I started to make legal check to my Buildroot build - first time. NAME=Buildroot VERSION=2017.02 ID=buildroot VERSION_ID=2017.02 PRETTY_NAME="Buildroot 2017.02" When I checked Licenses listed in the manifest.csv file and then compared what is said on actual source site I found differences. E.g. package: expat - Manifest indicates GPLv2 but source site (https://sourceforge.net/projects/expat/?source=navbar) indicates MIT License. Is this due to a bug in expat package license info or something else?
I just tried legal-info with the expat package enabled, and I get: "expat","2.2.0","MIT","COPYING","expat-2.2.0.tar.bz2","http://downloads.sourceforge.net/project/expat/expat/2.2.0" The expat package has the correct "MIT" license since we added license information to this package in commit https://git.buildroot.org/buildroot/commit/package/expat?id=180c091a83e569d23d1ab2525ac5ef7ea9b5ee90 almost 5 years ago. So I'm sorry, but I don't see a bug here. Are you sure you didn't misread the manifest.csv ?
You are correct, my bad. I sorted the manifest.csv based on LICENSE column with Gnumeric Spreadsheet (using first time). I just re-run the sort I found out that I sorted only the LICENSE column and not the whole sheet as I assumed. Case closed.