Merge branch 'development/v3.0.1' into update-chap-intro

bact · Aug 9, 2024 · a4a72f4 · a4a72f4
2 parents 86e2df3 + 0dbf279
commit a4a72f4
Show file tree

Hide file tree

Showing 6 changed files with 273 additions and 90 deletions.
diff --git a/docs/annexes/diffs-from-previous-editions.md b/docs/annexes/diffs-from-previous-editions.md
@@ -2,6 +2,12 @@
 
 ## A.1 Differences between V3.0 and V2.3 <a name="A.1"></a>
 
+### SPDX meaning
+
+In previous editions of the specification, SPDX meant "Software Package Data Exchange".
+
+Starting with V3.0, the scope of SPDX has expanded beyond software and now means "System Package Data Exchange".
+
 ### Structural Differences
 
 These are the most significant breaking changes requiring a change in logic to handle a different model or structure for the information.  Each structural difference will describe the change, describe an approach to translate from 2.3 to 3.0, and provide a rationale for the change.

diff --git a/docs/annexes/license-matching-guidelines-and-templates.md b/docs/annexes/license-matching-guidelines-and-templates.md
@@ -1,8 +1,10 @@
-# Annex C License matching guidelines and templates (Informative)
+# Annex C SPDX License List Matching Guidelines and Templates (Informative)
 
 ## C.1 SPDX license list matching guidelines <a name="C.1"></a>
 
-The SPDX License List Matching Guidelines provide guidelines to be used for the purposes of matching licenses and license exceptions against those included on the SPDX License List. There is no intent here to make a judgment or interpretation, but merely to ensure that when one SPDX user identifies a license as "BSD-3-Clause," for example, it is indeed the same license as what someone else identifies as "BSD-3-Clause" and the same license as what is listed on the SPDX License List.  As noted here, some of the matching guidelines are implemented in the XML files of the SPDX License List repository.
+The SPDX License List Matching Guidelines provide guidelines to be used for the purposes of matching licenses and license exceptions against those included on the [SPDX License List](https://spdx.org/licenses/).
+There is no intent here to make a judgment or interpretation, but merely to ensure that when one SPDX user identifies a license as "BSD-3-Clause," for example, it is indeed the same license as what someone else identifies as "BSD-3-Clause" and the same license as what is listed on the SPDX License List.
+As noted here, some of the matching guidelines are implemented in the XML files of the SPDX License List repository.
 
 ## C.2 How these guidelines are applied <a name="C.2"></a>
 
@@ -34,17 +36,20 @@ Matched text should only include that found in the vetted license or exception t
 
 Some licenses include text that refers to the specific copyright holder or author, yet the rest of the license is exactly the same. The intent here is to avoid the inclusion of a specific name in one part of the license resulting in a non-match where the license is otherwise an exact match to the legally substantive terms (e.g., the third clause and disclaimer in the BSD licenses, or the third, fourth, and fifth clauses of Apache-1.1). In these cases, there should be a positive license match.
 
-The text indicated as such can be replaced with similar values (e.g., a different name or generic term; different date) and still be considered a positive match. This rule also applies to text-matching in official license headers (see Guideline: official license headers).
-  
-The following XML tag is used to implement this guideline.  `<alt>` with 2 attributes:
+The text indicated as such can be replaced with similar values (e.g., a different name or generic term; different date) and still be considered a positive match.
+This rule also applies to text-matching in official license headers
+(see [Guideline: official license headers](#C.2.2)).
 
-* `match` - a POSIX extended regular expression (ERE) to match the replaceable text
-* `name` - an identifier for the variable text unique to the license XML document
+The following XML tag is used to implement this guideline. `<alt>` with 2 attributes:
+
+- `match` - a POSIX extended regular expression (ERE) to match the replaceable text
+- `name` - an identifier for the variable text unique to the license XML document
 
 The original text is enclosed within the beginning and ending alt tags.
 
-For example: `<alt match="(?i:copyright.{0,200})." name="copyright1">Copyright Linux Foundation</alt>`
-
+For example:
+`<alt match="(?i:copyright.{0,200})." name="copyright1">Copyright Linux Foundation</alt>`
+
 The original replaceable text appears on the SPDX License List webpage in red text.
 
 ### C.3.5 Guideline: omittable text <a name="C.3.5"></a>
@@ -54,8 +59,9 @@ Some licenses have text that can simply be ignored. The intent here is to avoid
 The license should be considered a match if the text indicated is present and matches OR the text indicated is missing altogether.
 
 The following XML tag is used to implement this guideline: `<optional>`
-
-For example: `<optional>Apache License Version 2.0, January 2004 http://www.apache.org/licenses/</optional>`
+
+For example:
+`<optional>Apache License Version 2.0, January 2004 http://www.apache.org/licenses/</optional>`
 
 Omittable text appears on the SPDX License List webpage in blue text.
 
@@ -67,83 +73,88 @@ To avoid the possibility of a non-match due to different spacing of words, line
 
 ### C.4.2 Guideline <a name="C.4.2"></a>
 
-All whitespace should be treated as a single blank space. 
+All whitespace should be treated as a single blank space.
 
-XML files do not require specific markup to implement this guideline. 
+XML files do not require specific markup to implement this guideline.
 
 ## C.5 Capitalization <a name="C.5"></a>
 
-### C.5.1  Purpose <a name="C.5.1"></a>
+### C.5.1 Purpose <a name="C.5.1"></a>
 
 To avoid the possibility of a non-match due to lowercase or uppercase letters in otherwise the same words.
 
-### C.5.2  Guideline <a name="C.5.2"></a>
+### C.5.2 Guideline <a name="C.5.2"></a>
 
-All uppercase and lowercase letters should be treated as lowercase letters. 
+All uppercase and lowercase letters should be treated as lowercase letters.
 
-XML files do not require specific markup to implement this guideline. 
+XML files do not require specific markup to implement this guideline.
 
 ## C.6 Punctuation <a name="C.6"></a>
 
-### C.6.1  Purpose <a name="C.6.1"></a>
+### C.6.1 Purpose <a name="C.6.1"></a>
 
-Because punctuation can change the meaning of a sentence, punctuation needs to be included in the matching process. 
+Because punctuation can change the meaning of a sentence, punctuation needs to be included in the matching process.
 
-XML files do not require specific markup to implement this guideline, unless to indicate an exception to the guideline. 
+XML files do not require specific markup to implement this guideline, unless to indicate an exception to the guideline.
 
-### C.6.2  Guideline: punctuation <a name="C.6.2"></a>
+### C.6.2 Guideline: punctuation <a name="C.6.2"></a>
 
 Punctuation should be matched, unless otherwise stated in these guidelines or unless specific markup is added.
 
-### C.6.3  Guideline: hyphens, dashes <a name="C.6.3"></a>
+### C.6.3 Guideline: hyphens, dashes <a name="C.6.3"></a>
 
 Any hyphen, dash, en dash, em dash, or other variation should be considered equivalent.
 
-### C.6.4 Guideline: Quotes
+### C.6.4 Guideline: Quotes <a name="C.6.4"></a>
 
 Any variation of quotations (single, double, curly, etc.) should be considered equivalent.
 
 ## C.7 Code Comment Indicators or Separators <a name="C.7"></a>
 
-### C.7.1  Purpose <a name="C.7.1"></a>
+### C.7.1 Purpose <a name="C.7.1"></a>
 
-To avoid the possibility of a non-match due to the existence or absence of code comment indicators placed within the license text, e.g., at the start of each line of text, or repetitive characters to establish a separation of text, e.g., ---, ===, ___, or ***.
+To avoid the possibility of a non-match due to the existence or absence of code
+comment indicators placed within the license text, e.g., at the start of each
+line of text, or repetitive characters to establish a separation of text,
+e.g., `---`, `===`, `___`, or `***`.
 
-### C.7.2  Guideline <a name="C.7.2"></a>
+### C.7.2 Guideline <a name="C.7.2"></a>
 
-Any kind of code comment indicator or prefix which occurs at the beginning of each line in a matchable section should be ignored for matching purposes. 
+Any kind of code comment indicator or prefix which occurs at the beginning of each line in a matchable section should be ignored for matching purposes.
 
-XML files do not require specific markup to implement this guideline. 
+XML files do not require specific markup to implement this guideline.
 
-### C.7.3  Guideline <a name="C.7.3"></a>
+### C.7.3 Guideline <a name="C.7.3"></a>
 
-A non-letter character repeated 3 or more times to establish a visual separation should be ignored for matching purposes. 
+A non-letter character repeated 3 or more times to establish a visual separation should be ignored for matching purposes.
 
-XML files do not require specific markup to implement this guideline. 
+XML files do not require specific markup to implement this guideline.
 
 ## C.8 Bullets and numbering <a name="C.8"></a>
 
-### C.8.1  Purpose <a name="C.8.1"></a>
+### C.8.1 Purpose <a name="C.8.1"></a>
 
 To avoid the possibility of a non-match due to the otherwise same license using bullets instead of numbers, number instead of letter, or no bullets instead of bullet, etc., for a list of clauses.
 
-### C.8.2  Guideline <a name="C.8.2"></a>
+### C.8.2 Guideline <a name="C.8.2"></a>
 
-Where a line starts with a bullet, number, letter, or some form of a list item (determined where list item is followed by a space, then the text of the sentence), ignore the list item for matching purposes. 
+Where a line starts with a bullet, number, letter, or some form of a list item (determined where list item is followed by a space, then the text of the sentence), ignore the list item for matching purposes.
 
 The following XML tag is used to implement this guideline: `<bullet>`
 
 For example: `<bullet>1.0</bullet>`
 
 ## C.9 Varietal word spelling <a name="C.9"></a>
 
-### C.9.1  Purpose <a name="C.9.1"></a>
+### C.9.1 Purpose <a name="C.9.1"></a>
 
 English uses different spelling for some words. By identifying the spelling variations for words found or likely to be found in licenses, we avoid the possibility of a non-match due to the same word being spelled differently. This list is not meant to be an exhaustive list of all spelling variations, but meant to capture the words most likely to be found in open source software licenses.
 
-### C.9.2  Guideline <a name="C.9.2"></a>
+### C.9.2 Guideline <a name="C.9.2"></a>
 
-The words in each line of the text file available at <https://spdx.org/licenses/equivalentwords.txt> are considered equivalent and interchangeable. 
+The words in each line of the text file available at the
+[equivalent words list](https://spdx.org/licenses/equivalentwords.txt)
+are considered equivalent and interchangeable.
 
 XML files do not require specific markup to implement this guideline.
 
@@ -155,9 +166,11 @@ By having a rule regarding the use of "©", "(c)", or "copyright", we avoid the
 
 ### C.10.2 Guideline <a name="C.10.2"></a>
 
-"©", "(c)", or "Copyright" should be considered equivalent and interchangeable. 
+"©", "(c)", or "Copyright" should be considered equivalent and interchangeable.
 
-XML files do not require specific markup to implement this guideline. The copyright symbol is part of the copyright notice, see implementation of that guideline below.
+XML files do not require specific markup to implement this guideline.
+The copyright symbol is part of the copyright notice,
+see implementation of that guideline in [Copyright notice](#C.11).
 
 ## C.11 Copyright notice <a name="C.11"></a>
 
@@ -167,7 +180,7 @@ To avoid a license mismatch merely because the copyright notice (usually found a
 
 ### C.11.2 Guideline <a name="C.11.2"></a>
 
-Ignore copyright notices. A copyright notice consists of the following elements, for example: "2012 Copyright, John Doe. All rights reserved." or "(c) 2012 John Doe." 
+Ignore copyright notices. A copyright notice consists of the following elements, for example: "2012 Copyright, John Doe. All rights reserved." or "(c) 2012 John Doe."
 
 The following XML tag is used to implement this guideline: `<copyrightText>`
 
@@ -181,9 +194,9 @@ To avoid a license mismatch merely because the name or title of the license is d
 
 ### C.12.2 Guideline <a name="C.12.2"></a>
 
-Ignore the license name or title for matching purposes, so long as what ignored is the title only and there is no additional substantive text added here. 
+Ignore the license name or title for matching purposes, so long as what ignored is the title only and there is no additional substantive text added here.
 
-The following XML tag is used to implement this guideline: `<titleText>` 
+The following XML tag is used to implement this guideline: `<titleText>`
 
 For example: `<titleText>Attribution Assurance License</titleText>`
 
@@ -195,9 +208,10 @@ To avoid a license mismatch merely because extraneous text that appears at the e
 
 ### C.13.2 Guideline <a name="C.13.2"></a>
 
-Ignore any text that occurs after the obvious end of the license and does not include substantive text of the license, for example: text that occurs after a statement such as, "END OF TERMS AND CONDITIONS," or an exhibit or appendix that includes an example or instructions on to how to apply the license to your code. Do not apply this guideline or ignore text that is comprised of additional license terms (e.g., permitted additional terms under GPL-3.0, section 7). 
+Ignore any text that occurs after the obvious end of the license and does not include substantive text of the license, for example: text that occurs after a statement such as, "END OF TERMS AND CONDITIONS," or an exhibit or appendix that includes an example or instructions on to how to apply the license to your code. Do not apply this guideline or ignore text that is comprised of additional license terms (e.g., permitted additional terms under GPL-3.0, section 7).
 
-To implement this guideline, use the `<optional>` XML element tag as described in section C.3.5.
+To implement this guideline, use the `<optional>` XML element tag as described
+in [Guideline: omittable text](#C.3.5).
 
 ## C.14 HTTP Protocol <a name="C.14"></a>
 
@@ -207,17 +221,56 @@ To avoid a license mismatch due to a difference in a hyperlink protocol (e.g. ht
 
 ### C.14.2 Guideline <a name="C.14.2"></a>
 
-HTTP:// and HTTPS:// should be considered equivalent. 
+HTTP:// and HTTPS:// should be considered equivalent.
 
 XML files do not require specific markup to implement this guideline.
 
 ## C.15 SPDX License list <a name="C.15"></a>
 
 ### C.15.1 Template access <a name="C.15.1"></a>
 
-The license XML can be accessed in the license-list-data repository under the license-list-XML directory.  Although the license list XML files can also be found in the [license-list-XML](https://github.com/spdx/license-list-XML) repo, users are encouraged to use the published versions in the [license-list-data](https://github.com/spdx/license-list-data) repository.  The license-list-data repository is tagged by release.  Only tagged released versions of the license list are considered stable.
+The license XML can be accessed in the license-list-data repository under the license-list-XML directory. Although the license list XML files can also be found in the [license-list-XML](https://github.com/spdx/license-list-XML) repository, users are encouraged to use the published versions in the [license-list-data](https://github.com/spdx/license-list-data) repository. The license-list-data repository is tagged by release. Only tagged released versions of the license list are considered stable.
 
 ### C.15.2 License List XML format <a name="C.15.2"></a>
-
-A full schema for the License List XML can be found at https://github.com/spdx/license-list-XML/blob/master/schema/ListedLicense.xsd.
 
+A full schema for the License List XML can be found at
+[SPDX License List XML Schema](https://github.com/spdx/license-list-XML/blob/master/schema/ListedLicense.xsd).
+
+### C.15.3 Legacy Text Template format <a name="C.15.3"></a>
+
+Prior to the XML format, a text template was used to express variable and
+optional text in licenses.
+This text template is still supported, however, users are encouraged to use
+the more expressive XML format.
+
+A legacy template is composed of text with zero or more rules embedded in it.
+
+A rule is a variable section of a license wrapped between double angle brackets
+`<<>>` and is composed of 4 fields.
+Each field is separated with a semi-colon `;`.
+Rules cannot be embedded within other rules.
+Rule fields begin with a case sensitive tag followed by an equal sign `=`.
+
+Rule fields:
+
+- **type:** indicates whether the text is replaceable or omittable as per
+  [Substantive text guidelines](#C.3).
+  - Indicated by `<<var; . . . >>` or
+  - Indicated by `<<beginOptional; . . .>>` and `<<endOptional>>` respectively.
+  - This field is the first field and is required.
+- **name:** name of the field in the template.
+  - This field is unique within each license template.
+  - This field is required.
+- **original:** the original text of the rule.
+  - This field is required for a rule type: `<<var; . . . >>`
+- **match:** a POSIX extended regular expression (ERE).
+  - This field is required for a rule type: `<<var; . . . >>`
+
+The [POSIX ERE](http://pubs.opengroup.org/onlinepubs/9699919799/) in the match
+field has the following restrictions and extensions:
+
+- Semicolons are escaped with `\;`
+- POSIX Bracket Extensions are not allowed
+
+For example:
+`<<var;name=organizationClause3;original=the copyright holder;match=.+>>`