fix: correct versions, remove non-existent packages from docs

Verified all documents against actual CSV data:
- license-summary.md: fix u-boot 2023.10->2023.04, linux-yocto->linux-tq 6.6.102
- license-summary.md: remove systemd, imx-gpu-viv, imx-vpu (not in spaetzle build)
- license-summary.md: add actual versions from bitbake -e extraction
- corporate-network-deployment.md: add ACCEPT_FSL_EULA=1 (was missing)
- README.md: align apt packages with verified step-by-step guide

docs/03-license-analysis/license-summary.md

@@ -1,154 +1,96 @@
-# License Compliance Table - UT Project
+# License Compliance Summary – UT Project
 
-**Project:** UT (Universität/Projekt)  
-**Target:** TQMa6UL Yocto BSP  
-**Date:** 2026-03-01  
-**Scope:** Complete license analysis for military use approval
+**Project:** UT
+**Target:** TQMa6UL Yocto BSP (spaetzle/musl)
+**Date:** 2026-03-01
+**Data Source:** `bitbake -e` extraction, 264 packages
+**Full Table:** [UT-license-table.csv](UT-license-table.csv)
 
 ---
 
-## Military Use Guidelines
-
-- ✅ **Approved**: Open source licenses without military restrictions
-- ⚠️ **Review Required**: Check specific license terms
-- ❌ **Excluded**: Explicit military use prohibition
-
-**Note:** GPL licenses are approved WITH source code provision requirement.
-
----
-
-## License Summary by Category
+## License Categories
 
 ### Approved for Military Use (✅)
 
-| License | Type | Notes |
-|---------|------|-------|
-| MIT | Permissive | No restrictions |
-| BSD-2-Clause | Permissive | No restrictions |
-| BSD-3-Clause | Permissive | No restrictions |
-| Apache-2.0 | Permissive | Patent grant included |
-| ISC | Permissive | No restrictions |
-| GPL-2.0-only | Copyleft | Source must be provided |
-| GPL-2.0-or-later | Copyleft | Source must be provided |
-| LGPL-2.1-only | Weak Copyleft | Library source must be provided |
-| LGPL-2.1-or-later | Weak Copyleft | Library source must be provided |
+| License | Type | Count | Notes |
+|---------|------|-------|-------|
+| MIT | Permissive | 41 | No restrictions |
+| BSD-2-Clause | Permissive | 7 | No restrictions |
+| BSD-3-Clause | Permissive | 19 | No restrictions |
+| Apache-2.0 | Permissive | 2 | Patent grant included |
+| GPL-2.0-only | Copyleft | 32 | Source must be provided |
+| GPL-2.0-or-later | Copyleft | 22 | Source must be provided |
+| LGPL-2.1-only | Weak Copyleft | 8 | Library source required |
+| LGPL-2.1-or-later | Weak Copyleft | 6 | Library source required |
 
-### Requires Review (⚠️)
+### Requires Legal Review (⚠️)
 
-| License | Reason | Action |
-|---------|--------|--------|
-| GPL-3.0 | Anti-tivoization clause | Legal review |
-| Proprietary | Closed source | Review vendor terms |
-| Binary Firmware | No source available | Check distribution rights |
+| License | Count | Reason |
+|---------|-------|--------|
+| GPL-3.0-only | 11 | Anti-tivoization clause |
+| GPL-3.0-or-later | 13 | Anti-tivoization clause |
+| Proprietary | 2 | Closed source (NXP firmware) |
 
-### Build System (Not in Final Product)
+### Build-Only (Not in Final Product)
 
-| Component | License | Notes |
-|-----------|---------|-------|
-| Poky/Yocto | MIT | Build system only |
-| BitBake | GPL-2.0 | Build tool only |
-| OpenEmbedded | MIT | Metadata only |
+Native/cross-build tools (GCC, CMake, Python, etc.) are only used during
+compilation and are NOT deployed to the target device.
 
 ---
 
-## Key Packages for TQMa6UL
+## Key Packages (verified from CSV)
 
-### Core System (GPL/LGPL)
+### Core System
 
-| Package | Version | License | Military | Source Included |
-|---------|---------|---------|----------|-----------------|
-| linux-yocto | 6.6.y | GPL-2.0-only | ✅ Yes | ✅ Yes |
-| u-boot-tq | 2023.10 | GPL-2.0+ | ✅ Yes | ✅ Yes |
-| glibc | 2.39 | LGPL-2.1+ | ✅ Yes | ✅ Yes |
-| busybox | 1.36.x | GPL-2.0-only | ✅ Yes | ✅ Yes |
-| gcc | 13.x | GPL-3.0+ | ⚠️ Review* | ✅ Yes |
+| Package | Version | License | In Image |
+|---------|---------|---------|----------|
+| linux-tq | 6.6.102+git | GPL-2.0-only | ✅ |
+| u-boot-tq | 2023.04 | GPL-2.0-or-later | ✅ |
+| musl | 1.2.4+git | MIT | ✅ |
+| busybox | 1.36.1 | GPL-2.0-only | ✅ |
 
-*GPL-3.0 requires review of anti-tivoization clause for embedded devices
+### Network & Security
 
-### Hardware Support
+| Package | Version | License | In Image |
+|---------|---------|---------|----------|
+| openssl | 3.2.4 | Apache-2.0 | ✅ |
+| openssh | 9.6p1 | BSD-2/3-Clause & ISC & MIT | ✅ |
+| dropbear | 2022.83 | MIT & BSD | ✅ |
+| iptables | 1.8.10 | GPL-2.0-or-later | ✅ |
+| iproute2 | 6.7.0 | GPL-2.0-or-later | ✅ |
 
-| Package | License | Military | Notes |
-|---------|---------|----------|-------|
-| firmware-imx | Proprietary | ⚠️ Review | NXP firmware blobs |
-| linux-firmware | Mixed | ⚠️ Review | Various vendors |
-| imx-gpu-viv | Proprietary | ⚠️ Review | Vivante GPU driver |
+### Utilities
 
-### Base System
+| Package | Version | License | In Image |
+|---------|---------|---------|----------|
+| util-linux | 2.39.3 | GPL/LGPL/BSD mixed | ✅ |
+| coreutils | 9.4 | GPL-3.0-or-later | ⚠️ Review |
+| bash | 5.2.21 | GPL-3.0-or-later | ⚠️ Review |
+| e2fsprogs | 1.47.0 | GPL-2.0 & BSD & MIT | ✅ |
+| mtd-utils | 2.1.6 | GPL-2.0-or-later | ✅ |
 
-| Package | License | Military |
-|---------|---------|----------|
-| systemd | LGPL-2.1+ | ✅ Yes |
-| util-linux | GPL-2.0+ | ✅ Yes |
-| e2fsprogs | GPL-2.0+ | ✅ Yes |
-| coreutils | GPL-3.0+ | ⚠️ Review |
-| bash | GPL-3.0+ | ⚠️ Review |
+### Proprietary (Review Required)
 
-### Network
+| Package | Version | License | Notes |
+|---------|---------|---------|-------|
+| firmware-imx | 8.27 | Proprietary (NXP SLA) | NXP firmware blobs |
+| firmware-nxp-wifi | 1.1 | Proprietary (NXP) | WiFi firmware |
+| linux-firmware | 20240909 | Mixed (per-firmware) | Various vendor licenses |
 
-| Package | License | Military |
-|---------|---------|----------|
-| iptables | GPL-2.0+ | ✅ Yes |
-| iproute2 | GPL-2.0+ | ✅ Yes |
-| openssl | OpenSSL | ✅ Yes |
-| openssh | OpenSSH/ISC | ✅ Yes |
-| dropbear | MIT | ✅ Yes |
-
-### Filesystems
-
-| Package | License | Military |
-|---------|---------|----------|
-| mtd-utils | GPL-2.0+ | ✅ Yes |
-| dosfstools | GPL-3.0+ | ⚠️ Review |
-| e2fsprogs | GPL-2.0+ | ✅ Yes |
-
----
-
-## Proprietary Components Requiring Review
-
-### NXP/Freescale Components
-
-| Component | License Type | Military Use | Source Available |
-|-----------|--------------|--------------|------------------|
-| imx-firmware | NXP SLA | ⚠️ Review required | ❌ No |
-| imx-gpu-viv | Proprietary | ⚠️ Review required | ❌ No |
-| imx-vpu | Proprietary | ⚠️ Review required | ❌ No |
-| ddr-stress-test | NXP | ⚠️ Review required | ❌ No |
-
-### Alternative Open-Source Options
-
-Where proprietary components pose issues:
-
-| Proprietary | Open Alternative | License |
-|-------------|------------------|---------|
-| imx-gpu-viv (Vivante) | etnaviv | MIT/GPL |
-| NXP VPU codec | Software decode | Various |
-
----
-
-## License Manifest Location
-
-After build, license information is located at:
-
-```
-build_ut/tmp/deploy/licenses/
-├── package/                 # Per-package license files
-├── image_license.manifest   # Image-level manifest
-├── host-tools_license.manifest  # Host tool licenses
-└── target-tools_license.manifest # Target tool licenses
-```
+> **Note:** `imx-gpu-viv`, `imx-vpu`, `systemd` are NOT in this build
+> (spaetzle/musl does not include GPU drivers or systemd).
 
 ---
 
 ## Compliance Checklist
 
-- [ ] All GPL packages have source code archived
-- [ ] Proprietary components reviewed for military clauses
-- [ ] License manifest generated for every build
-- [ ] No "UNKNOWN" license entries in manifest
-- [ ] Commercial licenses documented separately
+- [x] All 264 packages identified with license (CSV)
+- [x] Download URLs resolved for 224 packages (85%)
+- [x] Proprietary components identified (2 packages)
+- [ ] GPL-3.0 anti-tivoization clause reviewed by legal
+- [ ] NXP firmware license terms verified for deployment use
+- [ ] License manifest generated from actual build output
 
 ---
 
-**Generated by:** Siggi ⚙️  
-**Project:** UT  
-**Date:** 2026-03-01
+**Author:** Siggi ⚙️