1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
|
# Only the system administrator should modify this file, ordinary users
# should not have to change anything.
[Daemon]
# Should we log transactions to the database.
#
# default=true
TransactionLogging=true
# Use NetworkManager where available. If disabled, then NM state will be ignored.
#
# default=true
UseNetworkManager=true
# Use Connman where available. If disabled, then Connman state will be ignored.
#
# default=false
UseNetworkConnman=false
# If neither NetworkManager nor ConnMan is not available, then use the presence
# of default route to indicate a viable network connection.
# If disabled, and no NM or CM, then the network is assumed to be always online.
#
# default=true
UseNetworkHeuristic=true
# If we should use the estimated time value.
# This will be inaccurate where backends do not send proportional percentage
# changed signals, or when updates are not frequent enough.
# Estimated time will then only be used when the prediction accuracy is high
# enough and will not be set at the very start or end of a transaction.
#
# default=true
UseRemainingTimeEstimation=false
# Shut down the daemon after this many seconds idle. 0 means don't shutdown.
#
# default=300
ShutdownTimeout=300
# Unlock the backend after this many seconds idle.
#
# default=5
BackendShutdownTimeout=5
# Set the priority of the spawned backend to this priority.
# This ensures the process does not hog the system when performing actions.
#
# Values range from -20 (most favorable) to 19 (least favorable)
# A niceness value of 0 will not attempt to set any priority.
#
# default=0
BackendSpawnNiceValue=0
# Set the priority of the spawned backend to this priority for low priority tasks.
# This ensures the process does not hog the system when performing actions.
#
# Values range from -20 (most favorable) to 19 (least favorable)
# A niceness value of 0 will not attempt to set any priority.
#
# default=10
BackendSpawnNiceValueBackground=10
# Set the iopriority class of the spawned backend to idle.
# This ensures the process does not hog the disk when performing actions.
#
# default=true
BackendSpawnIdleIO=true
# Set the iopriority class of the spawned backend to idle for low priority tasks.
# This ensures the process does not hog the disk when performing actions.
#
# default=true
BackendSpawnIdleIOBackground=true
# Set whether the spawned backends are allowed to be SIGKILLed if they do not
# respond to SIGQUIT. This ensures that Cancel() works as expected, but
# somtimes can corrupt databases if they are open.
#
# Only change this to FALSE if your backend can not be SIGKILLed without
# database corruption.
#
# Even if this is set TRUE, the backend can still enforce this FALSE if it it
# explicitly set in the compiled backend. You can think of this as a fallback
# value that is used when backends do not enforce policy, or as a way to disable
# SIGKILL even for backends that calim to support it.
#
# default=true
BackendSpawnAllowSIGKILL=true
# Default backends, as chosen in the configure script. This will be used
# where no --backend="foo" option is given to the daemon.
#
# The order they are specified is the order they are tried, so for the
# value "foo,bar" first "foo" will be attempted and then "bar" if the
# libpk_backend_foo.so module load failed.
#
# default=yum
DefaultBackend=presolve
# Use syslog to audit and log actions where available.
#
# default=false
UseSyslog=false
# Proxy settings, uncomment as required
#
# NOTE: PackageKit does not use these settings, they are passed to backends.
# Backends may ignore these values. If either of ProxyHTTP or ProxyFTP
# are set then the users proxy settings are ignored.
#
# They are in the format username:password@server:port
#
# ProxyHTTP=username:password@server.lan:8080
# ProxyFTP=server.lan:21
# Scan installed desktop files when we update or install packages
#
# NOTE: Don't enable this for backends that are slow doing SearchFile()
#
# default=true
ScanDesktopFiles=true
# Update the package list when we refresh the cache
#
# NOTE: Don't enable this for backends that are slow doing GetPackages()
#
# default=true
UpdatePackageList=true
# Check for running processes when we update packages
#
# NOTE: Don't enable this for backends that are slow doing GetFiles() on
# installed files.
#
# default=true
UpdateCheckProcesses=true
# Check for shared libraries that are in use, that are replaced by packages
# that are marked as security updates.
#
# NOTE: Don't enable this for backends that are slow doing GetFiles() on
# installed files.
#
# default=true
CheckSharedLibrariesInUse=true
# Check for updates in testing repositories when we check for updates
#
# NOTE: Don't enable this if you do not want testing updates to be checked
# as this will increase the network bandwidth used.
#
# default=true
CheckTestingRepos=true
# Use update cache when possible to avoid using the backend
#
# NOTE: Enabling this reduces calls to the backend, although using the
# SetHints(cache-age) parameter will return unpredicable results for
# transactions.
#
# default=false
UseUpdateCache=false
# Use strict developer checking in the daemon
#
# This should be set to TRUE if the backend should be run in strict compliance
# mode, which is useful when developing a backend. Normal sane users should not
# have to use this mode.
#
# If this is set to FALSE, then the daemon will try to 'fix' any craziness in
# the backend without notifying the end user.
#
# default=false
DeveloperMode=false
# The time in seconds to wait when we get the StateHasChanged method
#
# This should be used when a native tool has been used, and the update UIs
# should be updated to reflect reality.
#
# default=30
StateChangedTimeoutPriority=30
# The time in seconds to wait after the computer has been resumed or any non
# package related system event
#
# We don't want to be doing an update check at the busy time after a resume
#
# default=600
StateChangedTimeoutNormal=600
# The maximum number of requests a given user is able to request and queue
#
# Setting this lower decreases the risk of a local denial of service, but may
# cause errors if the desktop client is doing many requests to the daemon in a
# short period of time.
#
# default=500
SimultaneousTransactionsForUid=500
# The maximum number of items that can be resolved in one method
#
# Setting this lower decreases the risk of a local denial of service, but may
# cause errors if the desktop client is trying to resolve a large number of
# packages in one method.
#
# default=100
MaximumItemsToResolve=100
# The maximum number of packages that can be processed in one method
#
# Setting this lower decreases the risk of a local denial of service, but may
# cause errors if the desktop client is trying to do a large transaction.
#
# default=2500
MaximumPackagesToProcess=2500
# How long the transaction is valid before it's destroyed, in seconds
#
# The client only has a finite amount of time to use the object, else it is
# destroyed. Setting this longer will allow malicious clients to queue up large
# number of authentication requests, but setting this shorter will reduce the
# amount of time the user has to authenticate.
#
# default=300
TransactionCreateCommitTimeout=300
# How long the transaction should be queriable after it is finished, in seconds
#
# Give the client a few seconds to still query the transaction after it has
# finished by keeping it on the bus. Setting this larger allows clients to query
# the transaction without accessing the database, but increases memory usage.
#
# default=5
TransactionKeepFinishedTimeout=5
# If certain operations should be done using IDLE bandwidth
#
# TCP Low Priority is a congestion control algorithm included in the kernel.
# Connections using this algorithm will use only idle bandwidth. In other words,
# it is a self-tuning TCP stack. Setting this to FALSE will mean that the check
# for updates happens more quickly, at the expense of other network applications
# such as firefox and other file downloaders.
#
# If the user is running the network at 100% for extended periods of time, then
# the update check may be starved and take a very long time to complete. In this
# rare case, this setting should be set to FALSE.
#
# By also setting this setting to TRUE makes the possibility of a environment
# mismatch much higher for a spawned backend. This will make switching from idle
# operations (such as GetUpdates) and full speed operations (such as
# InstallPackages) take longer. If this is a concern, then set this to FALSE.
#
# default=true
UseIdleBandwidth=true
# Processes that cannot be updated when they are running
#
# Some processes do not cope well when they are upgraded when the binary is
# running. These include things like firefox, where updating causes the original
# instance to misbehave as some components are not locked in memory.
#
# Applications can be added here that do not cope well with being updated.
#
# NOTE: you should not list applications here that the user has no permission
# or cannot shutdown without the session exploding. For instance, listing
# /sbin/dbus-daemon or /usr/sbin/haldaemon would be a really bad idea.
#
# Seporate entries can be seporated with the ';' character.
#
# default=/usr/lib/*/firefox
NoUpdateProcessList=/usr/lib/*/firefox
# If the backend should use threads to avoid blocking the daemon for other users
#
# The daemon, packagekitd, is shared by multiple users. Users are allowed to
# create and send transactions when other transactions are being processed.
# To do this, the backend action is created in a thread, but some libraries
# notably libdbus and dbus-glib, are less threadsafe then they probably should
# be.
#
# Only developers need to change this value, normally for debugging purposes.
#
# default=true
UseThreadsInBackend=true
# If a custom root should be used when installing packages
#
# A custom route can be used to install to a LTSP instance or a virtual machine
# image, typically using chroot or by mounting an image using virt-inspector.
#
# Additional authentication is required to change the root from the default.
#
# Most users do not need to change this value, as you need to have setup a
# native package database (e.g. the rpmdb) on the new root.
#
# default=/
UseRoot=/
|
