[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: leechcraft (closes ITP bug, 33 days have passed)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello Boris,

On 08.11.2011 15:58, Boris Pek wrote:
>> qxmpp, Qxt, eiskaltdcpp, miniupnpc, parseUri, lightbox,
>> hunspell/myspell (and anything else in 3rdparty or third-party dirs)
>> are either already in Debian or should be packaged separately, you
>> should not include them in the binary package or tarball.
> 
> You are really mistaken at this point. Maybe you have read my description
> inattentive or I have write it not enough clean. So I should explain here...
> 
...
> All these files were carefully described in suitable sections of
> debian/copyright file. And I don't see any reason to break current structure of
> the package.

I'm sorry, but our policy is very clear on this point. Please refer to
§4.13 [1] for some more background. While it is not a strict must
requirement for every case, there are very good reasons to avoid
embedded code copies whenever possible. I'd consider your case as "when
possible" which makes it somewhat unlikely to find a sponsor for it as
is, which would upload your package.

Note, some popular packages aren't part of Debian for this very same
reason. Think of xbmc for example [2].

We, as a distribution have to be very careful when embedding libraries
and third party applications into a package. You can happily do that
upstream if the respective licenses allow that, but such a package is
not maintainable in a distribution for the general public. Think of
security updates, transitions and other updates and we didn't even talk
about the waste of space yet.

That's especially true for you, who are embedding regular packages into
your binary package which works fine for ... well a lot of reverse
dependencies. If it does not work for you as is with your upstream
source, well, I'd expect the problem to be with it rather on your side.


[1] http://www.debian.org/doc/debian-policy/ch-source.html#s-embeddedfiles
[2] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=469397
- -- 
with kind regards,
Arno Töll
IRC: daemonkeeper on Freenode/OFTC
GnuPG Key-ID: 0x9D80F36D
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=2WZU
-----END PGP SIGNATURE-----
Reply to: