Your message dated Thu, 05 Apr 2018 17:20:05 +0000
with message-id <e1f48yp-00045o...@fasolo.debian.org>
and subject line Bug#881431: fixed in debian-policy 4.1.4.0
has caused the Debian Bug report #881431,
regarding debian-policy: Clarify a version number is unique field
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
881431: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881431
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: debian-policy
Version: 4.1.1.1
Severity: wishlist
Hello,
this is in the category of "It should be obvious to anybody but I'd
prefer things are well-defined in case anybody wishes to start an
argument over that". So rather nitpicking.
Version number re-usage happens, probably always by accident. In the
past, before the advent of slugs to mark security uploads and the like,
this was more likely to happen, and a long time ago my src:file package
was affected by that as well[1]. Unfortunately, there was such an event
even in 2017, see #876633.
Such re-usage is fairly annoying:
* It breaks a reasonable assumption about the features provided by
a package installed in a given version.
* It breaks caching proxies that rely on the uniqueness for performance
i.e. no re-validation with upstream required. Also, proxies might
retain packages for longer than they exist on a mirror.
So I'd like to suggest an addition to "3.2. The version of a package",
for clarification, wording in the simplest form:
| For any package, a version number must never be re-used.
What I'd like to express but I guess is a bit too long:
| Unless bitwise identical, no two files that share the base name and
| have a version number in it may exist anywhere in the archives, ever.
Also, this is rather file-system based. But it should serve the first
purpose as well: If a package in a given version is installed on two
systems, the same feature set is provided on both without a doubt.
A few explanations:
* As it says, it's about *all* files that have a version number in
the name, source and binary packages, upstream tarballs, *.dsc,
*.diff.*, *.debian.tar.* and anything else.
* Files without a version number in the name like package indexes and
documentation are considered volatile anyway.
* Moving files around without modification is acceptable and also daily
routine: Between the queues, also from security to -proposed-updates
* By archive I think about the Debian files served by ftp.debian.org,
security.debian.org, ftp.ports.debian.org and probably a few,
rather semi-official more. Perhaps "archive" isn't the best word
for this.
As always about policy, I'm interested about the idea but don't stick
to a particular wording. Feel free to improve as I'm also not a native
speaker.
Also I feel a temptation to implement an according check in the
auto-reject machinery at ftp-master. But that's for another day.
Regards,
Christoph
[1] Examples:
* Completely different
http://snapshot.debian.org/package/file/4.17-5etch2/
* Duplicate on .dsc only (different signature, how did *that*
ever happen?):
http://snapshot.debian.org/package/file/5.04-5%2Bsqueeze2/
PS: Aside, I like the new presentation format of the policy document as
seen in </usr/share/doc/debian-policy/policy-1.html>. Improved visual,
policy version number at the very beginning, maintainer script
flowcharts, upgrading checklist included, but no additional and
dangerous requirements for using the document (i.e. works fine without
JavaScript). Much appreciated.
signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---
Source: debian-policy
Source-Version: 4.1.4.0
We believe that the bug you reported is fixed in the latest version of
debian-policy, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 881...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Sean Whitton <spwhit...@spwhitton.name> (supplier of updated debian-policy
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 05 Apr 2018 09:08:16 -0700
Source: debian-policy
Binary: debian-policy
Architecture: all source
Version: 4.1.4.0
Distribution: unstable
Urgency: medium
Maintainer: Debian Policy Editors <debian-policy@lists.debian.org>
Changed-By: Sean Whitton <spwhit...@spwhitton.name>
Closes: 299007 515856 742364 881431 886890 888437 889167 889960 892142
Description:
debian-policy - Debian Policy Manual and related documents
Changes:
debian-policy (4.1.4.0) unstable; urgency=medium
.
[ Sean Whitton ]
* Policy: Drop get-orig-source rules target
Wording: Helmut Grohne <hel...@subdivi.de>
Seconded: Holger Levsen <hol...@layer-acht.org>
Seconded: Niels Thykier <ni...@thykier.net>
Closes: #515856
* Policy: Update required permissions for /usr/local
Wording: Santiago Vila <sanv...@unex.es>
Seconded: Don Armstrong <d...@debian.org>
Seconded: Ian Jackson <ijack...@chiark.greenend.org.uk>
Seconded: Russ Allbery <r...@debian.org>
Closes: #299007
* Policy: Document debian/missing-sources
Wording: Sean Whitton <spwhit...@spwhitton.name>
Seconded: Holger Levsen <hol...@layer-acht.org>
Seconded: Gunnar Wolf <gw...@debian.org>
Closes: #742364
* Policy: Uniqueness of version numbers
Wording: Sean Whitton <spwhit...@spwhitton.name>
Seconded: Simon McVittie <s...@debian.org>
Seconded: Holger Levsen <hol...@layer-acht.org>
Closes: #881431
* Update recommendations dh_systemd_* -> dh_installsystemd (Closes: #889167).
Thanks Chris Lamb for the report.
* Fix some typos (Closes: #886890).
Thanks Sebastian Rasmussen for the patch.
* Fix some errors in shell script snippets caused by the rST conversion
script (Closes: #888437).
Thanks Yao Wei for the patch.
* Fix version of init-system-helpers required for `defaults-disabled`
option from 1.5.0 to 1.50.
Thanks to GengYu Rao for noting this on the debian-policy list.
* Fix indentation of description of the clean target (Closes: #889960).
Thanks Ferenc Wágner for the report.
.
[ Jonathan Nieder ]
* Use default-mta instead of exim in dependency example (Closes: #892142).
Thanks to Paul Wise for the report.
Checksums-Sha1:
ef1dc5fd8a3ceb38c8deace04558c671bea95f25 2001 debian-policy_4.1.4.0.dsc
a1e805333f756765570c27ff89a4fdd7eaf05363 677108 debian-policy_4.1.4.0.tar.xz
56dcdb6f05815c3456b56e10c519a3db18ee5992 2387292 debian-policy_4.1.4.0_all.deb
56d2b860d72ff9de0ac7ca37e84db816bf8e2d76 12126
debian-policy_4.1.4.0_amd64.buildinfo
Checksums-Sha256:
53b8f08ffbf1689ab2e97bb3b1586df0a4d4d8a480b9c4ba1de798b7257bf8fe 2001
debian-policy_4.1.4.0.dsc
023608b73abeb2d75c9dc64ce58761b5da30a7017f6db5f01a573f33e2e3a7c3 677108
debian-policy_4.1.4.0.tar.xz
6e9005245aee6e8c51f8c85a4c035e382e0861415459eae0263b41014818a0d8 2387292
debian-policy_4.1.4.0_all.deb
1818cd12a58b0770e0d9b75561779325b74841e4b2af5727ff7aca9694c8727f 12126
debian-policy_4.1.4.0_amd64.buildinfo
Files:
a8bb9047202d77c74e5b4bd30a160f4e 2001 doc optional debian-policy_4.1.4.0.dsc
8a80b4e16c6c15e4d1c5dfd645bc2d57 677108 doc optional
debian-policy_4.1.4.0.tar.xz
9537b38c53706d8d59f771f720a3f406 2387292 doc optional
debian-policy_4.1.4.0_all.deb
e2982e5cb7400de55a59cb24e5b1dfb7 12126 doc optional
debian-policy_4.1.4.0_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=TMzb
-----END PGP SIGNATURE-----
--- End Message ---
