Hello,

Wrt to Go, new packages and updated packages that are statically linked have correct license info. I have made a script to generate them in Pagure Go-sig tools.

We probably need to do a pass on the whole set of binary packages but this is taken into account.

Best regards,

Robert-André

On Mon, 30 Oct 2023, 12:02 Fabio Valentini, <decathorpe@gmail.com> wrote:

On Mon, Oct 30, 2023 at 10:56 AM Daniel P. Berrangé <berrange@redhat.com> wrote:
>
> The act of copying content from one RPM build dependancy package into
> the RPM output is a more general problem that Doxygen, with static
> linking being the poster-child for it. This static linking happens
> continually with some languages like Rust/Go/Ocaml, and AFAICT the
> license tags implications have been essentially ignored.

This is just not true, especially for Rust. We do our best to
accurately reflect statically linked dependencies, and we have helper
scripts / macros to determine *which* dependencies are actually linked
into the final binaries, and which are only needed at build-time. And
I also do similar things for the one Go package I maintain.

Fabio
_______________________________________________
legal mailing list -- legal@lists.fedoraproject.org
To unsubscribe send an email to legal-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/legal@lists.fedoraproject.org
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue