Intent to repackage Kali's bulk_extractor

To: Debian Security Tools Packaging Team <debian-security-tools@lists.debian.org>
Subject: Intent to repackage Kali's bulk_extractor
From: Jan Gru <j4n6ru@gmail.com>
Date: Fri, 18 Jun 2021 10:29:39 +0200
Message-id: <[🔎] 86bec243-8760-997c-febb-8a1824e7461c@gmail.com>

Dear team,

I have a quick question regarding a potential packaging of the software`bulk_extractor`, which is already distributed in Kali.I think, bulk_extractor could be a valuable contribution to Debian'sforensic packages as well.However, pkg-security-team's "Kali-Debian-tracker-spreadsheet" statesthe following Lintian errors regarding bulk_extractor:


```
- 1 possible-gpl-code-linked-with-openssl
- 1 license-problem-json-evil
``` [0]

Libopenssl seems to be only required by afflib [1] which is alreadypackaged by debian [2]. Is there a way to overcome this license issuewithout asking upspream for explicit permission of the linking ofGPL-licensed code with OpenSSL libraries?

Regarding the license-problem-json-evil: There is just one source filederived from the problematic JSON-project, which includes this license[3]. Is there a way to resolve this? If yes, what would be yourrecommendation to do so?


Thank you already in advance for an answer.

Best regards
    Jan

---

[0]https://docs.google.com/spreadsheets/d/1muSrob3G1c7ZwHlxfDAho4qtdJ9pZNycCKT9kWyIJkw/edit#gid=1566900788,row 25[1]https://github.com/simsong/bulk_extractor/blob/b287b06da0bc069681d988bf1a40e9b69437ddcf/configure.ac#L332

[2] https://salsa.debian.org/pkg-security-team/afflib

[3]https://github.com/simsong/bulk_extractor/blob/master/src/scan_json.cpp#L20

Reply to:

Prev by Date: Re: Request for review/upload of regripper 3.0-1
Next by Date: Request for join the team
Previous by thread: Greenbone Source Edition Docs
Next by thread: Request for join the team
Index(es):
- Date
- Thread