--- Begin Message ---
- To: Debian Bug Tracking System <submit@bugs.debian.org>
- Subject: debian-policy: please disallow colons in upstream_version
- From: Jakub Wilk <jwilk@debian.org>
- Date: Sun, 19 Jul 2015 13:48:14 +0200
- Message-id: <20150719114814.GA4973@jwilk.net>
Package: debian-policy
Severity: wishlist
Policy §5.6.12 reads: “The <upstream_version> may contain only
alphanumerics and the characters ‘.’ ‘+’ ‘-’ ‘:’ ‘~’ (full stop, plus,
hyphen, colon, tilde) and should start with a digit. […] if there is no
<epoch> then colons are not allowed.”
But in practice:
1) There's been never a package with a colon in upstream_version in the
archive.
2) A colon in upstream_version implies a colon in the filename. Some
software might not tolerate such filenames; see bug #645895 for
discussion.
3) dpkg in unstable won't even let you build a package with such
version:
$ head -n1 debian/changelog
adequate (1:1:1) UNRELEASED; urgency=low
$ dpkg-buildpackage -S
[…]
dpkg-genchanges -S >../adequate_1:1_source.changes
dpkg-genchanges: error: invalid filename adequate_1:1.dsc
dpkg-buildpackage: error: dpkg-genchanges gave error exit status 255
Therefore, I'd like to propose to disallow colons in upstream_version.
--
Jakub Wilk
--- End Message ---
--- Begin Message ---
Source: debian-policy
Source-Version: 4.0.0.1
We believe that the bug you reported is fixed in the latest version of
debian-policy, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 792853@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Russ Allbery <rra@debian.org> (supplier of updated debian-policy package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sun, 18 Jun 2017 19:27:48 -0700
Source: debian-policy
Binary: debian-policy
Architecture: source all
Version: 4.0.0.1
Distribution: unstable
Urgency: low
Maintainer: Debian Policy List <debian-policy@lists.debian.org>
Changed-By: Russ Allbery <rra@debian.org>
Description:
debian-policy - Debian Policy Manual and related documents
Closes: 175064 181123 568374 688220 698012 700532 734662 746514 759186 759492 768117 768292 781654 792853 793493 793999 794902 798309 809382 816249 816515 819660 820197 821365 821859 822059 823348 823910 824922 829367 830989 833177 835490 835876 841877 849483 850646 852314
Changes:
debian-policy (4.0.0.1) unstable; urgency=low
.
* Upload to unstable.
* Clarify the conflict policy between /path and /usr/path by adding the
leading slash in front of the first path. Thanks, Ferenc Wágner.
* Change http URLs to https for every resource available over https.
* Replace broken CPAN URL in the Perl policy with the current URL, and
turn this into an in-line link rather than a footnote with the full
URL. This hides the URL in the text output, but it's not horribly
important for the text version and easy to find with a search.
* Fix formatting of the list of shlibs and symbol file locations. These
were mistakenly converted to itemized lists instead of variable lists
during the DocBook conversion, which produced inferior output.
* Use UTF-8 instead of ISO-8859-1 as the character set for the text
versions of policy documents.
* Further standardize author and copyright notices.
- Add the notice from the main document that the copyright notices are
incomplete to the other documents with copyright notices.
- Add the Debian Policy Mailing List as an author of the debconf
specification.
- Replace (incorrect) Software in the Public Interest copyrights with
copyright notices for the original authors.
- Standardize capitalization of Debian Policy Mailing List in notices.
- Update copyright notices in debian/copyright.
* Add a full copy of the BSD license without advertising clause to the
<legalinfo> section of the debconf specification, instead of just a
reference to it.
* Update the GPL license statements to the current recommended form,
which doesn't include a street address for the FSF. Use all-caps for
the warranty disclaimer just in case it matters. Link to the general
FSF license page to make it easier to find the GPLv2, which is
technically the license under which these documents are distributed,
even if the GPLv3 may be used if desired.
* Completely rewrite the build system to use debhelper.
- Remove all hand-rolled package build rules and let debhelper do the
package construction.
- Remove gzip compression from the main build and let debhelper handle
compression of text files. This allows debhelper to control the
gzip flags and do whatever is correct for reproducible builds.
- The top-level Makefile now has conventional all and install targets
that build all documents and would install them (not that anyone is
likely to use the install target other than the packaging).
- Get the document publication dates from debian/changelog instead of
the current date for more reproducible builds.
- Do xmllint validation of the copyright-format and debconf
specification documents as well.
- Remove a bunch of old leftovers from the clean and distclean targets
and make distclean identical to clean. Stop cleaning editor
autosave files and patch droppings (this can be destructive).
- Move all doc-base files into the debian packaging directory.
* Restructure the command list in the debconf specification document to
pass xmllint, which didn't like including the body of an itemizedlist
as an XML entity.
* Add missing release date to the 4.0.0 upgrading-checklist entry.
* Fix tools/policy-bug-report to not fail when bug lists are empty and
to ignore closed bugs.
* Don't delete virtual-package-names-list.txt during make distclean.
* Make distclean depend on clean to remove stamp-* files.
* Update Standards-Version of the debian-policy package itself.
.
debian-policy (4.0.0.0) experimental; urgency=low
.
[ Andreas Barth ]
* Policy: Add the MPLs to /usr/share/common-licenses
Wording: Charles Plessy <plessy@debian.org>
Seconded: Russ Allbery <rra@debian.org>
Seconded: Andrey Rahmatullin <wrar@debian.org>
Closes: #768292
* Policy: [5.6.12] forbid colons in package version numbers
Wording: Charles Plessy <plessy@debian.org>
Seconded: Didier 'OdyX' Raboud <odyx@debian.org>
Seconded: Sam Hartman <hartmans@debian.org>
Thanks: Jakub Wilk <jwilk@debian.org>
Closes: #792853
* Policy: [4.3] Update config.guess and config.sub during the build
Wording: Bill Allombert <ballombe@debian.org>
Seconded: Niels Thykier <niels@thykier.net>
Seconded: Andreas Barth <aba@ayous.org>
Closes: #746514
* Spelling fixes, thanks to Martin A. Brown. Closes: #820197
.
[ Russ Allbery ]
* Policy: [10.9] Don't contact base-passwd maintainer for dynamic users
Wording: Colin Watson <cjwatson@debian.org>
Seconded: Russ Allbery <rra@debian.org>
Seconded: Didier 'OdyX' Raboud <odyx@debian.org>
Seconded: gregor herrmann <gregoa@debian.org>
Closes: #841877
* Policy: Document Build-Depends-Arch and Build-Conflicts-Arch
Wording: Johannes Schauer <josch@debian.org>
Seconded: Stuart Prescott <stuart@debian.org>
Seconded: Russ Allbery <rra@debian.org>
Closes: #823910
* Policy: Add nodoc tag to DEB_BUILD_OPTIONS
Wording: Russ Allbery <rra@debian.org>
Seconded: Johannes Schauer <j.schauer@email.de>
Seconded: Charles Plessy <plessy@debian.org>
Seconded: Andrey Rahmatullin <wrar@debian.org>
Closes: #759186
* Policy: Prohibit file conflicts between /bin and /usr/bin
Wording: Ansgar Burchardt <ansgar@debian.org>
Wording: Russ Allbery <rra@debian.org>
Seconded: Raphael Hertzog <hertzog@debian.org>
Seconded: Felipe Sateler <fsateler@debian.org>
Closes: #759492
* Policy: Debug packages don't need a debian/control paragraph
Wording: Tanguy Ortolo <tanguy+debian@ortolo.eu>
Seconded: Russ Allbery <rra@debian.org>
Seconded: Raphael Hertzog <hertzog@debian.org>
Closes: #819660
* Policy: New dpkg-architecture flags
Wording: Guillem Jover <guillem@debian.org>
Seconded: Russ Allbery <rra@debian.org>
Seconded: Raphael Hertzog <hertzog@debian.org>
Closes: #793493
* Policy: Remove even the fallback to calling /etc/init.d directly
Wording: Ondřej Nový <onovy@debian.org>
Seconded: Michael Stapelberg <stapelberg@debian.org>
Seconded: Andreas Henriksson <andreas@fatal.se>
Closes: #833177
* Policy: Limit strength of dependencies on -doc packages
Wording: Josh Triplett <josh@joshtriplett.org>
Seconded: Russ Allbery <rra@debian.org>
Seconded: Raphael Hertzog <hertzog@debian.org>
Seconded: Niels Thykier <niels@thykier.net>
Closes: #823348
* Policy: Explicitly allow https form of copyright-format URL
Wording: Russ Allbery <rra@debian.org>
Seconded: Andrey Rahmatullin <wrar@debian.org>
Seconded: gregor herrmann <gregoa@debian.org>
Seconded: Didier 'OdyX' Raboud <odyx@debian.org>
Closes: #850646
* Policy: Recommend libraryname-dev or librarynameAPIVERSION-dev
Wording: Ansgar Burchardt <ansgar@debian.org>
Seconded: Julien Cristau <jcristau@debian.org>
Seconded: Emilio Pozuelo Monfort <pochu@debian.org>
Closes: #568374
* Policy: Add optional try-restart init status, make status recommended
Wording: Andreas Henriksson <andreas@fatal.se>
Seconded: Simon McVittie <smcv@debian.org>
Seconded: Felipe Sateler <fsateler@debian.org>
Seconded: Ondřej Nový <novy@ondrej.org>
Closes: #181123
* Policy: No special dependency now required for /run
Wording: Marc Haber <mh+debian-packages@zugschlus.de>
Seconded: Andreas Henriksson <andreas@fatal.se>
Seconded: Russ Allbery <rra@debian.org>
Closes: #852314
* Policy: Update policy on /dev and device file management
Wording: Russ Allbery <rra@debian.org>
Seconded: Andreas Henriksson <andreas@fatal.se>
Seconded: Simon McVittie <smcv@debian.org>
Closes: #698012
* Policy: Remove integration instructions for upstart
Wording: Ansgar Burchardt <ansgar@debian.org>
Seconded: Michael Biebl <biebl@debian.org>
Seconded: Andrey Rahmatullin <wrar@debian.org>
Seconded: Simon McVittie <smcv@debian.org>
Closes: #835490
* Perl: Update module search path for multiarch support
Wording: Dominic Hargreaves <dom@earth.li>
Seconded: Niko Tyni <ntyni@debian.org>
Seconded: Russ Allbery <rra@debian.org>
Closes: #798309
* virtual-package-names-list: Add adventure
Wording: Ben Finney <ben+debian@benfinney.id.au>
Seconded: Russ Allbery <rra@debian.org>
Seconded: Niels Thykier <niels@thykier.net>
Closes: #821859
* virtual-package-names-list: Add httpd-wsgi3
Wording: Bill Allombert <ballombe@debian.org>
Seconded: Brian May <bam@debian.org>
Seconded: Russ Allbery <rra@debian.org>
Closes: #768117
* virtual-package-names-list: Add virtual-mysql-* packages
Wording: Otto Kekäläinen <otto@debian.org>
Seconded: Russ Allbery <rra@debian.org>
Seconded: Raphael Hertzog <hertzog@debian.org>
Closes: #829367
* Convert all remaining DebianDoc-SGML source files in the package to
DocBook XML. Many thanks to Osamu Aoki and Guillem Jover for lots of
hard work on the conversion. This was a huge conversion, so there
will probably be some lingering formatting issues, incorrect markup,
and less-than-ideal output. Please report any problems as bugs.
(Closes: #175064, #700532, #809382)
* Additional fixes from Guillem Jover as part of the DocBook conversion:
- Stop distributing the source SGML files as part of the installed
package. There doesn't seem to be any point in doing this.
- Switch to xsltproc and dblatex instead of OpenJade.
- Stop using tidy on the generated files since it generates larger
files and the output from xsltproc is already compliant and fairly
clean.
- Remove unused Build-Depends.
- Use entities instead of literal <, >, and & characters.
- Use <var> instead of escaped angle brackets for metavariables.
- Use <var> instead of <em> inside <tt>.
- Avoid slashes in section IDs.
- Convert a comment about maintenance policy in the Menu Policy
document to a regular paragraph in the document.
- Replace a comment reference to the policy maintenance process with
an actual link to Process.md.
- Remove obsolete SGML comments.
* Move the description of < and > relations to a footnote to make
abundantly clear that they're no longer valid relation operators in
dependencies. (Closes: #816515)
* Clarify informative mentions of debian/tmp in the appendices to
document the now-common use of debian/<pkg> instead as the temporary
staging area. Document that convention, instead of
debian/tmp-something, for multi-binary packages. Thanks, Niels
Thykier. (Closes: #816249)
* Remove lingering wording that implied that build-arch and build-indep
targets are optional. Thanks, Ferenc Wagner, Jakub Wilk, and Charles
Plessy. (Closes: #793999)
* Rather than giving the paths to the installed shlibs and symbols files
and then saying those paths shouldn't be used, just say to use
dpkg-query --control-show. Recommend --control-show instead of
--control-path, since the latter is deprecated. Patch from Salvatore
Bonaccorso. (Closes: #688220)
* Explicitly give Unicode code points in the definition of the syntax of
Debian control files and, where appropriate, show the character.
Patch from Ben Finney. (Closes: #821365)
* Remove obsolete footnote about a versioned dependency on a
liblockfile1 release from 1999. Thanks, Jakub Wilk. (Closes: #794902)
* Fix the long name of the Common Public License in the copyright-format
policy. It is just Common Public License, with no leading "IBM".
Thanks, Stefano Zacchiroli. (Closes: #781654)
* Fix the copyright-format examples to not have duplicate License
paragraphs. Thanks, Stefan <bd@bc-bd.org>. (Closes: #824922)
* Replace reference to dbus-launch in the autopkgtest documentation with
dbus-run-session. Patch from Simon McVittie. (Closes: #835876)
* Add an example of an architecture restriction in a dependency with
multiple architectures separated by spaces. (Closes: #734662)
* Replace use of markdown with MultiMarkdown for the autopkgtest
documentation and convert README and Process to MultiMarkdown, thus
dropping the last org-mode files and the build dependency on Emacs.
Patch from Guillem Jover. (Closes: #849483)
* Add some additional information to the upgrading-checklist entry for
the 3.9.8.0 release.
* Fix debian/changelog and upgrading-checklist dates for the 3.9.8.0
release to match the actual upload. (Closes: #822059)
* Fix duplicated "the" words in 4.4 and 8.6.3.2. Patch from Valentin
Samir. (Closes: #830989)
* Clean up the upgrading checklist a bit:
- Rewrite the introduction to read a bit more smoothly and mention
that the Standards-Version value omits the minor patch number.
- Remove the minor patch number from all the version headings except
for the anomalies that contain normative changes, and note those
explicitly.
- Remove some unhelpful section headings and trailing colons in very
old upgrading checklist entries.
- Standardize the release date format.
* Compress all files with gzip -n to avoid embedding timestamps,
enabling reproducible builds.
* Redo some of the Makefile and debian/rules dependencies to avoid
ambiguous pattern rules and to ensure that make at the top level
rebuilds output files if input files change.
* Switch to https URLs for Vcs-Git and Vcs-Browser.
* Use the same URL for both Vcs-Git and Vcs-Browser, which now works
fine and has some advantages over the gitweb version for Vcs-Browser.
Thanks, Mattia Rizzolo.
* Run wrap-and-sort -ast.
* Tag as Multi-Arch: foreign (mostly to silence the hinter).
.
[ Sean Whitton ]
* Remove references to DebianDoc-SGML from README.md.
* Fix typo & comma splice in Process.md.
Checksums-Sha1:
9e1cad4696845236e2ce1f6772442bcc5906f7d2 1605 debian-policy_4.0.0.1.dsc
52a670be0884d887eaf965850f1c421997f172fc 660052 debian-policy_4.0.0.1.tar.xz
699ee1b7376a1e4d5e9aa4574b6934c117de50ec 1970776 debian-policy_4.0.0.1_all.deb
191c7682c754b6c35ff3bf0832ae55a5dfb1d50c 12027 debian-policy_4.0.0.1_amd64.buildinfo
Checksums-Sha256:
eb9fe99e837ee45eb95dc1a98710d34693b8e1f34978d990022c5d236cbecaa6 1605 debian-policy_4.0.0.1.dsc
496b558807a745c7c7fb02a46c8961026bc00dbe9af64392f8a8f33f76878fca 660052 debian-policy_4.0.0.1.tar.xz
fad279e45151ee7a63a543aa12038e753ecaf17fa8006fc72b86531ac87409c6 1970776 debian-policy_4.0.0.1_all.deb
5a863fce928d54787b5680bf2d97e1ba67bb5291bf00a449487be0493ef196f6 12027 debian-policy_4.0.0.1_amd64.buildinfo
Files:
80756bbbba7f7da85237f191e023c183 1605 doc optional debian-policy_4.0.0.1.dsc
05fc9941e68ae5856eca0c9155c0788b 660052 doc optional debian-policy_4.0.0.1.tar.xz
d9f2164fe42ce300c0176544926605c5 1970776 doc optional debian-policy_4.0.0.1_all.deb
5dfa139855afd65f93ced79fc25d9984 12027 doc optional debian-policy_4.0.0.1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----
iQEzBAEBCAAdFiEE1zk0tJZ0z1zNmsJ4fYAxXFc23nUFAllHOXgACgkQfYAxXFc2
3nW5Ogf9G9A5sabx7PPLXI8K0NrCXOwLQMQP/hECU1ylp1fXryfcPFq9jkNojTFV
jx8i00/OTNZUecCx1B3IQHxYb7EOOkcEYv2Qd6L2niAySUI+yj3Blpo+1bDJyV/t
BDG7edRZUyKOWas33wqhE+wCl/pZohuionefPUJRqEkX9Wd9PE84douIy3xAeGxT
dklUHY9oVxRjso4mlJ5GSYGPOiz6ra40pWO/AazPgk7JzoB2Chu7Td0EwpYeV06a
C4vo3fFTNanmj59iV7DXt3yACCO95FxVPLONsW9J5RM+zPISNplvRUydXiOf8u4r
T/goX8yy4dIT8nwWZYVNGyYOJ77RSA==
=FdSB
-----END PGP SIGNATURE-----
--- End Message ---