Image from Wikimedia
Microsoft's rather belated claim that its self-serving [1, 2, 3, 4, 5, 6] loadable module for Linux was in compliance all along is more or less being refuted or at least contradicted by the SFLC.
Microsoft violated the General Public License v2 (GPLv2) when it distributed its Hyper-V Linux Integration Components (LinuxIC) without providing source code, says the Software Freedom Law Center (SFLC).
The violation was rectified when Microsoft contributed more than 20,000 lines of source code to the Linux community last week. The drivers are designed to improve the performance of the Linux operating system when it is virtualized on the Windows Server 2008 Hyper-V hypervisor-based virtualization system.
[...]
"It seems to me that Sam [Ramji] is likely correct when he says that talk inside Microsoft about releasing the source was under way before the Linux developers began their enforcement effort," said Bradley Kuhn, a policy analyst and tech director at the SFLC.
"However, that talk doesn't mean that there wasn't a problem. As soon as one distributes the binaries of a GPL'd work, one must provide the source for those binaries, so Microsoft's delay in this regard was a GPL violation.
"The important thing to note from a perspective of freedom is that this software, whether it is released properly under the GPL or kept proprietary in violation of the GPL, is a piece of software designed to convince people to give up free virtualization platforms like Xen and KVM, and [to] use Microsoft's virtualization technology instead," Kuhn added.
Comments
zatoichi
2009-07-28 15:28:25
Bradley's incorrect, and he knows better, too. Bring up someone who received the binaries of the drivers from Microsoft, requested the corresponding sources from Microsoft, and failed to receive them.
Absent that, there's no actual violation, and claims to the contrary are incorrect and irresponsible.
Jose_X
2009-07-28 16:25:08
a) Accompany it with the complete corresponding machine-readable source code, which must be distributed under the terms of Sections 1 and 2 above on a medium customarily used for software interchange; or, b) Accompany it with a written offer, valid for at least three years, to give any third party, for a charge no more than your cost of physically performing source distribution, a complete machine-readable copy of the corresponding source code, to be distributed under the terms of Sections 1 and 2 above on a medium customarily used for software interchange; or, c) Accompany it with the information you received as to the offer to distribute corresponding source code. (This alternative is allowed only for noncommercial distribution and only if you received the program in object code or executable form with such an offer, in accord with Subsection b above.) ***
Reading over this superficially (and trying to recall things), it seems to me that Microsoft would have to indicate (more or less) that the source would be available upon request. The violation happens when they fail to fulfill this section 3 (code or offer) regardless of whether anyone demands source or not.
BTW, I originally thought you were correct (I even gave you a 5 and did not comment to an earlier reply you made some days back saying basically the same thing).
So am I reading the above correctly? Was Microsoft in fact in violation as the SFLC stated?
Jose_X
2009-07-28 16:39:17
So perhaps the test would be instead: Bring up someone who received the binaries of the drivers from Microsoft and did not receive an offer or the source at that time.
If the binaries were available to the public (eg, a free download to anyone), then we could tell by visiting the website.
Many people have not been in compliance before, but the issue BN took up was whether or not Microsoft had the obligation to produce source or whether they voluntarily donated code.
Once they took the GPL kernel and compiled and distributed it for their business needs, they became obligated to produce source. At least I think that is the interpretation most that use the GPL have accepted based on the GPL text (and I expect this would include the vast majority of those that contributed GPL code to the kernel).
zatoichi
2009-07-28 16:39:20
Moreover, whenever gpl-violations.org finds an oversight, and leaving out the notice is a common error, they give the company an opportunity to correct that oversight--something Microsoft has arguably done in full--before they claim that the organization is in "violation". That's the difference between "collaboration" and "demonization".
The SFLC seems to be pushing a political agenda here, rather than operating based on the facts of the matter. That's actually pretty disturbing, and seems to be more of the sort of "exclusionism" that Linus spoke about.
Why treat Microsoft differently than the literally hundreds of companies that have made--and corrected--exactly the same sorts of errors? If Harald and Armijn of gpl-violations.org aren't claiming a violation here, and the engineer who found the issue isn't claiming a violation, on what basis do you or Roy or the SFLC claim one?
Jose_X
2009-07-28 17:01:24
BN is taking the SFLC on their word. They are a reputable source to many here (can you pinpoint a nontrivial number of past mistakes?). I think you should go speak to them if this really worries you. For various reasons they may not want to make the evidence public. Then again, the evidence might be easily accessible to those that know where it is.
>> Moreover, whenever gpl-violations.org finds an oversight, and leaving out the notice is a common error, they give the company an opportunity to correct that oversight–something Microsoft has arguably done in full–before they claim that the organization is in “violation”. That’s the difference between “collaboration” and “demonization”.
I did go to gpl-violations.org, and they said they don't update the website frequently for lack of resources. Where would one find who they have stated had been in violation?
Assuming the evidence exists (something apparently you and I don't know), I think Microsoft would be in violation technically whether there was an unintentional oversight or something else.
And did they have the code ready to hand out upon request or not? From the quotation at the top, I get the impression that they were unprepared to give out source upon request.
Did the SFLC or anyone else cancel Microsoft's access to the code? I don't think so.
Has Microsoft called the GPL a cancer? I think so.
I don't think Big Mighty Monopolysoft had their feelings hurt when Kuhn used the accurate word "violation" instead of the softer "oversight", not to mention it appears Microsoft likely knew their obligations (they have plenty of lawyers and awareness of the GPL) yet apparently weren't prepared to fulfill them.
Microsoft would likely challenge the GPL as necessary. They didn't here for obvious reasons, I'd say (to be on good terms to help their situation). Microsoft has challenged many things in the past and lost in court. The vast number of people accept the interpretation that source code was necessary.
Roy Bixler
2009-07-28 15:45:51
zatoichi
2009-07-28 16:25:54
"A little googling" doesn't trigger any obligations under the terms of the GPL, nor does "wanting the source", nor does asking random passersby for sources corresponding to binary code you may or may not have had distributed to you. (Have you read the GPL, Mr. Bixler...?)
Hemminger's specifically said that there was no violation, so why are you quoting his blog to support a contention he's specifically denied ever making?
Roy Bixler
2009-07-28 17:16:40
zatoichi
2009-07-28 21:01:02
Indeed. The "someones" in this case are Roy and the SFLC; the "political agenda" they're pushing is exactly the one of unreasoning hatred of Microsoft, under all circumstances, at which Linus expressed dismay.
...he just wanted to solve the problem and did not want to make an issue of it...
Which is the correct way to approach such a problem, and in fact, the way such compliance issues typically are approached, even by gpl-violations.org; so why is this case different than all other cases, if not a "political agenda"?
zatoichi
2009-07-28 18:20:20
One, a person supplied with binaries from Microsoft, who requested sources from Microsoft, and who failed to receive them.
Two, the holder of the copyright on the code which was allegedly infringed.
No one else has the standing to assert a violation under the GPL in this instance. None of the folks currently claiming a violation, including Roy Schestowitz and Bradley Kuhn, have the standing to make such a claim on their own say-so.
Evidently you're completely unfamiliar with the work of gpl-violations.org and the way they go about things; given your keen interest in violations, this is a little surprising. I'd point out that Harald Welte of that organization is—to the best of my knowledge—the only person on earth who's ever won a court case based on a violation of the GPL. I'm pretty confident that the SFLC hasn't won a single one.
Roy Bixler
2009-07-28 18:42:40
zatoichi
2009-07-28 20:50:34
Trotting it out now, in the wake of an act of actual compliance, seems like churlish grandstanding, or maybe some sore of strange, after-the-fact, "ambulance chasing" after the case has already been settled out of court.
Maybe Bradley's distressed that Microsoft complied and the SFLC never even got a chance to get in on the act.
If you think I'm off the mark here, please show me another case of Bradley, or the SFLC, or gpl-violations.org for that matter, claiming a "violation" after an organization has addressed a compliance issue correctly.
saulgoode
2009-07-29 10:25:34
Where is your link supporting your claim that Mr Hemminger denied ever making that statement? I find it hard to believe he is denying something that is still plainly posted on his weblog.
zatoichi
2009-07-29 14:27:26
News stories like the half dozen which Roy has pumped out on this. Also, you might want to read my last comment: according to Jo Shields' investigation, there may not have been any violation in the first place—not unless you consider the Nvidia and ATI drivers to be violations as well (and I don't see the SFLC screaming about, or even mentioning those...)
saulgoode
2009-07-29 15:47:00
Also included in the very statement which Roy Bixler quoted directly, Mr Hemminger's stated "The driver had both open-source components which were under GPL, and statically linked to several binary parts."
While dynamic linking of GPLed code to closed source code may enter into a gray area of copyright law, if you're planning on arguing that static linking of software components does not result in a derived work under copyright law, you'd better have a pretty strong legal team ready to overturn thirty+ years of software copyright precedent and redefine the very meaning of derivation.
zatoichi
2009-07-29 19:46:37
While dynamic linking of GPLed code to closed source code may enter into a gray area of copyright law, if you’re planning on arguing that static linking of software components does not result in a derived work under copyright law, you’d better have a pretty strong legal team ready to overturn thirty+ years of software copyright precedent and redefine the very meaning of derivation.
If it's a "gray area", then—unless you're arguing a case in court—it's unclear how you can assert that it's a violation. And if there's so much precedent, how can it be "gray"? You seem to be lighting your candle at both ends here, but it's not shedding a lot of light.
In any case, if there indeed was a violation—and directhex's comments in Hemminger's blog cast that assertion into some significant doubt—then why why flog a company after they've corrected said "violation" when no one seems to be complaining about the numerous other companies that are still shipping exactly the same sorts of "violations" and haven't done anything to comply?
We'd seem to be punishing those who comply for past sins while giving ongoing "violators" a free ride here. That makes no sense to me.
I've got a couple of ideas about it, though: grandstanding; a political agenda.
saulgoode
2009-07-29 20:53:33
zatoichi
2009-07-29 22:50:33
Microsoft got into compliance. Willingly. "Eagerly", if you believe Sam Ramji (I imagine this unlikely). Note the title of Stephen Hemminger's blog posting: "Congratulations, Microsoft". That seems the right spirit to me, and I guess I'm in agreement with Linus on that.
You folk, and worse, the SFLC, seem to want to flog Microsoft (although why you are apparently okay with giving others a pass for similar misdeeds is still a mystery) for doing the right thing. How is that not exclusionary? How does that encourage other companies, the ones the SFLC is strangely not complaining about, to do the right thing?
No one suggests they're our new best friends, or that they have Mother Teresa-like motives, but they're doing the right thing. Give credit where credit is due. Stop being a bunch of sore winners.
saulgoode
2009-07-30 14:15:11
I remain reticent to further address your comments given the lack of general reading comprehension you've thus demonstrated, your misinterpretation of the terms and conditions of the GPL, and your misapprehension of copyright law in general. You are welcome to your opinion about whether or not Microsoft should be lauded for their actions; I would extend the same courtesy to everyone else.
zatoichi
2009-07-30 14:25:05
Dylan McCall
2009-07-28 17:15:38
...didn't you say you were finished talking about this about 10 articles ago? It isn't like there's anything useful, or interesting, or for that matter even new being uncovered here.
zatoichi
2009-07-28 22:12:55
So why is this one thing different from the others? Political agendas, perhaps?