From: Bill Allombert <Bill.Allombert@math.u-bordeaux1.fr>
Date: Thu, 22 Jan 2015 18:56:12 +0000 (+0100)
Subject: Policy: [9.2.2] document 32-bit uids
X-Git-Url: https://git.donarmstrong.com/?a=commitdiff_plain;h=b083c75f46a06d37393214ab94c7f5d6e698a0c4;p=debian%2Fdebian-policy.git

Policy: [9.2.2] document 32-bit uids

Wording: Matthew Vernon <matthew@debian.org>
Seconded: Russ Allbery <rra@debian.org>
Seconded: Bill Allombert <ballombe@debian.org>
Seconded: Julien Cristau <jcristau@debian.org>
Closes: #765499
---

diff --git a/debian/changelog b/debian/changelog
index e5235a6..cb9a7c0 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -7,6 +7,12 @@ debian-policy (3.9.7.0) unstable; urgency=low
     Seconded: Jakub Wilk <jwilk@debian.org>
     Seconded: Henrique de Moraes Holschuh <hmh@debian.org>
     Closes: #555979
+  * Policy: [9.2.2] document 32-bit UIDs ranges.
+    Wording: Matthew Vernon <matthew@debian.org>
+    Seconded: Russ Allbery <rra@debian.org>
+    Seconded: Bill Allombert <ballombe@debian.org>
+    Seconded: Julien Cristau <jcristau@debian.org>
+    Closes: #765499
 
  -- Bill Allombert <ballombe@debian.org>  Sat, 31 Jan 2015 21:01:58 +0100
 
diff --git a/policy.sgml b/policy.sgml
index 24cf7d7..947a1e1 100644
--- a/policy.sgml
+++ b/policy.sgml
@@ -7349,6 +7349,35 @@ rmdir /usr/local/share/emacs 2>/dev/null || true
 	      </item>
 
 	      <tag>65535:</tag>
+	      <item>
+		<p>
+		  This value <em>must not</em> be used, because it was
+		  the error return sentinel value when <tt>uid_t</tt>
+		  was 16 bits.
+		</p>
+	      </item>
+
+	      <tag>65536-4294967293:</tag>
+	      <item>
+		<p>
+		  Dynamically allocated user accounts.  By
+		  default <prgn>adduser</prgn> will not allocate UIDs
+		  and GIDs in this range, to ease compatibility with
+		  legacy systems where <tt>uid_t</tt> is still 16
+		  bits.
+	        </p>
+	      </item>
+
+	      <tag>4294967294:</tag>
+	      <item>
+		<p>
+                  <tt>(uid_t)(-2) == (gid_t)(-2)</tt> <em>must not</em> be
+                  used, because it is used as the anonymous, unauthenticated
+                  user by some NFS implementations.
+		</p>
+	      </item>
+
+	      <tag>4294967295:</tag>
 	      <item>
 		<p>
 		  <tt>(uid_t)(-1) == (gid_t)(-1)</tt> <em>must
diff --git a/upgrading-checklist.sgml b/upgrading-checklist.sgml
index 16b7664..32293cd 100644
--- a/upgrading-checklist.sgml
+++ b/upgrading-checklist.sgml
@@ -42,6 +42,10 @@ Released xxx, 2015.
 </p><p><taglist>
 <tag>10.5</tag>
   <item> Symbolic links must not traverse above the root directory.
+  </item>
+<tag>9.2.2</tag>
+  <item> 32bit UIDs in the range 65536-4294967293 are reserved for dynamically
+  allocated user accounts.
   </item> </taglist></p>
 
 <sect id="3.9.6.0"> Version 3.9.6.0