a few triggers (which maybe not needed). Essentials get per default a high score
674 but the immediate flag is relatively low (a package which has a Pre-Depends is higher rated).
675 These option and the others in the same group can be used to change the scoring. The following
676 example shows the settings with there default values.
677 <literallayout>OrderList::Score {
678 Delete 500;
679 Essential 200;
680 Immediate 10;
681 PreDepends 50;
682 };</literallayout>
683 </para></listitem>
684 </varlistentry>
685 </variablelist>
686 </refsect2>
687 </refsect1>
688
689 <refsect1>
690 <title>Periodic and Archives options</title>
691 <para><literal>APT::Periodic</literal> and <literal>APT::Archives</literal>
692 groups of options configure behavior of apt periodic updates, which is
693 done by <literal>/etc/cron.daily/apt</literal> script. See header of
694 this script for the brief documentation of these options.
695 </para>
696 </refsect1>
697
698 <refsect1>
699 <title>Debug options</title>
700 <para>
701 Enabling options in the <literal>Debug::</literal> section will
702 cause debugging information to be sent to the standard error
703 stream of the program utilizing the <literal>apt</literal>
704 libraries, or enable special program modes that are primarily
705 useful for debugging the behavior of <literal>apt</literal>.
706 Most of these options are not interesting to a normal user, but a
707 few may be:
708
709 <itemizedlist>
710 <listitem>
711 <para>
712 <literal>Debug::pkgProblemResolver</literal> enables output
713 about the decisions made by
714 <literal>dist-upgrade, upgrade, install, remove, purge</literal>.
715 </para>
716 </listitem>
717
718 <listitem>
719 <para>
720 <literal>Debug::NoLocking</literal> disables all file
721 locking. This can be used to run some operations (for
722 instance, <literal>apt-get -s install</literal>) as a
723 non-root user.
724 </para>
725 </listitem>
726
727 <listitem>
728 <para>
729 <literal>Debug::pkgDPkgPM</literal> prints out the actual
730 command line each time that <literal>apt</literal> invokes
731 &dpkg;.
732 </para>
733 </listitem>
734
735 <listitem>
736 <para>
737 <literal>Debug::IdentCdrom</literal> disables the inclusion
738 of statfs data in CDROM IDs. <!-- TODO: provide a
739 motivating example, except I haven't a clue why you'd want
740 to do this. -->
741 </para>
742 </listitem>
743 </itemizedlist>
744 </para>
745
746 <para>
747 A full list of debugging options to apt follows.
748 </para>
749
750 <variablelist>
751 <varlistentry>
752 <term><literal>Debug::Acquire::cdrom</literal></term>
753
754 <listitem>
755 <para>
756 Print information related to accessing
757 <literal>cdrom://</literal> sources.
758 </para>
759 </listitem>
760 </varlistentry>
761
762 <varlistentry>
763 <term><literal>Debug::Acquire::ftp</literal></term>
764
765 <listitem>
766 <para>
767 Print information related to downloading packages using
768 FTP.
769 </para>
770 </listitem>
771 </varlistentry>
772
773 <varlistentry>
774 <term><literal>Debug::Acquire::http</literal></term>
775
776 <listitem>
777 <para>
778 Print information related to downloading packages using
779 HTTP.
780 </para>
781 </listitem>
782 </varlistentry>
783
784 <varlistentry>
785 <term><literal>Debug::Acquire::https</literal></term>
786
787 <listitem>
788 <para>
789 Print information related to downloading packages using
790 HTTPS.
791 </para>
792 </listitem>
793 </varlistentry>
794
795 <varlistentry>
796 <term><literal>Debug::Acquire::gpgv</literal></term>
797
798 <listitem>
799 <para>
800 Print information related to verifying cryptographic
801 signatures using <literal>gpg</literal>.
802 </para>
803 </listitem>
804 </varlistentry>
805
806 <varlistentry>
807 <term><literal>Debug::aptcdrom</literal></term>
808
809 <listitem>
810 <para>
811 Output information about the process of accessing
812 collections of packages stored on CD-ROMs.
813 </para>
814 </listitem>
815 </varlistentry>
816
817 <varlistentry>
818 <term><literal>Debug::BuildDeps</literal></term>
819 <listitem>
820 <para>
821 Describes the process of resolving build-dependencies in
822 &apt-get;.
823 </para>
824 </listitem>
825 </varlistentry>
826
827 <varlistentry>
828 <term><literal>Debug::Hashes</literal></term>
829 <listitem>
830 <para>
831 Output each cryptographic hash that is generated by the
832 <literal>apt</literal> libraries.
833 </para>
834 </listitem>
835 </varlistentry>
836
837 <varlistentry>
838 <term><literal>Debug::IdentCDROM</literal></term>
839 <listitem>
840 <para>
841 Do not include information from <literal>statfs</literal>,
842 namely the number of used and free blocks on the CD-ROM
843 filesystem, when generating an ID for a CD-ROM.
844 </para>
845 </listitem>
846 </varlistentry>
847
848 <varlistentry>
849 <term><literal>Debug::NoLocking</literal></term>
850 <listitem>
851 <para>
852 Disable all file locking. For instance, this will allow
853 two instances of <quote><literal>apt-get
854 update</literal></quote> to run at the same time.
855 </para>
856 </listitem>
857 </varlistentry>
858
859 <varlistentry>
860 <term><literal>Debug::pkgAcquire</literal></term>
861
862 <listitem>
863 <para>
864 Log when items are added to or removed from the global
865 download queue.
866 </para>
867 </listitem>
868 </varlistentry>
869
870 <varlistentry>
871 <term><literal>Debug::pkgAcquire::Auth</literal></term>
872 <listitem>
873 <para>
874 Output status messages and errors related to verifying
875 checksums and cryptographic signatures of downloaded files.
876 </para>
877 </listitem>
878 </varlistentry>
879
880 <varlistentry>
881 <term><literal>Debug::pkgAcquire::Diffs</literal></term>
882 <listitem>
883 <para>
884 Output information about downloading and applying package
885 index list diffs, and errors relating to package index list
886 diffs.
887 </para>
888 </listitem>
889 </varlistentry>
890
891 <varlistentry>
892 <term><literal>Debug::pkgAcquire::RRed</literal></term>
893
894 <listitem>
895 <para>
896 Output information related to patching apt package lists
897 when downloading index diffs instead of full indices.
898 </para>
899 </listitem>
900 </varlistentry>
901
902 <varlistentry>
903 <term><literal>Debug::pkgAcquire::Worker</literal></term>
904
905 <listitem>
906 <para>
907 Log all interactions with the sub-processes that actually
908 perform downloads.
909 </para>
910 </listitem>
911 </varlistentry>
912
913 <varlistentry>
914 <term><literal>Debug::pkgAutoRemove</literal></term>
915
916 <listitem>
917 <para>
918 Log events related to the automatically-installed status of
919 packages and to the removal of unused packages.
920 </para>
921 </listitem>
922 </varlistentry>
923
924 <varlistentry>
925 <term><literal>Debug::pkgDepCache::AutoInstall</literal></term>
926 <listitem>
927 <para>
928 Generate debug messages describing which packages are being
929 automatically installed to resolve dependencies. This
930 corresponds to the initial auto-install pass performed in,
931 e.g., <literal>apt-get install</literal>, and not to the
932 full <literal>apt</literal> dependency resolver; see
933 <literal>Debug::pkgProblemResolver</literal> for that.
934 </para>
935 </listitem>
936 </varlistentry>
937
938 <varlistentry>
939 <term><literal>Debug::pkgDepCache::Marker</literal></term>
940 <listitem>
941 <para>
942 Generate debug messages describing which package is marked
943 as keep/install/remove while the ProblemResolver does his work.
944 Each addition or deletion may trigger additional actions;
945 they are shown indented two additional space under the original entry.
946 The format for each line is <literal>MarkKeep</literal>,
947 <literal>MarkDelete</literal> or <literal>MarkInstall</literal> followed by
948 <literal>package-name &lt;a.b.c -&gt; d.e.f | x.y.z&gt; (section)</literal>
949 where <literal>a.b.c</literal> is the current version of the package,
950 <literal>d.e.f</literal> is the version considered for installation and
951 <literal>x.y.z</literal> is a newer version, but not considered for installation
952 (because of a low pin score). The later two can be omitted if there is none or if
953 it is the same version as the installed.
954 <literal>section</literal> is the name of the section the package appears in.
955 </para>
956 </listitem>
957 </varlistentry>
958
959 <!-- Question: why doesn't this do anything? The code says it should. -->
960 <varlistentry>
961 <term><literal>Debug::pkgInitConfig</literal></term>
962 <listitem>
963 <para>
964 Dump the default configuration to standard error on
965 startup.
966 </para>
967 </listitem>
968 </varlistentry>
969
970 <varlistentry>
971 <term><literal>Debug::pkgDPkgPM</literal></term>
972 <listitem>
973 <para>
974 When invoking &dpkg;, output the precise command line with
975 which it is being invoked, with arguments separated by a
976 single space character.
977 </para>
978 </listitem>
979 </varlistentry>
980
981 <varlistentry>
982 <term><literal>Debug::pkgDPkgProgressReporting</literal></term>
983 <listitem>
984 <para>
985 Output all the data received from &dpkg; on the status file
986 descriptor and any errors encountered while parsing it.
987 </para>
988 </listitem>
989 </varlistentry>
990
991 <varlistentry>
992 <term><literal>Debug::pkgOrderList</literal></term>
993
994 <listitem>
995 <para>
996 Generate a trace of the algorithm that decides the order in
997 which <literal>apt</literal> should pass packages to
998 &dpkg;.
999 </para>
1000 </listitem>
1001 </varlistentry>
1002
1003 <varlistentry>
1004 <term><literal>Debug::pkgPackageManager</literal></term>
1005
1006 <listitem>
1007 <para>
1008 Output status messages tracing the steps performed when
1009 invoking &dpkg;.
1010 </para>
1011 </listitem>
1012 </varlistentry>
1013
1014 <varlistentry>
1015 <term><literal>Debug::pkgPolicy</literal></term>
1016
1017 <listitem>
1018 <para>
1019 Output the priority of each package list on startup.
1020 </para>
1021 </listitem>
1022 </varlistentry>
1023
1024 <varlistentry>
1025 <term><literal>Debug::pkgProblemResolver</literal></term>
1026
1027 <listitem>
1028 <para>
1029 Trace the execution of the dependency resolver (this
1030 applies only to what happens when a complex dependency
1031 problem is encountered).
1032 </para>
1033 </listitem>
1034 </varlistentry>
1035
1036 <varlistentry>
1037 <term><literal>Debug::pkgProblemResolver::ShowScores</literal></term>
1038 <listitem>
1039 <para>
1040 Display a list of all installed packages with their calculated score
1041 used by the pkgProblemResolver. The description of the package
1042 is the same as described in <literal>Debug::pkgDepCache::Marker</literal>
1043 </para>
1044 </listitem>
1045 </varlistentry>
1046
1047 <varlistentry>
1048 <term><literal>Debug::sourceList</literal></term>
1049
1050 <listitem>
1051 <para>
1052 Print information about the vendors read from
1053 <filename>/etc/apt/vendors.list</filename>.
1054 </para>
1055 </listitem>
1056 </varlistentry>
1057
1058 <!-- 2009/07/11 Currently used nowhere. The corresponding code
1059 is commented.
1060 <varlistentry>
1061 <term><literal>Debug::Vendor</literal></term>
1062
1063 <listitem>
1064 <para>
1065 Print information about each vendor.
1066 </para>
1067 </listitem>
1068 </varlistentry>
1069 -->
1070
1071 </variablelist>
1072 </refsect1>
1073
1074 <refsect1><title>Examples</title>
1075 <para>&configureindex; is a
1076 configuration file showing example values for all possible
1077 options.</para>
1078 </refsect1>
1079
1080 <refsect1><title>Files</title>
1081 <variablelist>
1082 &file-aptconf;
1083 </variablelist>
1084 </refsect1>
1085
1086 <refsect1><title>See Also</title>
1087 <para>&apt-cache;, &apt-config;<!-- ? reading apt.conf -->, &apt-preferences;.</para>
1088 </refsect1>
1089
1090 &manbugs;
1091
1092 </refentry>
1093