suve / vrms-rpm Goto Github PK

Version 1.2 of vrms-rpm had an Italian translation. Given the major overhaul of the program for version 2.0, this translation can no longer be used. It'd be awesome if we could update the translation (or create an entirely new one) for the new version.

Files containing the old translation:

• lang/outdated/it.po
• man/outdated/it.man

New text (in English) to be translated:

• lang/en.po
• man/en.man

src/lang.c:59]: (warning) 'msgstr' given to va_start() is not last named argument of the function. Did you intend to pass 'msgid'?

Source code is

int lang_print(FILE *const file, const enum MessageID msgid, ...) {
char *msgstr = lang_getmsg(msgid);
if(msgstr == NULL) return -1;

    va_list args;
    va_start(args, msgstr);

Also:

src/lang.c:71]: (warning) 'msgstr' given to va_start() is not last named argument of the function. Did you intend to pass 'number'?

Duplicate.

The Danish translation file (lang/da.po) is missing the msg_help_option_describe entry, which describes the --describe option. The man page (man/da.man) also doesn't mention the option's existence.

The French translation file (lang/fr.po) is missing the msg_help_option_describe entry, which describes the --describe option. The man page (man/fr.man) also doesn't mention the option's existence.

Version 1.2 of vrms-rpm had a Greek translation. Given the major overhaul of the program for version 2.0, this translation can no longer be used. It'd be awesome if we could update the translation (or create an entirely new one) for the new version.

Files containing the old translation:

• lang/outdated/el.po
• man/outdated/el.man

New text (in English) to be translated:

• lang/en.po
• man/en.man

Version 1.2 of vrms-rpm had a Spanish translation. Given the major overhaul of the program for version 2.0, this translation can no longer be used. It'd be awesome if we could update the translation (or create an entirely new one) for the new version.

Files containing the old translation:

• lang/outdated/es.po
• man/outdated/es.man

New text (in English) to be translated:

• lang/en.po
• man/en.man

Hi, on my system, the package texlive-rsfs shows as non-free, because its license is spelt rsfs, but your whitelist only has Rsfs (as spelt on the fedora wiki). In my own implementation I use grep -w -i, which works fine.

I also noticed texlive-lm, which is licensed GFSL. GFSL is basically LaTeX' LPPL, which Fedora considers 'free', but removes clause 6.a.

The NO_COLOR environment variable is an informal standard which states:

All command-line software which outputs text with ANSI color added should check for the presence of a NO_COLOR environment variable that, when present (regardless of its value), prevents the addition of ANSI color.

How it should work:

1. If the --colour command-line option is explicitly specified, its value is used.
2. If the --colour option is not specified (or specified as AUTO), then:
   a. Check if the NO_COLOR envvar is present. If it is, disable coloured output (NO).
   b. Check if stdout is attached to a terminal (isatty()). If it is, enable coloured output (YES).
   c. Otherwise, disable coloured output (NO).

The code, as it stands currently, performs steps 1, 2b and 2c, so this is a matter of adding the extra logic described in step 2a.

An unfortunate, but somewhat common pattern seen in licence strings is the use of a comma to list multiple licences, like so:

Licence-A, Licence-B, Licence-C

It would be good to add some support for this form to the loose classifier.

Things to consider:

• Just because a string contains a comma, it doesn't mean the comma must be a separator. For example, Fedora used the Redistributable, no modification permitted string for a long time to describe firmware blobs.
• It is not possible to determine if A, B is supposed to mean A or B or A and B. Since the former interpretation increases the risk of false-negatives (non-free software being listed as free), the latter interpretation should be used.
• When presenting the licensing breakdown to the user (via the --explain option), the program should try to remain as close as possible to the input string and use a comma to separate the individual licences.

Package names rarely make it immediately apparent what a particular program or library does. It could be helpful to add a --describe option to the program, which, akin to how --explain lists licences, would list package descriptions.

For a minimal version, --describe and --explain could be exclusive. Ideally, both can be specified and used at the same time.

Thank you for this very informative and educational vrms!

I suppose this is correct, literally speaking, but the percentage feels a bit less fair when every kernel package is counted three times. :) Feel free to close as invalid if this is intended.

$ LANG=en_GB vrms-rpm
2176 free packages (98.1% of total)
44 non-free packages (1.9% of total)
 - atmel-firmware
 - fedora-logos
 - gobject-introspection
 - google-chrome-stable
 - ipw2100-firmware
 - ipw2200-firmware
 - iwl100-firmware
 - iwl1000-firmware
 - iwl105-firmware
 - iwl135-firmware
 - iwl2000-firmware
 - iwl2030-firmware
 - iwl3160-firmware
 - iwl3945-firmware
 - iwl4965-firmware
 - iwl5000-firmware
 - iwl5150-firmware
 - iwl6000-firmware
 - iwl6000g2a-firmware
 - iwl6000g2b-firmware
 - iwl6050-firmware
 - iwl7260-firmware
 - kernel
 - kernel
 - kernel
 - kernel-core
 - kernel-core
 - kernel-core
 - kernel-devel
 - kernel-devel
 - kernel-devel
 - kernel-modules
 - kernel-modules
 - kernel-modules
 - kernel-modules-extra
 - kernel-modules-extra
 - kernel-modules-extra
 - libertas-usb8388-firmware
 - librados2
 - librbd1
 - linux-firmware
 - linux-firmware-whence
 - lttng-ust
 - microcode_ctl
$ rpm -qa | grep kernel-core
kernel-core-5.9.16-200.fc33.x86_64
kernel-core-5.10.6-200.fc33.x86_64
kernel-core-5.10.7-200.fc33.x86_64

Version 1.2 of vrms-rpm had a Portuguese translation. Given the major overhaul of the program for version 2.0, this translation can no longer be used. It'd be awesome if we could update the translation (or create an entirely new one) for the new version.

Files containing the old translation:

• lang/outdated/pt.po
• man/outdated/pt.man

New text (in English) to be translated:

• lang/en.po
• man/en.man

Version 1.2 of vrms-rpm had a French translation. Given the major overhaul of the program for version 2.0, this translation can no longer be used. It'd be awesome if we could update the translation (or create an entirely new one) for the new version.

Files containing the old translation:

• lang/outdated/fr.po
• man/outdated/fr.man

New text (in English) to be translated:

• lang/en.po
• man/en.man

Version 1.2 of vrms-rpm had a German translation. Given the major overhaul of the program for version 2.0, this translation can no longer be used. It'd be awesome if we could update the translation (or create an entirely new one) for the new version.

Files containing the old translation:

• lang/outdated/de.po
• man/outdated/de.man

New text (in English) to be translated:

• lang/en.po
• man/en.man

Version 1.2 of vrms-rpm had a Turkish translation. Given the major overhaul of the program for version 2.0, this translation can no longer be used. It'd be awesome if we could update the translation (or create an entirely new one) for the new version.

Files containing the old translation:

• lang/outdated/tr.po
• man/outdated/tr.man

New text (in English) to be translated:

• lang/en.po
• man/en.man

The Italian translation file (lang/it.po) is missing the msg_help_option_describe entry, which describes the --describe option. The man page (man/it.man) also doesn't mention the option's existence.

Rename file LICENSE

Version 1.2 of vrms-rpm had a Dutch translation. Given the major overhaul of the program for version 2.0, this translation can no longer be used. It'd be awesome if we could update the translation (or create an entirely new one) for the new version.

Files containing the old translation:

• lang/outdated/nl.po
• man/outdated/nl.man

New text (in English) to be translated:

• lang/en.po
• man/en.man

Currently, the SPDX classifier will detect if a licence string contains the WITH operator and then evaluate the licence identifier, without paying any attention if the licensing exception is a valid SPDX identifier. While an unknown exception should not cause a licence to be suddenly become non-free, it could be useful to have a way to inform the user that the exception identifier was not recognized.

Hello. In v. 2.2 fake packages with GPG keys are taken in account in the query. That's also what the rpm utility does when rpm -qa is invoked. In a system where such packages can be found, their presence can be attested with vrms-rpm --list all | grep ' gpg-pubkey$'. A preferable default behaviour would be to not take them in account. As noticeable, vrms-rpm lacks the ability to report full names of such packages.

$ vrms-rpm --list all | grep ' gpg-pubkey$'
 - gpg-pubkey
 - gpg-pubkey
$ rpm -qa | grep '^gpg-pubkey-*-*'
gpg-pubkey-5323552a-6112bcdc
gpg-pubkey-ba3c3a2c-5eb88cc6

Hello. In v. 2.2 the numbers of installed packages reported by vrms-rpm --list all and vrms-rpm --list none as total sum, differ from each other.

$ vrms-rpm --list all | wc -l
1999
$ vrms-rpm --list none
1888 free packages (94.6% of total)
109 non-free packages (5.4% of total)

vrms-rpm --list none's output | total sum of installed packages: 1997.

Worth noting: numbers of installed packages reported by rpm -qa and dnf rq --installed in IBM's Red Hat and Fedora OSs may differ from each other due to the fact that the rpm utility takes in account fake packages with GPG keys. Illustrations:

$ rpm -qa | wc -l
1991
$ dnf rq --installed | wc -l
1989
$ diff <(dnf rq --installed --nvr) <(rpm -qa --qf '%{nvr}\n') | grep '^> gpg-pubkey-' | wc -l
2

It appears that all for vrms-rpm --list behaves as rpm -qa does.

$ vrms-rpm --list all | grep ' gpg-pubkey$' | wc -l
2

This ability to count fake packages appears to be useful, thought as demonstrated here, as a dedicated option so it could be queried on demand. Yet here the non-equality of numbers of installed packages reported by vrms-rpm --list all and vrms-rpm --list none as total sum, indicates an issue.

It should be possible to control which directory make install installs stuff by specifying the DESTDIR variable. For example, doing make install DESTDIR=/home/some-user/.local should result in the program being installed to:

/home/some-user/.local/usr/local/bin
/home/some-user/.local/usr/local/share

The PREFIX variable should still be respected.

Update title README.md

Currently we have an English and a Polish translation. (Added since: Danish, Dutch, German, Indonesian, Italian, Portuguese, Spanish, Turkish.) It could be helpful for users to add support for more languages.

Each language consists of two parts: the gettext translation file (lang/*.po) and the manpage man/*.man.

Note that any new translations should be done based on the devel branch, NOT master.

Update readme text

The --explain option is very useful but I'm not sure I understand this explanation:

$ LANG=en_GB vrms-rpm --explain | grep -B1 ", MIT"
 - gobject-introspection
   GPLv2+, LGPLv2+, MIT
--
 - lttng-ust
   LGPLv2.1, MIT and GPLv2
$ vrms-rpm --version
vrms-rpm v.2.2 by suve

Why are those MIT etc. licenses listed as red? Is it maybe a parsing failure where the comma separator is not recognised, and the string "LGPLv2.1, MIT" fails to match a license?

It would be useful to add some tests to the program. We could start with some black-box tests, i.e. ones that run on a fully compiled program and just check if it produces the expected output without crashing.

Possible action points:

• Add a compile-time symbol, or a program option (--stdin?), that allows to pass any input to the program, instead of performing the RPM query
• Think of some edge cases that might be worth testing

The Indonesian translation file (lang/id.po) is missing the msg_help_option_describe entry, which describes the --describe option. The man page (man/id.man) also doesn't mention the option's existence.

vrms-rpm currently uses an ad-hoc algorithm for parsing the License: tags on packages. With SPDX becoming more widely adopted by various distributions, it would make sense to change the algorithm to comply with the SPDX license expression grammar. The current solution could then either be completely retired (preferably) or left as a fallback option.

The German translation file (lang/de.po) is missing the msg_help_option_describe entry, which describes the --describe option. The man page (man/de.man) also doesn't mention the option's existence.

Version 1.2 of vrms-rpm had a Danish translation. Given the major overhaul of the program for version 2.0, this translation can no longer be used. It'd be awesome if we could update the translation (or create an entirely new one) for the new version.

Files containing the old translation:

• lang/outdated/da.po
• man/outdated/da.man

New text (in English) to be translated:

• lang/en.po
• man/en.man

The Turkish translation file (lang/tr.po) is missing the msg_help_option_describe entry, which describes the --describe option. The man page (man/tr.man) also doesn't mention the option's existence.

The Dutch translation file (lang/nl.po) is missing the msg_help_option_describe entry, which describes the --describe option. The man page (man/nl.man) also doesn't mention the option's existence.

The Greek translation file (lang/el.po) is missing the msg_help_option_describe entry, which describes the --describe option. The man page (man/el.man) also doesn't mention the option's existence.

The Spanish translation file (lang/es.po) is missing the msg_help_option_describe entry, which describes the --describe option. The man page (man/es.man) also doesn't mention the option's existence.

I'd like to make a new release before the end of the year. The following translations could use updating:

• Danish (da)
  • missing translation for HELP_OPTION_EVRA, ERR_BADOPT_EVRA and ERR_BADOPT_NOARG
  • man page missing description for the --evra option
• Greek (el)
  • missing translation for HELP_OPTION_EVRA and ERR_BADOPT_EVRA
  • man page missing description for the --evra option
• Spanish (es)
  • missing translation for HELP_OPTION_EVRA, ERR_BADOPT_EVRA and ERR_BADOPT_NOARG
  • man page missing description for the --evra option
• French (fr)
  • missing translation for HELP_OPTION_EVRA and ERR_BADOPT_EVRA
  • man page missing description for the --evra option
• Portuguese (pt)
  • missing translation for HELP_OPTION_EVRA, ERR_BADOPT_EVRA and ERR_BADOPT_NOARG
  • man page missing description for the --colour, --describe, --evra, --image and --licence-list options
• Turkish (tr)
  • missing translation for HELP_OPTION_EVRA, ERR_BADOPT_EVRA and ERR_BADOPT_NOARG
  • man page missing description for the --evra option
• Ukrainian (uk)
  • missing translation for HELP_OPTION_EVRA, ERR_BADOPT_EVRA and ERR_BADOPT_NOARG
  • man page missing description for the --evra option

The SPDX spec had its version 3.0 released in April this year. Among the changes from the previous version (v2.3) is support for lower-case operators - i.e. and, or, with.

It must be noted that this does *not* mean that the operators are now case-insensitive:

License expression operators (AND, and, OR, or, WITH and with) should be matched in a case-sensitive manner, i.e., letters must be all upper case or all lower case.

https://spdx.github.io/spdx-spec/v3.0/annexes/SPDX-license-expressions/#d2-case-sensitivity

The Portuguese translation file (lang/pt.po) is missing the msg_help_option_describe entry, which describes the --describe option. The man page (man/pt.man) also doesn't mention the option's existence.

Version 1.2 of vrms-rpm had an Indonesian translation. Given the major overhaul of the program for version 2.0, this translation can no longer be used. It'd be awesome if we could update the translation (or create an entirely new one) for the new version.

Files containing the old translation:

• lang/outdated/id.po
• man/outdated/id.man

New text (in English) to be translated:

• lang/en.po
• man/en.man

Currently, the loose classifier supports licensing exceptions by way of matching the end of the licence string against a fixed list of suffixes, like so:

•  with fonts exception
•  with linking exception
• -with-fonts-exception
• -with-linking-exception

This is very inefficient - a licence string will be compared against all suffixes, even if it doesn't contain  with  nor -with-; and made even worse by the fact that every suffix exists in two forms (space-separated and dash-separated).

It would be good to change this to utilise a mechanism similar to the spdx classifier, where we locate the  with  (or -with-) substring and split the expression into licence name and exception name parts.

While at it, support for the , with form could also be added, as I've stumbled across it a few times.

There are many grammatical mistakes here in readme.md