Bug#840333: rapidjson: Includes jsonchecker testsuite, licensed under the infamous json "good not evil" license
>Ok, sorry for the noise, I did see it... Oops, There is a "not" missing... -- tobi
Bug#840333: rapidjson: Includes jsonchecker testsuite, licensed under the infamous json "good not evil" license
Am Dienstag, den 11.10.2016, 10:59 +0200 schrieb Rene Engelhard: > found 840333 0.12~git20141031-3 > thanks > > Hi, > > On Mon, Oct 10, 2016 at 07:18:48PM +0200, Tobias Frost wrote: > > The library includes the jsonchecker testsuite, which is from > > json.org. > > Upstream of rapidjson mentions in a later README that this is under > > the > > particular license here: > > > > https://github.com/miloyip/rapidjson/blob/master/license.txt > > > > It also clarifies that only the bin/jsonchecker is covered by this > > and if the > > license is a problem upstream suggests to remove bin/jsonchecker. > > > > So this package is in violation of the DFSG. > > > I saw that commit, but bin(jsonchecker only contains json data > (admittedly > without license info, except the pointer in readme.txt) , no actual > checker? Yes, ist only the testdata, but IMHO it is copyrightable. It was my assumption that the testdata is under the json license, as everything from json.org is released under this license and the data is published in the context of the checker. (No license would be even worse, actually) Probably we'd need to ask.. > > As I need rapidjson as a dependency for rbdoom3bfg, I will looking > > into NMUing > > it. Feedback from the maintainer would be appreciated though if > > they want to > > package the new upstream version :) > > > The new upstream version IS packaged. > See https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=799899 > > $ rmadison rapidjson > debian: > rapidjson | 0.12~git20141031-3 | stretch | source > rapidjson | 0.12~git20141031-3 | sid | source > rapidjson | 1.1.0-1| experimental | source > new: Ok, sorry for the noise, I did see it... (Actually the version in sid fine enough for me) At the point of the writing I did not realize that the remedy suggested by upstream (for the license thing) is to remove the testsuite, so the new version won't be better than the current one in sid. > That is no help though given > https://github.com/KhronosGroup/glTF/issues/417 > is still open.. :/ > > Regards, > > Rene > -- tobi
Processed: Re: Bug#840333: rapidjson: Includes jsonchecker testsuite, licensed under the infamous json "good not evil" license
Processing commands for cont...@bugs.debian.org: > found 840333 0.12~git20141031-3 Bug #840333 [src:rapidjson] rapidjson: Includes jsonchecker testsuite, licensed under the infamous json "good not evil" license Marked as found in versions rapidjson/0.12~git20141031-3. > thanks Stopping processing here. Please contact me if you need assistance. -- 840333: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=840333 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#840333: rapidjson: Includes jsonchecker testsuite, licensed under the infamous json "good not evil" license
found 840333 0.12~git20141031-3 thanks Hi, On Mon, Oct 10, 2016 at 07:18:48PM +0200, Tobias Frost wrote: > The library includes the jsonchecker testsuite, which is from json.org. > Upstream of rapidjson mentions in a later README that this is under the > particular license here: > > https://github.com/miloyip/rapidjson/blob/master/license.txt > > It also clarifies that only the bin/jsonchecker is covered by this and if the > license is a problem upstream suggests to remove bin/jsonchecker. > > So this package is in violation of the DFSG. I saw that commit, but bin(jsonchecker only contains json data (admittedly without license info, except the pointer in readme.txt) , no actual checker? > As I need rapidjson as a dependency for rbdoom3bfg, I will looking into NMUing > it. Feedback from the maintainer would be appreciated though if they want to > package the new upstream version :) The new upstream version IS packaged. See https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=799899 $ rmadison rapidjson debian: rapidjson | 0.12~git20141031-3 | stretch | source rapidjson | 0.12~git20141031-3 | sid | source rapidjson | 1.1.0-1| experimental | source new: That is no help though given https://github.com/KhronosGroup/glTF/issues/417 is still open.. :/ Regards, Rene
Bug#840333: rapidjson: Includes jsonchecker testsuite, licensed under the infamous json "good not evil" license
Package: src:rapidjson Severity: serious Tags: upstream fixed-upstream Justification: DFSG The library includes the jsonchecker testsuite, which is from json.org. Upstream of rapidjson mentions in a later README that this is under the particular license here: https://github.com/miloyip/rapidjson/blob/master/license.txt It also clarifies that only the bin/jsonchecker is covered by this and if the license is a problem upstream suggests to remove bin/jsonchecker. So this package is in violation of the DFSG. (Packaging a new upstream version and stripping the dir will solve this, so marking this as "fixed-upstream") As I need rapidjson as a dependency for rbdoom3bfg, I will looking into NMUing it. Feedback from the maintainer would be appreciated though if they want to package the new upstream version :) -- tobi -- System Information: Debian Release: stretch/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.7.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)