Document that empty field values are only allowed in debian/control.

[debian/debian-policy.git] / policy.sgml

diff --git a/policy.sgml b/policy.sgml
index fbbe4a307c08cf0ee810a0b8ceb9f111723b8582..4adee0b00da29910a0008d6aa549655e4d3a6383 100644 (file)
--- a/policy.sgml
+++ b/policy.sgml
@@ -229,9 +229,8 @@
          <enumlist>
            <item>Russ Allbery</item>
            <item>Bill Allombert</item>
-           <item>Andrew McMillan</item>
-           <item>Manoj Srivastava</item>
-           <item>Colin Watson</item>
+           <item>Andreas Barth</item>
+           <item>Jonathan Nieder</item>
          </enumlist>
         </p>
 
@@ -2559,7 +2558,9 @@ Package: libc6
          the field name is <tt>Package</tt> and the field value
          <tt>libc6</tt>.
        </p>
-
+        <p> Empty field values are only permitted in source package control files
+         (<file>debian/control</file>). Such fields are ignored.
+        </p>
        <p>
          A paragraph must not contain more than one instance of a
          particular field name.
@@ -2702,6 +2703,7 @@ Package: libc6
          file. These tools are responsible for removing the line
          breaks from such fields when using fields from
          <file>debian/control</file> to generate other control files.
+         They are also responsible for discarding empty fields.
        </p>
 
        <p>
@@ -7055,6 +7057,11 @@ Built-Using: grub2 (= 1.99-9), loadlin (= 1.6e-1)
                    kernel information.</footnote>
                </p>
              </item>
+             <item>
+                <p>
+                  The <file>/var/www</file> directory is additionally allowed. 
+                </p>
+             </item>
              <item>
                <p>
                   The requirement for <file>/usr/local/lib&lt;qual&gt;</file>
@@ -7345,6 +7352,35 @@ rmdir /usr/local/share/emacs 2>/dev/null || true
              </item>
 
              <tag>65535:</tag>
+             <item>
+               <p>
+                 This value <em>must not</em> be used, because it was
+                 the error return sentinel value when <tt>uid_t</tt>
+                 was 16 bits.
+               </p>
+             </item>
+
+             <tag>65536-4294967293:</tag>
+             <item>
+               <p>
+                 Dynamically allocated user accounts.  By
+                 default <prgn>adduser</prgn> will not allocate UIDs
+                 and GIDs in this range, to ease compatibility with
+                 legacy systems where <tt>uid_t</tt> is still 16
+                 bits.
+               </p>
+             </item>
+
+             <tag>4294967294:</tag>
+             <item>
+               <p>
+                  <tt>(uid_t)(-2) == (gid_t)(-2)</tt> <em>must not</em> be
+                  used, because it is used as the anonymous, unauthenticated
+                  user by some NFS implementations.
+               </p>
+             </item>
+
+             <tag>4294967295:</tag>
              <item>
                <p>
                  <tt>(uid_t)(-1) == (gid_t)(-1)</tt> <em>must
@@ -8887,6 +8923,7 @@ fname () {
            would point to <file>/srv/run</file> rather than the intended
            target.
          </footnote>
+         Symbolic links must not traverse above the root directory.
        </p>
 
        <p>
@@ -9785,7 +9822,7 @@ http://localhost/cgi-bin/.../<var>cgi-bin-name</var>
                <package>doc-base</package> package.  If access to the
                web document root is unavoidable then use
                <example compact="compact">
-/var/www
+/var/www/html
                </example>
                as the Document Root.  This might be just a symbolic
                link to the location where the system administrator