EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

05.05.20

Microsoft GNU-Hub (Part 2)

Posted in GNU/Linux, Microsoft at 12:15 pm by Guest Editorial Team

Guest post by figosdev

GNUHub

Summary: “Does the GNU project have any policy about trusting Microsoft with control of vital free software projects at all?”

In part 1 of this series, various parts of the GNU project were looked at where Microsoft may have too much potential control over important components. To recap:

1. Perl is heavily used by the GNU Project, including by Automake. Several projects that need Perl were mentioned in Part 1, and several more will be mentioned in Part 2.

2. Zlib1g is needed by libpng, so we list projects that have png files (even in the documentation) as this GitHub-based library is needed to save and load png files with free software. If you know of a free alternative that doesn’t need zlib1g — libpng itself is not on GitHub — let us know in the comments.

3. Libffi is needed by glib2, which is needed by Gtk. Gtk1 is also based on GitHub.

4. CPython is developed on and continues to migrate further to GitHub. PyPy is a drop-in replacement for some Python scripts, but not all. For this reason, projects that use Python code are mentioned in this series.

5. C Sharp code is included in WB B-tree Associative Arrays.

6. LibreJS uses the Jasmine library, which is based on GitHub — build.sh even downloads it directly from Microsoft.

7. Gitea is also developed on GitHub, but they have had a goal of migrating since 2017 at the latest. One of the arguments for this is quotable, and is also part of the reason for this series:

“We build Gitea so everyone can use it, even users who are banned from GitHub (after recent ban wave from GitHub a lot of those users started using Gitea).”

“How could the GNU project possibly benefit from letting Microsoft gain control of Bison development?”This isn’t just about where the code is, but where the development takes place and who controls access. Trusting Microsoft with free software development while they continue to fund various manoeuvres against it makes no sense. In that context, Part 2 will include some new items that somebody ought find surprising.

In Part 1, it was mentioned that “Flex, lex, Yacc and Bison are all related — lex is a lexer, flex is an alternative, Bison is an alternative to Yacc and Bison often uses flex to get tokens.”

Flex is GitHub-based, but it’s not a GNU project — though GNU Automake uses it.

But GNU Bison has also moved to GitHub — along with Mac Changer (ages ago) and GNU Radio, Bison is actually using GitHub for development. The GNU git repo is only a mirror. Usually, GitHub mirrors are a mirror of something being developed OFF GitHub. For Bison, it’s the other way around:

https://git.savannah.gnu.org/cgit/bison.git/commit/

“GNU bison (git mirror)”

Most of the projects on git.savannah.gnu.org just have the name of the project, where it says ‘(git mirror)’. This is a mirror of akimd/bison on GitHub, where as of this writing there are 3 issues and 2 pull requests.

“Does the GNU project have any policy about trusting Microsoft with control of vital free software projects at all?”As of this writing, the most recent commit on git.savannah.gnu.org/cgit/bison.git is dated 2020-05-05 08:21:12 +0200 and also from akimd, who the GNU Savannah page says is the project admin.

Why would they do this? How could the GNU project possibly benefit from letting Microsoft gain control of Bison development? Akimd (not his full name, only his user) has 29 repos on GitHub, most of which are forks of other well-known GitHub projects. This is far from a positive move for GNU. It would be nice if this was the only new GNU project that was found on GitHub, though it’s not.

While Compact Disc Input and Control Library (better known as libcdio — as in libcdio-paranoia, not to be confused with cpio which is used to make archives and initrd images) seems to be still be based on Savannah, libcdio-paranoia (which is also available for download from http://ftp.gnu.org/gnu/libcdio/) is being developed on GitHub by the same person who maintains it for the GNU project. And he has 113 repositories there.

Does the GNU project have any policy about trusting Microsoft with control of vital free software projects at all? If they do, it isn’t being enforced in the mailing lists. Without more than a moment’s effort, this GNU mailing list conversation from as recently as last October was found, where potential GNU contributors are being encouraged to use GitHub:

“I recommend keeping your own fork of the repository somewhere, e.g. on Github. That way you have somewhere where you can push your changes for backup, in case you lose your local machine due to whatever reason. You would have to manage two remote git repositories then, your fork and the official upstream repo. But there’s plenty of documentation out there on how to do that.”

This isn’t to admonish the author for not following a rule that doesn’t exist, but to highlight the more-than-hypothetical threat that the GNU project faces from projects moving from GNU’s own hosting to Microsoft’s.

The GNU project may need to create a policy — so it’s a terrible shame that the FSF are presently without legitimate, strong or non-corrupt leadership. What a time for that, eh?

Those are the big stories, here are other findings that while they may have small problems individually, may contribute to a bigger picture issue overall:

Liquid War is a mix of Perl, Python and png files. The latter are for the program, rather than documentation.

LibreDWG seems to need Perl, Python support could be optional.

Kawa and Java Training Wheels have png files in the docs, iGNUit uses png for icons and help. Gxmessage has a png, GWL uses png, gsegraphix uses png, gnats has png in the doc. Gperf uses perl (texi2html) in /doc.

Idutils — Perl is optional?

“The GNU project may need to create a policy — so it’s a terrible shame that the FSF are presently without legitimate, strong or non-corrupt leadership.”Guile-opengl, gnatsweb, gmediaserver use Perl. Gnash uses Python, Perl in tests and png in /doc. Grep uses Perl in tests. Guile uses png in doc, libffi and flex, all of which are based in part on GitHub.

Gforth uses libfii, what’s sacrificed if ffcall or fflib is used instead? Gnowsys uses lots of Python.

GCompris is interesting. Built on Gtk and Python, it’s in the process of moving to Qt, qml and Javascript. Javascript often means GitHub, though so far the new GCompris repo seems to be GitHub-free. It’s unknown at this time if Qt has any GitHub deps like libffi, which glib2 from GNOME needs.

Findutils have Python in tests, freefont has Python in tools, Articulatory Speech Synthesis has Perl and Python, Autoconf has a Perl module, Autogen, cppi and classpath use Perl, Ball and Paddle has png in levels, ACM is Perl, so is the GNU Image Finding Tool.

“…Gitea devs at least seems to understand the importance of migration — hopefully they will be done moving away from GitHub in the near future.”DDD and Denemo have png files in the program, Electric VLSI Design System and BPEL2oWFN have png in the docs, Bayonne and ERC have Perl, C-Graph has png in the docs and cgicc has png in the demos.

Emacs uses Perl in the tests and /doc, Debian compiles it with png support, so even their “nox” version of emacs requires zlib1g from GitHub.

In part 3, we may get to tallying some statistics. Good news is welcome, and it’s nice to be able to say that Gitea devs at least seems to understand the importance of migration — hopefully they will be done moving away from GitHub in the near future. It’s really nice to have options, it’s even nicer to have real options. Sincerest and best luck to Gitea’s migration from GitHub — and where applicable, yours as well!

Long live rms, and happy hacking.

Licence: Creative Commons CC0 1.0 (public domain)

______
* If this article uses a parody of the GitHub logo based on the GNU head, I almost certainly used this one from Wikipedia

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email
  • Slashdot

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

A Single Comment

  1. arm said,

    May 6, 2020 at 9:29 pm

    Gravatar

    Perhaps you should actually research where projects host their code a bit more and you would find that most of them only use github for a mirror.

    As a case in point check this link and you will see that the canonical source for perl is not github.

    https://perldoc.perl.org/perlhack.html#GETTING-THE-PERL-SOURCE

What Else is New


  1. The National Center for Missing and Exploited Children (NCMEC) Identified Some of the Children in the Pornographic 'Stash' of Bill Gates' Engineer

    Today we carefully and responsibly disclose just 9 pages (out of about 2700 pages) with slightly redacted samples and a handful of exemptions to show what Bill Gates' engineer was amassing, including identified kids (known to NCMEC)



  2. A Red Hat Response to Factual Information About Red Hat

    So far we've seen only Red Hat employees blasting our articles about Red Hat/IBM and the responses lack any substance, just name-calling (so we must be on the right track; there's no refutation so far)



  3. Always Look for Stories the Media is Suppressing and Hiding

    Based upon closer scrutiny of the Jones case (engineer of Bill Gates arrested for pedophilia at the Gates mansion), the sentence he received is incredibly negligible or close to nothing (for possession and sharing/dissemination of massive troves of child pornography, typically leading to many years in prison), so we’re closely examining if he’s still working and whether he still works for Bill and Melinda (more FOIA requests may be necessary)



  4. On Web Servers, Microsoft's Collapse Continues More Rapidly Under COVID (a Million Domains Lost in the Past Month)

    Even though the Microsoft-sponsored media repeatedly refuses (or strangely enough just 'fails') to report on it, the days of Microsoft's IIS are likely numbered; it won't be long before less than a million computers run it



  5. Canonical is Boosting Microsoft's Proprietary Software With Extensive Surveillance

    Canonical’s commitment to Free software barely exists; with so-called “Apps” and “Snaps” and “Stores” we’re seeing a gradual transition to — and acceptance of — blobs and DRM, including Microsoft lock-in inside Ubuntu



  6. IRC Proceedings: Wednesday, August 12, 2020

    IRC logs for Wednesday, August 12, 2020



  7. Harfbuzz Joins LibFFI, Zlib1g in Dragging GNOME, All Free Software Towards Microsoft

    "...I don’t want to help them help Microsoft control my computing by proxy — by controlling the development platform itself"



  8. Links 12/8/2020: Go 1.15, LibreOffice 7.0 Downloaded About Half a Million Times, LibreELEC (Leia) 9.2.4

    Links for the day



  9. Mega Setup, Mini Budget

    For a sum total of under £800 (eight hundred British pounds are about USD/$1043) one can piece together a versatile working environment (my latest additions, as of 5 days ago, are the 4 plastic plants)



  10. Twitter Appears to Have Taken Vendor/Platform Lock-in up Another Notch, Having Become Almost as Malicious as Facebook

    Twitter jumped the shark



  11. IRC Proceedings: Tuesday, August 11, 2020

    IRC logs for Tuesday, August 11, 2020



  12. Infographic by Marcia Wilbur: Where's My Refund?!

    Tweet by Marcia Wilbur:



  13. Links 12/8/2020: New GNU Emacs, GXml-0.20, WordPress 5.5, and Mozilla is Laying off 250 Staff

    Links for the day



  14. You Just Know Somebody is in a State of Retreat When the Strategy Becomes to Discredit One's Critics (or Collectively Paint Them All as Wrong/Crazy)

    A goulash of bullcrap from Bill Gates doesn't add up; it seems like his media strategy has warped (or fallen back) onto discrediting his critics as though they don't exist, don't know anything, or are simply jealous



  15. United States v IBM Archives/Resources

    As the massive case against IBM monopoly (United States v IBM; 104,400 pages of trial transcripts and 17,000 exhibits) predates the World Wide Web it's difficult to find comprehensive literature about it any longer (Wikipedia and more modern sites are instruments of revisionism and reputation laundering)



  16. History Goes in Cycles

    Just like antiwar activism was 'quelled' or 'pacified' half a century ago nowadays we're led to think that software freedom is just fine and there's nothing left to argue about (except words and other petty nonsense)



  17. Looking Back at the Real Story of Microsoft

    Let's take a moment to examine what Microsoft was all along (since its formation in 1975)



  18. Europe Deserves Better Than Today's EPO

    Overly restrictive society with countless monopolies (even on seeds!) will neither serve people nor will it breed general acceptance



  19. European Patent Office Management Swims With Sharks and Liars

    It has become increasingly if not abundantly evident that European Patent Office President Campinos is no better than Battistelli as he’s still a ‘darling’ of patent litigation trolls and their front groups/lawyers



  20. Linked In to Pedophilia

    As the above articles show (one published a couple of days ago), the 'Web of Lies' and the incredible deceit/cover-up run deep and we still lack answers from those who enabled what Salon has just said involved "trafficking five or six girls a day."



  21. Whistleblower Aid Already Showed Cover-up of Bill Gates 'Contributions' to MIT

    The Goodwin Procter report which failed to actually investigate whether Gates and Epstein jointly directed payments to MIT (the latter was already dead) can be understood differently in light of the above leak, which was published earlier this year



  22. IRC Proceedings: Monday, August 10, 2020

    IRC logs for Monday, August 10, 2020



  23. Proof (Archived Original Letter): Bill Gates Lied to the New Yorker, BBC and Others About Connection of MIT Money to Mr. Jeffrey Epstein and Their Close Relationship

    As the article (“The anatomy of Bill Gates’ Jeffrey Epstein-facilitated MIT donations”) put it at the time (just 2 days before Dr. Stallman received all the heat at MIT), “Secrecy in the funding of academic programs is highly problematic, as University of Virginia professor Siva Vaidhyanathan explains in a long Twitter thread. “Companies and the billionaires who run them are always bending research agendas (and sometimes even results) to their interests,” he writes. “Anonymity would prevent any examination or accountability.”” But there are more high-level Microsoft links to Mr. Epstein; “Hoffman invited both former MIT Media Lab director Joi Ito and Epstein to an August 2015 dinner in Palo Alto with Elon Musk, Mark Zuckerberg and Peter Thiel. He tells Axios that he invited Epstein at Ito’s behest, and only because Ito vouched for the convicted criminal, saying that he had successfully cleared MIT’s vetting process.” In 2016 the article “Bill Gates talked to Reid Hoffman about being on Microsoft’s board of directors” was published. “Furthermore,” it notes, “Gates and Hoffman have a lot in common: They both hold board seats and advisory roles, and no other formal status or day-to-day obligations, at the tech companies they founded.”



  24. All This Happened While Bill Gates' Engineer Was on Trial for Amassing Child Pornography

    While MIT relies on the word of someone who repeatedly lied about his relationship with Mr. Epstein (refuted even by MIT itself), the record shows what happened just when Bill Gates’ own engineer faced conviction for pedophilia (the media diverted attention to Dr. Stallman just days after the above E-mails came to light)



  25. Links 10/8/2020: Popcorn Computers Pocket PC, Finnix 121, GhostBSD 20.08.04, EasyOS 2.3.8

    Links for the day



  26. IRC Proceedings: Sunday, August 09, 2020

    IRC logs for Sunday, August 09, 2020



  27. Release: Bill Gates' Engineer Busted for More Child Pornography Than Reported in the Media

    Based on our analysis, which was repeated carefully twice, the sum of recognised hashes turns out to be about 7,500 (7,430 objects), which is more than was reported in the media after the arrest of Rick Allen Jones at Bill Gates' mansion



  28. Links 10/8/2020: KPhotoAlbum 5.7.0 and MX Linux RC

    Links for the day



  29. UserLibre: What I Want You to Get From This Book

    "Corporate-backed lies run the world, and the FSF used to get in the way."



  30. Even the Mainstream/Corporate Media is Trying to Study Why (or If) Bill Gates and Epstein's Sex Abuse Ring Were Closely Connected

    People in the media are eager to understand why Mr. Gates was so close to Mr. Epstein and even flew his plane (despite having several of his own)


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts