Re: Is the APSL 2.0 DFSG-compliant?

To: debian-legal@lists.debian.org, pabs@debian.org
Subject: Re: Is the APSL 2.0 DFSG-compliant?
From: Ben Westover <kwestover.kw@gmail.com>
Date: Thu, 4 Aug 2022 22:50:59 -0400
Message-id: <[🔎] 20dc6ede-694c-ec70-8994-948811bfe57b@gmail.com>
In-reply-to: <[🔎] 3b4188b293a2ca5f530ca0f339e8c1ef9a8dec88.camel@debian.org>
References: <[🔎] 31563839-5db4-8877-c78b-2b682f91fb21@gmail.com> <[🔎] c1b3397f-de7c-679a-52fa-e73665f1d13b@ionic.de> <[🔎] e5d332a6-95c3-1ac4-bb97-2895e3c3700d@gmail.com> <[🔎] 3b4188b293a2ca5f530ca0f339e8c1ef9a8dec88.camel@debian.org>

Hello,

On 8/4/22 8:30 PM, Paul Wise wrote:
> What would have changed since the 2004 review of APSL 2.0?

Here's a quote from that 2020 challenge of the APSL-1.2 being considered
non-free in 2001:

> For the APSL-1.2, it seems that the only clause that makes the
> license non-DFSG-compliant is this one:
>
>> (c)  You must make Source Code of all Your Deployed Modifications
>>      publicly available under the terms of this License, including
>>      the license grants set forth in Section 3 below, for as long as
>>      you Deploy the Covered Code or twelve (12) months from the date
>>      of initial Deployment, whichever is longer. You should
>>      preferably distribute the Source Code of Your Deployed
>>      Modifications electronically (e.g. download from a web site);
>
> It was claimed in [6] that this clause makes the APSL-1.2
> non-DFSG-compliant as it's not possible for Debian to keep every
> single modification around for at least 12 months.
>
> This claim may have been valid in 2001, but I think it does not hold
> up for 2020 since source code to packaging in Debian is usually
> maintained in Salsa or Github and therefore keeping all modifications
> available for 12 months and longer, plus there is Debian Snapshots [7]
> which keeps a older versions of a package around as well - including
> source code.

Things like this make me question whether the 2004 decision to consider
the APSL 2.0 non-DFSG-compliant is still valid in 2022. In fact, after
reading through the thread [1] the wiki references making the APSL 2.0
incompatible with the DFSG, I'm not so sure it does that. IANAL, but
from what I could understand it seemed that there was a good argument
that the alleged non-DFSG clauses actually *did* comply with the DFSG,
and that argument wasn't fully refuted. The wiki references one other
thread, but that thread is specifically about the APSL 1.2, which the
APSL 2.0 fixes the issues of according to the FSF. That thread was
finished about two years before the APSL 2.0 came into existence.

I just want to reopen the issue of whether or not the APSL 2.0, not 1.2,
is DFSG-compliant, reviewing it fully instead of relying on a
questionable decision made in 2001/4.

Thanks,
--
Ben Westover

[1]: https://lists.debian.org/debian-legal/2004/06/msg00573.html

Attachment: OpenPGP_signature
Description: OpenPGP digital signature

Reply to:

Follow-Ups:
- Re: Is the APSL 2.0 DFSG-compliant?
  - From: Walter Landry <wlandry@wlandry.net>

References:
- Is the APSL 2.0 DFSG-compliant?
  - From: Ben Westover <kwestover.kw@gmail.com>
- Re: Is the APSL 2.0 DFSG-compliant?
  - From: Mihai Moldovan <ionic@ionic.de>
- Re: Is the APSL 2.0 DFSG-compliant?
  - From: Ben Westover <kwestover.kw@gmail.com>
- Re: Is the APSL 2.0 DFSG-compliant?
  - From: Paul Wise <pabs@debian.org>

Prev by Date: Re: Is the APSL 2.0 DFSG-compliant?
Next by Date: Re: Is the APSL 2.0 DFSG-compliant?
Previous by thread: Re: Is the APSL 2.0 DFSG-compliant?
Next by thread: Re: Is the APSL 2.0 DFSG-compliant?
Index(es):
- Date
- Thread