cabal2nix: Assume "unknown" hackage license to be free #520
Conversation
035df9f to
8e66a64
Compare
|
Crucially, hackage doesn't require uploaders to grant anyone permission to distribute binary forms of their packages. However in practice this is probably not an issue. The restrictions on binary redistributions are usually accompanied with a requirement to distribute the source code with it (arguably we comply to this since you can trivially obtain the Also as you've argued in effect this doesn't really change anything. |
|
As a side note, we should probably add a way to blacklist a package (which, I guess replaces the package with a |
| @@ -165,5 +165,5 @@ fromSPDXLicense (SPDX.License expr) = | |||
|
|
|||
| isFreeLicense :: Distribution.Nixpkgs.License.License -> Bool | |||
| isFreeLicense (Known "lib.licenses.unfree") = False | |||
| isFreeLicense (Unknown Nothing) = False | |||
| isFreeLicense (Unknown Nothing) = True | |||
There was a problem hiding this comment.
Could you leave a comment on this line explaining the reasoning for this?
Probably just copying some of the PR comment body here would be fine.
If someone is looking through this code, I imagine they might be surprised that unknown licenses are marked as free.
Other than that, this LGTM!
We are currently very inconsequent in regard to "unknown" licenses. In general they stem from packages having their license field set to "LicenseRef-OtherLicense" accompanied by a LICENSE file which specifies the real license. Currently in nixpkgs "unknown" licenses result in hydra builds being disabled for that package, but the package is not treated as "unfree" by anything else in nixpkgs. Users don‘t get warnings when they use them and we actually very often build those packages on hydra because they are dependencies on other packages with free licenses. This change simply acknowledges the fact that we are already building and distributing most of these packages by giving them their own hydra job.
8e66a64 to
d9c48e3
Compare
We are currently very inconsequent in regard to "unknown" licenses. In
general they stem from packages having their license field set to
"LicenseRef-OtherLicense" accompanied by a LICENSE file which specifies
the real license.
Currently in nixpkgs "unknown" licenses result in hydra builds being
disabled for that package, but the package is not treated as "unfree" by
anything else in nixpkgs. Users don‘t get warnings when they use them
and we actually very often build those packages on hydra because they
are dependencies on other packages with free licenses.
This change simply acknowledges the fact that we are already building
and distributing most of these packages by giving them their own hydra
job.
Here are the arguments in favor of this:
hackage2nix config.
This is the easiest solution to deal with the existing inconsistencies.
All other approaches would be more invasive and would mean more
maintainer overhead.
While this might not be the best overall solution for dealing with
licenses, e.g. we could try to get rid of all stringly licenses, we can
always do that improvements later.