1. Forum
  2. Usenet
  3. LINUX.DEBIAN.BUGS.DIST

  • Bug#1084795: RFS: openmohaa/0.80.0+dfsg-1 [ITP] -- military WWII first-

    From =?UTF-8?Q?S=C3=A9bastien_Noel?=@21:1/5 to Phil Wyett on Fri Dec 27 22:10:01 2024
    Control: tags -1 -moreinfo

    On 27/12/24 16:16, Phil Wyett wrote:
    Control: tags -1 -confirmed
    Control: tags -1 +moreinfo

    Sebiastien,

    [...]
    2. Lintian [3]: Issue

    Lintian should be happy now https://salsa.debian.org/games-team/openmohaa/-/commit/36e898f6487245934bfdc2fe31658e854c0a0174

    3. Licenses [4]: Issue, possible false positives

    philwyett@ks-tarkin:~/Development/builder/debian/openmohaa-0.80.0+dfsg$ lrc en: Versions: recon 3.2 check 3.3.9-1

    Parsing Source Tree ....
    Reading d/copyright ....
    Running licensecheck ....

    d/copyright | licensecheck

    public-domain | GPL-2 and/or public-domain code/autoupdater/autoupdater.c RSA-MD5 | NTP code/gamespy/md5c.c
    RSA-MD5 | NTP code/gamespy/md5.h
    GPL-2+ | Zlib code/qcommon/unzip.h
    public-domain | GPL-2 and/or public-domain code/sys/sys_autoupdater.c RSA-MD4 | NTP code/tools/ommap/common/md4.c

    this tool's output is full of false positive.
    - I don't know why it guess that all the RSA licenses should be "NTP
    license" (whatever "NTP" is in that context, I suppose it has nothing to
    do with Network Time Protocol)
    - I already argued here https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1084795#43 that the autoupdater files are public-domain.


    [...]

    br,
    Sébastien

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Soren Stoutner@21:1/5 to All on Fri Dec 27 14:22:01 2024
    XPost: linux.debian.devel.mentors

    Sebastien,

    On Friday, December 27, 2024 2:01:48 PM MST Sébastien Noel wrote:
    3. Licenses [4]: Issue, possible false positives

    philwyett@ks-tarkin:~/Development/builder/debian/openmohaa-0.80.0+dfsg$
    lrc
    en: Versions: recon 3.2 check 3.3.9-1

    Parsing Source Tree ....
    Reading d/copyright ....
    Running licensecheck ....

    d/copyright | licensecheck

    public-domain | GPL-2 and/or public-domain code/autoupdater/
    autoupdater.c
    RSA-MD5 | NTP code/gamespy/md5c.c
    RSA-MD5 | NTP code/gamespy/md5.h
    GPL-2+ | Zlib code/qcommon/unzip.h
    public-domain | GPL-2 and/or public-domain code/sys/sys_autoupdater.c RSA-MD4 | NTP code/tools/ommap/common/md4.c

    this tool's output is full of false positive.
    - I don't know why it guess that all the RSA licenses should be "NTP
    license" (whatever "NTP" is in that context, I suppose it has nothing to
    do with Network Time Protocol)
    - I already argued here https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1084795#43 that the autoupdater files are public-domain.

    lrc can be helpful, but it is prone to false positives. As long as you have verified that these are incorrect and that debian/copyright is accurate I wouldn’t worry about it.

    --
    Soren Stoutner
    soren@debian.org
    -----BEGIN PGP SIGNATURE-----

    iQIzBAABCgAdFiEEJKVN2yNUZnlcqOI+wufLJ66wtgMFAmdvGnkACgkQwufLJ66w tgOBDxAAgyplXvonBqANAIxTvXxvIitjm+G7KiRpSUEJD6P/ccaZkwGrtuWD9teb FS7ND+yg4sbrYf1auMk0WlMWIPPHGzzcdfvf8tG/stHYlC9hDIk48gDo8XWuhtzF lOFYoHNUq5zwaDdYFttadaGb5TpHrbozLMDJFjTjUYcmInzXqbjyD0LIXSfImJOP dE+o0gPqLqNWwgC+fjfQeZdDzryz+ZYFG+kiZQVnoJatosaUDyaXFYxrHC2eoHwo 1HO2jeHtgp1FAvMxf/2EAD/ZrguFsBJ+Jye2c3LGRTMBhM9cS5bDy8ovSzJ19Udb vGRdqu/t4CnAQqkFwOUSYwlYSCK3X9YULKFSXHb6LyQDBPeXCK7wSnzaHzIRPYYf tnj1aZj+f+XGn2DXItEVCZSnb8vzh5R5V2tqDvGerVoLBi3P7Q1Iy2qxB3raGr3u 3WZOqnu30H9DiAJT6vbMpjJBcy3wRY/ueg4fs8cWs2mdRe1W2/X8NBL4CHP4yYek mfuZByxViZFps/OPiqY/Jo7WNAzeDezrBG7ZD6SDX+M2YYp94+FuOlXhGTgLbp+e xrW4CZRM7hp6G4cM+8R4/4MMTtojBRi0svkLUYFL5b3/koQ4ibBHThr0QRp/kySn OKGpvXJuCD99p6Qk2K8Y8vQoegpGYCcdOijMbPH7cru5NJTMfdc=
    =Dbzj
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)