From Fedora Project Wiki
This page is a draft only
It is still under construction and content may change. Do not rely on the information on this page.


In Fedora we want to ensure that there is always an upgrade path from Fedora release to Fedora release and from Fedora release to the packages in updates. To do that we need to make sure the packages in the newer Fedora releases have an equal or higher Epoch:Version-Release (EVR) than the ones in older releases. For example, Fedora-13 ships with foo-1.0-1.fc13 and Fedora-14 ships with foo-1.0-2.fc14. This example shows that the Fedora-14 package will properly upgrade the Fedora-13 package.

A more complex example. Fedora-13 ships with foo-1.0-1.fc13 and Fedora-14 ships with foo-1.0-2.fc14. Fedora-13 gets an updated foo package: foo-1.0.1-1.fc13. This update is EVR higher than the package Fedora-13 shipped with so that's good. However, it is also EVR higher than what Fedora-14 shipped with so we need to make a Fedora-14 update at the same time, likely: foo-1.0.1-1.fc14. making that update means that someone updating from Fedora-13 with updates enabled will get the correct package on Fedora-14 with updates enabled.

The one time where we temporarily break the upgrade path is from released Fedora to rawhide. It is allowable to temporarily have a higher EVR in a released Fedora vs rawhide in cases where we need to get a fix out to users of the Fedora releases quickly (for instance, for a security issue) but the fixed package does not currently build in rawhide (for instance, because of a change in a dependent library that requires porting effort). The changes should be checked into Fedora's SCM for rawhide although there is not yet a build and getting a rawhide build that restores the upgrade path should be a priority.

rpm's understanding of what package is newer comes from the values of the Epoch, Version, and Release tags. The next few sections explain what values to use in those tags to ensure that the EVR consistently increases.

Version Tag

The Version field in the spec is where the maintainer should put the current version of the software being packaged. If the version is non-numeric (contains tags that are not numbers), you may need to include the additional non-numeric characters in the release field.

There are four cases where the version contains non-numeric characters:

  • Pre-release packages: Packages released as "pre-release" versions, prior to a "final" version. Example tags include "alpha", "beta", "rc", "cvs". Details can be found here: Pre-Release Packages
  • Post-release packages: Packages released after a "final" version. These packages contain the same numeric version as the "final" version, but have an additional non-numeric identifier. Details can be found here: Post-Release Packages
  • Snapshot packages: Packages built from cvs or subversion snapshots. These packages could be either "pre" or "post" release packages. Details can be found here: Snapshot Packages

Basic versioning rules

  • RPM splits versions in to sections which are compared piece by piece
  • Version/Release strings allowed to have ASCII letters (a-zA-Z), digits (0-9) and separators (._+%{}~)
  • Tilde (~) is special separator and has special meaning/handling
  • Separators are ignored by RPM's comparison - 1+0 == 1.0
  • Letters are sorted before digits - a < 1
  • Letters are compared by their ASCII value - a (97) > A (65)
  • Additional character makes version being higher - 1.1 < 1.10, 1.0 < 1.0.0
  • Tilde (~) makes version being lower - 1.0 > 1.0~, 1.0 > 1.0~rc1
  • Zero (0) after separator handled natively - 1.0 == 1.000


Note that after ~ or +, there should never be a leading digit. Especially in the case of +, where it is considered equivalent to other separators, it is important to use only letters at the beginning so that RPM's version comparison considers it lower than a successive formal release (e.g. 1.0+1 == 1.0.1, 1.0+git < 1.0.1).

Non-Numeric Versions

There are three cases in which non-numeric versions occur in the Version field:

  • Snapshot packages
  • Pre-release packages
  • Post-release packages
Snapshot Packages

Snapshot packages contain data about where the snapshot came from as well as ordering information for rpm. The information about the snapshot will be called %{checkout} in this section.

%{checkout} consists of a short (2-5 characters) string identifying the type of revision control system or that this is a snapshot, the date that the snapshot is made in YYYYMMDD format, and optionally, up to 13 characters (ASCII) alphanumeric characters that could be useful in finding the revision in the revision control system.

For instance, if you create a snapshot from a git repository on January 2, 2011 with git hash 9e88d7e9efb1bcd5b41a408037bb7cfd47220a64, %{checkout} string could be any of the following:

snap20110102
git20110102
git20110102.9e88d7e

The reason for ordering the word before the numbers is to ensure that RPM sorts it lower than a successive version since letters are lower than numbers. This is especially important in the post-release case, since + is equivalent to a standard separator.

If the snapshot package is considered a "pre-release package", follow the guidelines listed in Pre-Release Packages for snapshot packages, using the %{checkout} that you decide on above. (For instance, in kismet-0~svn20040204-3, svn20040204 is the %{checkout})

If the snapshot is a "post-release package", follow the guidelines in the Post-Release Packages section. Where the %{posttag} in that section is the %{checkout} string you decided on above.

Example (post-release cvs):

kismet-1.0-1%{?dist} (this is the formal release of kismet 1.0)
kismet-1.0-2%{?dist} (this is a bugfix build to the 1.0 release)
kismet-1.0+cvs20050515-1%{?dist} (move to a post-release cvs checkout, note the reset of the Release section)
kismet-1.0+cvs20050515-2%{?dist} (bugfix to the post-release cvs checkout)
kismet-1.0+cvs20050517-1%{?dist} (new cvs checkout, note the reset of the release tag)
Pre-Release Packages

Non-numeric versioned "pre-release" packages can be problematic so they must be treated with care. These are cases where the upstream "pre-release" version has letters rather than simple numbers in their version. Often they have tags like alpha, beta, rc, or letters like a and b denoting that it is a version before the "final" number. We need to follow a special scheme to ensure proper ordering in the Version field.

Version Tag for Pre-Release Packages: %{X}~%{alphatag}

Where %{X} is the software version that the pre-release will become, and %{alphatag} is the string indicating the pre-release state. In this case, the tilde '~' is used as not only a separator, but also an indicator for RPM to consider it lower than a package that just has %{X} in the Version field.

Non-sortable "alphatags"
If during usage of tilde or any other separators you see that it will introduce downgrade (e.g. 1~prerelease -> 1~alpha) - prepend a letter and separator (preferably .) (e.g. 1~z.alpha).


Examples
Example (mozilla pre-release)
Source Archive Description
mozilla-1.4a.tar.gz (this is a pre-release, version 1.4a of mozilla)
mozilla-1.4.tar.gz (this is what the 1.4 release will actually look like)
Name-Version-Release Explanation
mozilla-1.4~a-1%{?dist} (so, this is the acceptable Fedora %{name}-%{version}-%{release})
mozilla-1.4-1%{?dist} (and this is what the 1.4 release Fedora %{name}-%{version}-%{release} should be)


Example (alsa-lib pre-release)
Source Archive Description
alsa-lib-0.9.2beta1.tar.gz (this is a beta release of alsa-lib, version 0.9.2beta1)
Name-Version-Release Explanation
alsa-lib-0.9.2~beta1-1%{?dist} (this is the correct Fedora %{name}-%{version}-%{release})
alsa-lib-0.9.2~beta1-2%{?dist} (this is an incremented Fedora %{name}-%{version}-%{release}.)


Example (kismet pre-release svn checkout)
Name-Version-Release Explanation
kismet-0~svn20040110-1%{?dist} (this is a pre-release, svn checkout of kismet)
kismet-0~svn20040110-2%{?dist} (this is a bugfix to the previous package)
kismet-0~svn20040204-1%{?dist} (this is a new svn checkout, note the reset of the Release)
kismet-1.0-1%{?dist} (this is the formal release of kismet 1.0)


Upgrade Path Example (mozilla)
Name-Version-Release Explanation
mozilla-1.4~a-1%{?dist} (this is the Fedora package for 1.4a, as above)
mozilla-1.4~a-2%{?dist} (this is the first patch on top of 1.4a)
mozilla-1.4~a-3%{?dist} (this is another new patch on top of 1.4a)
mozilla-1.4~b-1%{?dist} (this is the first build after upgrade to 1.4b)
mozilla-1.4~b-2%{?dist} (this is a new patch on top of 1.4b)
mozilla-1.4-1%{?dist} (this is after moving to 1.4 "final", and to a normal version)
mozilla-1.4-2%{?dist} (this is a new patch on top of 1.4 "final")


Upgrade Path Example (alsa-lib)
Name-Version-Release Explanation
alsa-lib-0.9.2~beta1-1%{?dist} (this is the Fedora package for 0.9.2beta1, as above)
alsa-lib-0.9.2~beta1-2%{?dist} (this is a new patch on top of 0.9.2beta1)
alsa-lib-0.9.2~beta2-1%{?dist} (this is after upgrading to 0.9.2beta2)
alsa-lib-0.9.2~beta3-1%{?dist} (this is after upgrading to 0.9.2beta3)
alsa-lib-0.9.2~beta3-2%{?dist} (this is a new patch on top of 0.9.2beta3)
alsa-lib-0.9.2~rc1-1%{?dist} (this is after upgrading to 0.9.2rc1)
alsa-lib-0.9.2~rc2-1%{?dist} (this is after upgrading to 0.9.2rc2)
alsa-lib-0.9.2-1%{?dist} (this is after upgrading to 0.9.2 "final", version becomes normal)
alsa-lib-0.9.2-2%{?dist} (this is a new patch on top of 0.9.2 "final")
Post-Release Packages

Like pre-release packages, non-numeric versioned "post-release" packages can be problematic and also must be treated with care. These fall under two generic categories:

  • Properly ordered simple versions. These are usually due to quick bugfix releases, such as openssl-0.9.6b or gkrellm-2.1.7a. As new versions come out, the non-numeric tag is properly incremented (e.g. openssl-0.9.6c) or the numeric version is increased and the non-numeric tag is dropped (openssl-0.9.7). No special handling is required here.
  • When upstream uses versions that attempt to have meaning to humans instead of being easy for a computer to order. For example, GA1, CR2, PR3. In this case, the non-numeric string can be put in the Version: field using the following syntax: %{X}+%{posttag}

In this syntax, %{X} is the base software version, and %{posttag} is the string that came from the version. Here, the plus '+' is used as the delimiter between the base version number and the non-numeric version string.

Non-sortable "posttags"
If during usage of plus or any other separators you see that it will introduce downgrade (e.g. 1+GA1 -> 1+CP1) - prepend a letter and separator (preferably .) (e.g. 1+p.CP1).

Example (complicated post-release):

foo-1.1.0~BETA-1%{?dist} (this is a prerelease, first beta)
foo-1.1.0~BETA1-1%{?dist} (this is a prerelease, second beta)
foo-1.1.0~BETA2-1%{?dist} (this is a prerelease, third beta)
foo-1.1.0~CR1-1%{?dist} (this is a prerelease, candidate release 1)
foo-1.1.0~CR2-1%{?dist} (this is a prerelease, candidate release 2)
foo-1.1.0-1%{?dist} (final release)
foo-1.1.0+GA1-1%{?dist} (post release, GA1)
foo-1.1.0+p.CP1-1%{?dist} (post release, CP1, after GA1)
foo-1.1.0+p.CP2-1%{?dist} (post release, CP2, after CP1)
foo-1.1.0+p.SP1-1%{?dist} (post release, SP1, after CP2)
foo-1.1.0+p.SP1_CP1-1%{?dist} (post release, SP1_CP1, after SP1)

It is important to be careful with the post-release scheme, to ensure that package ordering is correct. It may be necessary to use Epoch to ensure that the current package is considered newer than the previous package. In such cases, the packager should try to convince upstream to be more reasonable with their post-release versioning.

Also, packagers using the post-release scheme should put a comment in their spec file with a brief description of the upstream conventions for naming/versioning that are being worked around.

Release Tag

The release tag of packages must consist of a positive integer release number and a %{?dist} tag: 42%{?dist}. When a minor change (spec file changed, patch added/removed) occurs, or a package is rebuilt to use newer headers or libraries, the release number is incremented. If a major change (new version of the software being packaged) occurs, the version number is changed to reflect the new software version, and the release number is reset to 1. It is important to follow these guidelines because automated tools will occasionally be used to increment releases and rebuild packages.

The %{?dist} Tag

Use of the %{?dist} tag in the Release field is mandatory. Please refer to the Packaging:DistTag documentation for the details on the appropriate way to do this.

Minor release bumps for old branches

Sometimes, you may find yourself in a situation where an older branch needs a fix, but the newer branches are fine. For example, if foo = 1.0-1%{?dist} in F20 and F21, and only F20 needs a fix. Normally, you would need to bump the release in each of the branches to ensure that F20 < F21, but that is a waste of time and energy for the newer branches which do not need to be touched.

In this case, you can add an extra digit (prefixed by a period) to the very end of the release tag in the F20 branch, instead of bumping it the usual way. Example:


Release: 1%{?dist}

Release: 1%{?dist}.1

This will make a foo-1.0-1.fc20.1 package, which is still less than the foo-1.0-1.fc21 package in the F21 branch.

As necessary, the last digit (the minor release bump) can be incremented on a per-branch basis as needed. However, this must never be used in rawhide, because it is always unnecessary there. Simply increment the appropriate portion of Release: in rawhide.


BE CAREFUL WITH THIS! You always want to make sure that packages in branches can be upgraded to packages in more recent branches. Or to put it simply, F20< FC21 < F22. There is a tool in the rpmdevtools package called rpmdev-vercmp. This tool will prompt you for two sets of Epoch, Version, and Release, then tell you which is considered newer by rpm.