On Fri, 17 Jul 2009, Douglas Kilpatrick wrote:
Seth Vidal wrote:
Now, yum will not automatically downgrade pkgs as a depresolving step -
it's generally a bad idea anyway b/c it could very well mean downgrading
into a security whole or walking to backward incompatible versions of
things. No fun.
In my experience in large systems, much more downtime is caused from
deploying poorly tested code than from attackers. :)
Automatically downgrading would prove that anecdote incorrect.
In my experience of large systems, persistent and vigilant patching is
good preventative medicine.
If you want to write a plugin to do this you'd be best off just calling
downgrade() for each of the pkgs you want to downgrade and then letting yum
depsolve normally from there.
I just pulled the current source, and I don't understand what you're
suggesting...
Tag your packages with a special provides then on update calls have your
plugin intercept to see if that pkg is being upgraded. If it is
pre-depsolve go through and have the plugin downgrade() any of the items
which are being downgraded.
that's it.
-sv
_______________________________________________
Yum-devel mailing list
Yum-devel@lists.baseurl.org
http://lists.baseurl.org/mailman/listinfo/yum-devel
