Adrian Bunk wrote: > Package: tracker > Version: 0.6.90-4+b1 > Severity: serious > > $ ldd /usr/lib/tracker/trackerd | grep ssl > libssl.so.0.9.8 => /usr/lib/libssl.so.0.9.8 (0x00007f8d7dec1000) > $ > > /usr/share/doc/tracker/copyright says: > > <-- snip --> > > .... > License: > > All files if not specified otherwise are licensed under the GPL v2 or later. > .... > > <-- snip --> > > > I didn't find any statement that all copyright holders of GPL'ed code > in tracker have given extra permission to link with OpenSSL. > > > See also question 28 at > http://people.debian.org/~bap/dfsg-faq > > > -- System Information: > Debian Release: squeeze/sid > APT prefers unstable > APT policy: (500, 'unstable'), (500, 'testing') > Architecture: amd64 (x86_64) > .... > Versions of packages tracker depends on: > .... > ii libcurl3 7.18.2-8.1 Multi-protocol file transfer > libra > ^^^^^^^^
Tracker itself does not link against libssl. Problems seems to be, that it uses libraptor, which itself uses libcurl3, that then pulls libssl. I don't see, how I can do something about that within the tracker package. FWIW, the tracker debian package has no dependency on libssl. Could you clarify, where you see the license violation. Michael -- Why is it that all of the instruments seeking intelligent life in the universe are pointed away from Earth?
signature.asc
Description: OpenPGP digital signature
