Dne 10. 05. 22 v 9:17 Florian Weimer napsal(a):
For individual packages, should Fedora use the SPDX identifiers employed
by upstream, or the ones we believe match the actual license of the
package?
Good question.
I think this is the same situation as we have right now. I have seen SW which claims to be licensed under MIT license,
but actually some files were under differente license. So we have in SPEC file:
# file foo.c is licensed under GPL
# everything else is MIT
License: MIT and GPL
To answer your question - you should use the identifier the you believe match the actual license and document the
difference from upstream in comment above the tag. Ideally with the link to upstream issue.
Miroslav
_______________________________________________
legal mailing list -- legal@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to legal-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/legal@xxxxxxxxxxxxxxxxxxxxxxx
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
