On Sun, 23 Feb 2020 20:35:40 +0100 Bastian Germann <bastiangerm...@fishpost.de> wrote: > Package: kmod > Version: 26-1 > Severity: serious > > All of the GPL-2+ licensed executables contained in the kmod binary > package link to libcrypto even though they do not have any OpenSSL > license exception. ftp-master considers this a serious issue. So please > remove this optional dependency or ask upstream for a license exception.
Doesn't really help to add such a license exception as you also need to consider users of libkmod and check the rdep tree recursively. Imho the only sane way to deal with this is to treat OpenSSL as a system library and apparently other distros with actual legal counsel handle it that way. Regards, Michael
signature.asc
Description: OpenPGP digital signature
