1 |
-----BEGIN PGP SIGNED MESSAGE----- |
2 |
Hash: SHA1 |
3 |
|
4 |
On 01/01/2014 08:51 PM, Michael Orlitzky wrote: |
5 |
> On 01/01/2014 05:28 PM, Ulrich Mueller wrote: |
6 |
>> Hi, |
7 |
>> According to GLEP 23 [1], the LICENSE variable regulates the software |
8 |
>> that is installed on a system. There is however some ambiguity in |
9 |
>> this: should it cover the actual files installed on the system, or |
10 |
>> everything that is included in the package's tarball? This question |
11 |
>> was asked several times in the past and arose in bug 492424 [2] again. |
12 |
> |
13 |
> Why do I as a user care about the license of a package? I want packages |
14 |
> to be in @FREE in case I need to modify (and redistribute) them. But I |
15 |
> only need to modify the parts that I use. |
16 |
> |
17 |
> If an otherwise-GPL package pulls in the latest Justin Bieber CD with |
18 |
> USE=badtaste, that's not really an issue for me, because I'm not using |
19 |
> it. I'm happy to install the rest of the package with the USE flag |
20 |
> unset. The CD might as well be a separate package with a different |
21 |
> license as far as I'm concerned. |
22 |
> |
23 |
> In essence, I don't want to *use* code that isn't @FREE. This includes |
24 |
> the installed files, of course, but also the build system (that I use |
25 |
> temporarily). We could generalize this to "any file accessed during |
26 |
> emerge" to be on the safe side. That ensures that if I need to modify |
27 |
> (and redistribute) any part of the software that I use, I can. |
28 |
> |
29 |
> What use case is there for having the LICENSE apply to anything else? |
30 |
|
31 |
Some of us do redistribute the entire source package, so it does matter. |
32 |
If it doesn't matter to you as a user then you can always leave it |
33 |
unset and you remain completely oblivious to the change. |
34 |
|
35 |
- -Zero |
36 |
|
37 |
> |
38 |
> |
39 |
>> I've always preferred the first interpretation, because the second one |
40 |
>> would inevitably require us to repack many tarballs, in order to keep |
41 |
>> their license in @FREE. This would for example include the Linux |
42 |
>> kernel, where we could no longer use deblobbing, but would have to |
43 |
>> provide our own tarball with firmware blobs removed. Not sure if users |
44 |
>> would be happy if we wouldn't install from pristine sources any more. |
45 |
>> We also have mirror and fetch restrictions which allow us to control |
46 |
>> what tarballs we distribute, independent of the LICENSE variable. |
47 |
> |
48 |
> I think a better solution here, since these files are *installed*, is to |
49 |
> introduce a new local flag (e.g. unfreeblobs) for the kernel that would |
50 |
> append to LICENSE by the mechanism described below. |
51 |
> |
52 |
> |
53 |
>> Nevertheless, I also see the point for covering the distfiles |
54 |
>> contents. |
55 |
>> |
56 |
>> Within existing EAPIs we have only one LICENSE variable available. |
57 |
>> (Extending it would be possible in future EAPIs, but we would end up |
58 |
>> with a very long transition period.) USE conditional syntax is allowed |
59 |
>> in LICENSE, though. So I wonder if this couldn't be used for the |
60 |
>> intended purpose. For example, for specifying licenses of distfiles: |
61 |
>> |
62 |
>> LICENSE="<licenses of installed stuff> |
63 |
>> srcdist? ( <licenses of unused stuff in distfiles> )" |
64 |
>> |
65 |
>> This idea was discussed within the licenses team, and the overall |
66 |
>> reaction was positive. |
67 |
>> |
68 |
>> What do you think? |
69 |
>> |
70 |
>> Ulrich |
71 |
>> |
72 |
>> [1] http://www.gentoo.org/proj/en/glep/glep-0023.html |
73 |
>> [2] https://bugs.gentoo.org/show_bug.cgi?id=492424#c3 |
74 |
>> |
75 |
> |
76 |
> |
77 |
> |
78 |
|
79 |
-----BEGIN PGP SIGNATURE----- |
80 |
Version: GnuPG v2.0.22 (GNU/Linux) |
81 |
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ |
82 |
|
83 |
iQIcBAEBAgAGBQJSxMtZAAoJEKXdFCfdEflK4uIP/RAl9JWej7SInRWRkMRFTiWe |
84 |
SAGcvNUm7qbVKCPYWDKp82+3fN6wEXSWLRcB2nCS8jZy8adzEOF0Oqvym17J3sEI |
85 |
wfiB3lI5VNCkx7lX0wJiYIbCmKVR6PgwTdeBGcDIzdgU2TPygXLADbBu7n+54f7U |
86 |
XAWcKPQRcuAzBFxCzuL1yWQzBuovhTU9HMelPaYPkXUGvi+LWlfmDBXe2mG1gfD+ |
87 |
U8sNOyHjwuidR6slr9RjxFAkH5ItVzeRBMiE92kHurZpm06sVaqezj0Oj1PovgqS |
88 |
ap/S/ncTQa7BrhmdzEIAqaLko/bpxJkjdWvEhj+MPQ453Et5+RvztE1h5KUdXrFj |
89 |
QU/oKS2Pmh75cROlipSfN628cdBDYQ8x/eB8XIZDPKd4uc7i43tpYf8njbNNrLlG |
90 |
jdioBnXEowJ+UQ/5vDM1s8ev3FToIfZRU1nFxREdJEYXx4qVhrZ/8yBlv7RWGcbs |
91 |
IsCJEtbrUFAcNBMowQ6eN2SfWGrx8lpB+Qoh8WhsUR7XMuyBQYB0jCOOfeV8qDWd |
92 |
kZn/t2+0daTxo70KRTLiVutHbqAaBjG1BF0iwZhS5YGmDufc2hm0fKgu7tzZb/HU |
93 |
Q0jA9hgWLvAj4dqek7qp1j21af993tZadIR1gjU0WgY0HiEHFYmY1xqy8GF09ZgX |
94 |
39Jvtx4tu9UEpgk0ERYA |
95 |
=aSba |
96 |
-----END PGP SIGNATURE----- |