GPLv3

Wed Dec 19 14:33:53 CET 2007

Andreas Metzler <ametzler at downhill.at.eu.org> writes:

> On 2007-12-16 Simon Josefsson <simon at josefsson.org> wrote:
>> Andreas Metzler <ametzler at downhill.at.eu.org> writes:
> [...]
>> I'd expect this to be quite few libraries.  For my information, how do
>> you generate a list of packages that link to libgnutls-extra?
> [...]
>
> Brute force shellscripting. Unpack all packages depending on
> libgnutls13 (that is only direct linking.) and check ldd output.
>
> ametzler at merkel:/tmp/gnut$ zcat /org/ftp.root/debian/dists/unstable/*/binary-ia64/Packages.gz | grep-dctrl -FDepends -sFilename libgnutls13 | sed -e 's_^Filename: _/org/ftp.root/debian/_' > rdep-files
> ametzler at merkel:/tmp/gnut$ for i in `cat rdep-files ` ; do dpkg -x $i `basename $i _ia64.deb` ; done
> ametzler at merkel:/tmp/gnut$ for i in `find -type f -print` ; do if ldd "$i" 2>/dev/null | grep -q libgnutls- ; then echo $i ; fi; done > /tmp/reffer.gnutls 2>&1 

Thanks.

>> > Most of the packages listing GPLv2 as license seem to be false
>> > positives or a least unclear (freewheeling, gkrellm, kildclient,
>> > sipsak). ssmtp is also in the unclear camp. lynx seems to be the only
>> > package that actually will lose its SSL functionality, since it is
>> > GPLv2.
>
>> Can't they just stop using libgnutls-extra?
>
> I was not aiming to dig in to depths of code, and just checked
> licenses.  I have submitted bug reports against the unclear packages,
> asking for clarification or a possible switch to GPLv2+. gkrellm is
> already resolved.
>
> #456433 #456440 #456439 #456442

Interesting, ssmtp uses libgnutls-openssl.  The copyright seems indeed
rather unclear, so until it has been clarified, I don't think we should
take any action to re-license anything.

>> Lynx doesn't support OpenPGP or SRP authentication anyway, does it?
>> I don't see why it needs to link with libgnutls-extra.
> [...]
>
> lynx is using the OpenSSL compatibility layer. I do not know why it
> links against -extra, too.

It doesn't seem to link to extra here:

mocca:/home/jas# ldd /usr/bin/lynx
        linux-gate.so.1 =>  (0xffffe000)
        libbz2.so.1.0 => /lib/libbz2.so.1.0 (0xb7f0c000)
        libncursesw.so.5 => /lib/libncursesw.so.5 (0xb7ed0000)
        libgnutls-openssl.so.13 => /usr/lib/libgnutls-openssl.so.13 (0xb7ec4000)
        libgnutls.so.13 => /usr/lib/libgnutls.so.13 (0xb7e4d000)
        libcrypt.so.1 => /lib/i686/cmov/libcrypt.so.1 (0xb7e1b000)
        libc.so.6 => /lib/i686/cmov/libc.so.6 (0xb7cce000)
        libz.so.1 => /usr/lib/libz.so.1 (0xb7cb9000)
        libdl.so.2 => /lib/i686/cmov/libdl.so.2 (0xb7cb5000)
        libtasn1.so.3 => /usr/local/lib/libtasn1.so.3 (0xb7ca5000)
        libgcrypt.so.11 => /usr/local/lib/libgcrypt.so.11 (0xb7c3d000)
        libgpg-error.so.0 => /usr/local/lib/libgpg-error.so.0 (0xb7c39000)
        libnsl.so.1 => /lib/i686/cmov/libnsl.so.1 (0xb7c21000)
        /lib/ld-linux.so.2 (0xb7f2c000)
mocca:/home/jas# 

/Simon