EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

05.09.20

Microsoft GNU-Hub (Part 4)

Posted in Free/Libre Software, GNU/Linux, Microsoft at 10:20 pm by Guest Editorial Team

Article by figosdev

Catch me if you can

Summary: Following the first 3 parts [1, 2, 3] we look more closely at individual GNU projects and their Microsoft-hosted dependencies

In the previous article, the overall methodology for this series was discussed, and Tom has since written this article outlining some of the reasons these things are problems, and what can and probably ought to be done about them.

He also mentioned that the "gnu.org/software" url for Fribidi immediately redirects to the Microsoft-controlled GitHub repo. Let me tell you what I think of this fact.

The processes and policies of the GNU Project are certainly not up to me, though if I (or anybody in charge of policies for the GNU Project) were a lawyer, there would be some sane, ethical limits on what I can support simultaneously.

I couldn’t represent people on opposite sides of a court case, because I would basically be taking their money for performing the service of fighting against myself. No matter who wins that one, I’ve taken their money and thrown the fight for one side or the other!

“Microsoft doesn’t say they love your freedom, because their model isn’t based on freedom.”Microsoft claims to “Love Linux”, but lots of very bad people claim to love their victims. Microsoft doesn’t say they love your freedom, because their model isn’t based on freedom.

They don’t say “free software” because they aren’t trying to make you free. In fact Techrights has covered the money they paid to politicians to get the City of Munich to ditch free software — and go back to Microsoft instead! Then there are the bogus patents and royalty-seeking attacks on free software, which both FSF-sponsor IBM and Microsoft have continued to support.

More than a year before Microsoft purchased it, the FSF gave GitHub an “F” in its evaluation of code repo criteria: https://www.gnu.org/software/repo-criteria-evaluation.en.html. They cited:

* Important site functionality does not work without running nonfree JavaScript.
* Specific information may not be available in all countries
* The worst thing that GitHub does is to encourage bad licensing practice

The FSF also links to other reasons for avoiding GitHub, which were valid before the acquisition but are all the more relevant now.

“In fact Techrights has covered the money they paid to politicians to get the City of Munich to ditch free software — and go back to Microsoft instead!”The lock-in for some users (or perhaps we should consider a different term for people stuck with GitHub — useds, because Microsoft is using them more than they’re using Microsoft) could be enough to create tension between developers and GNU leadership, as of the 33 people on this anti-rms petition nearly 2/3 of them have remained active on GitHub since they were purchased by Microsoft.

We are going to avoid using the names of individuals (though they already name themselves) but some of the people on the list have even contributed to the connections between GitHub and the GNU project. What isn’t being said here is that this is definitely the reason for the petition. While the timing “seizes the day” in terms of trying to kick out rms while he was already stepping down from FSF leadership, the real motivations of the signed are unknown unless we take them at their word.

When no fewer than 20 of them have written or forked code on Microsoft GitHub in the past year, in some instances even for the GNU Project — (at least 7 of them appear to work for Red Hat, which develops on GitHub and is now owned by the FSF’s largest sponsor) we have to point out the possibility that opportunism was a factor.

Either way, trusting one of the most infamous opponents of software freedom with moderation of projects like GNU Bison, GNU Fribidi and other projects key to the GNU project seems like either hiring or working for your own client’s opponent — this sounds like textbook conflict of interest to me, though Tom is the person I would go to for his greater experience with organisational process. Perhaps instead of formally being a conflict of interest, crossing the GNU project with GitHub is merely a really terrible idea — one of those instances where “compromise” isn’t a word denoting reason and cooperation as much as failure.

A bit outside the reach of GNU developers to be certain, GNUzilla is built with rust, which is developed on GitHub.

I’m now trying to catch projects that include jpeg, pdf and postscript files. Why? Because pdf and postscript files use ghostscript, which is typically compiled with png support and brings in zlib1g from GitHub. Help me find a way that’s not so.

“…of the 33 people on this anti-rms petition nearly 2/3 of them have remained active on GitHub since they were purchased by Microsoft.”For a week or two I was saving screencaps as jpeg instead of png, but it looks like OpenJPEG is GitHub-based as well. Does anybody still use libj2k?

Packages that include one or more png files include gnuschool, GNUjump, GNUbik, GNU remotecontrol, GNU Optical design and simulation library, GNU mifluz, GNU Chess and GNU libmicrohttpd.

GNU Crypto, GNU Astronomy Utilities and Gnu Circuit Analysis Package have png and pdf in docs. GNU Generic Security Service Library has png, pdf and postscript.

GnuTLS has Perl and png in the docs, GNUtrition has Python, png, and pdf.

GNUspool and GNUbatch have Perl, Python and png.

GNUsound has png files, as well as modules for ALSA and Jack, both of which are GitHub based — though I still don’t believe that and will have to check it a few more times before I do.

GNUpod is Perl based.

GNUnet uses Perl, and wolfssl from GitHub.

GNUlib uses https://github.com/gnulib-modules/bootstrap which I found because gnu-pw-mgr uses bootstrap.

GnuCOBOL has a scanner generated by flex, and Perl in tests and docs.

With gnubg, I’m hoping someone can explain this one. It contains Python scripts, there’s code written in C which is alright (I’m not going to check how these are related) and someone who appears unrelated to the project is working on something on GitHub which is also called “GNU Backgammon” at ytani01/ytBackgammon–

This is free software, so it’s certainly alright if someone forks it or creates what appears to be a Javascript project (if it is indeed a fork). It’s unfortunate that they’ve chosen GitHub for this, but if it’s not one of the actual GNU maintainers, we can’t blame the GNU Project for this. We can only hope that ytani01 decides to DeleteGithub and move their project somewhere else.

“GNU Smalltalk really shouldn’t be developed on Microsoft Github.”GNU Zile has Perl in tests and build.

GNU Wget has png in docs and could be compiled with support for brotli (from Google’s GitHub) or zstd (Facebook’s GitHub) or libpsl for cookie domain checking, which appears to be from GitHub.

GNU VCDImager is being developed on GitHub.

GNU Typist has Perl and Perl modules in tools.

GNU troff and GNU Stow use Perl.

GNU tar calls GNU bison, which is GitHub-based.

GNU SpaceChart uses Perl and contains a parser made for or with bison.

GNU source-highlight has Python and Perl in tests.

GNU Source Release Collection will depend on GitHub as long as any official GNU software does, as its purpose is to “maintain a rolling release of the latest version” of GNU projects.

I would be more comfortable with someone trying to make an official distro-like collection of all GNU projects if the project admin wasn’t someone who has continued to develop on Microsoft GitHub for the past year. Why not just bring the entire GNU project into a GitHub staging area?

What is this, anyway? https://github.com/gitGNU

“gnu_bash C GPL-3.0 37 61 0 2 Updated 5 days ago”

“I stopped counting things that use flex or bison for building because there are so many.”GNU Solfege uses Python and png.

GNU social uses HTTP_Request2, from GitHub.

GNU Smalltalk has a story, of sorts. It was being developed on GitHub as far back as 7 years ago, well before the Microsoft purchase but by now-inactive contributor bonzini/smalltalk. I only noticed this because of a dead link to MrGwen/gst-visualgst in the /packages folder of the GNU Smalltalk sources.

The current GNU maintainer is also active on GitHub, though it does not seem to be where the most recent Smalltalk development has taken place. For clarity, here is a quick timeline…

* The most recent commit from the actual GNU Smalltalk maintainer on GitHub appears to be from 2015 on janvrany/gst, except for the following fork:

* The most recent commit on GitHub related to GNU Smalltalk appears to be on a fork of Smalltalk at Synss/smalltalk (it also includes a more recent commit from the current GNU maintainer) in 2017 — this is before the GitHub purchase.

* After the 2018 acquisition, the most recent commit to GNU Smalltalk (typo fixes in the tutorial) appears to be on the GNU git — this is ideal if it’s accurate. GNU Smalltalk really shouldn’t be developed on Microsoft Github. http://git.savannah.gnu.org/cgit/smalltalk.git/commit/

So there’s probably nothing sinister there, but it’s worth watching. The /examples include Gtk, cairo (either gtk1/github or cairo2 < zlib1g) and it uses png.

Gnu Slip uses or used bison, uses or used flex, includes a pdf user manual.

GNU Shishi is a Kerberos 5 implementation with pdf, png and postscript in the docs.

GNU sed uses Perl in tests.

“Even without being based on nixos, the fact that Guix is/has a package manager with package data means that its going to pull in applications from GitHub.”GNU Screen includes postscript in docs, while GNU Scientific Library includes Python and png in the docs.

GNU Rush includes cflex.c which is generated by flex, which is from GitHub.

I suppose there are two ways you can treat a parser or lexer created with bison or flex. You can treat them as compiled output of bison or flex, or as a program or fork in their own right. How you decide to think of them determines how vital bison or flex is to changing that project.

You can certainly change the output of bison or flex without running bison or flex again. Anybody who has written their own parsers understands this. But if the source includes the input for bison and flex or calls it from a script, then it’s difficult to say they aren’t required as well.

I stopped counting things that use flex or bison for building because there are so many.

GNU Robots uses Gtk. When you see Gtk, it pretty much means glib2 or gtk1 — one of which needs libffi, the other of which is on GitHub. This is irritating — somebody show the way out of this. I don’t love GNOME at all, but I do like Gtk.

GNU radius has a scanner written by flex, it also uses Perl. GNU Pth uses Perl and includes postscript documents.

GNU Prolog has Perl in examples, pdf and png in docs. GNU Pem uses Perl.

GNU patch appears to use bison. GNU Parted uses Perl and Python in tests.

“As to whether Guix depends on GitHub, I would say so.”GNU Parallel is based on Perl, and has pdf in /src.

GNU Paint is written in Vala, and uses glib, cairo and Gtk.

GNU Octave uses Perl and png, GNU Networking Utilities use Perl.

GNU nano has OS/2 support which comes from GitHub, and seems to need flex. The Debian package inexplicably requires zlib1g, I was unable to determine why (it’s not mentioned in the source) https://packages.debian.org/buster/nano

GNU MIX Development Kit has png in the docs, a scanner generated by flex, and uses Gtk.

GNU Midnight Commander uses Perl and optionally builds with glib2 (which needs libffi which is from Github).

The NEWS file in GNU Mes says: “Mescc now depends on M1″ from mescc-tools on GitHub, and “Mescc now depends on the hex2 linker” from mescc-tools on GitHub.

GNU MediaGoblin uses Python, as well as Docker (Docker is based on GitHub).

GNU Mailutils uses lots of Python and may need bison or flex.

GNU Mailman uses Python and png.

GNU Linear Programming Kit has pdf in examples, /doc.

GNU LilyPond Music Typesetter uses Python, postscript, has png in docs.

GNU Libtasn1 may need bison, has postscript, png and pdf in docs.

“First, I use basic automation and string matching to isolate relevant data, then to present it to me one project at a time so I can process hundreds of projects.”GNU Internationalized Domain Names Library has Perl in tests, pdf and png in docs and may have other components from GitHub.

GNU Hyperbole uses Python, png — this one is worth watching with regards to GitHub.

GNU Health is largely Python-based.

GNU HaliFAX uses Gtk. GNU gzip uses Perl. GNU gv has a parser generated with bison and uses Perl.

GNU Guix has png in docs, pdf in docs and probably needs libffi from GitHub.

NixOS being Github-based means GitHub is probably impossible to avoid for Guix — though that wouldn’t mean Guix had no potential as a fork.

Even without being based on nixos, the fact that Guix is/has a package manager with package data means that its going to pull in applications from GitHub. No effort is being made to make that more than it is, because practically every known distro pulls in packages that are GitHub-based — like Python, for example. Also libgd (GitHub) which the changelog says was added then removed. Very relevant to Guix? Perhaps not, but due to looking it up I know libgd is GitHub-based.

As to whether Guix depends on GitHub, I would say so. Elogind is forked on GitHub for guixSD: https://github.com/elogind/elogind The fork is for a good cause, but why use GitHub for this?

From README.md: “All of the credit for elogind should go to the systemd developers.” “All of the blame should go to Andy Wingo, who extracted elogind from systemd.” “All complaints should go to Sven Eden, who is maintaining elogind.”

The readme for GNU Guile-CV says Guile-CV is based on vigra (which is based on GitHub).

GNU GRUB uses Python, png, jpeg. Riscv-isa-manual is GitHub-based. The changelog implies that zstd from Facebook’s GitHub is supported, which possibly means it’s included. And m4/intl.m4 says “dnl because plural.y uses bison specific features”.

“As to how to devote hours at a time to this, it really takes a soundtrack. Half of this research was not possible without Green Velvet and Tiësto sets on loop — I would have gotten really bored.”GNU gradebook uses png and Gtk. GNU Go uses Perl, Python and has png in docs and pdf in docs.

GNU GLOBAL uses Python and Perl. It also appears to include jQuery, which is GitHub-based.

GNU Enterprise and GNU EDMA use Python.

GNU C Library uses Perl and Python. Serious question — what is it like if you remove them? I’m glossing over a lot of details there, sorry about that.

This was incredibly tedious work to research and put together, how did I sit through this?

“With a soundtrack, it’s also quite interesting to discover all these Lilliputian strings linking the GNU project with stuff developed increasingly on GitHub — Microsoft tries, as it always has year after year — to take all the marbles and win.”First, I use basic automation and string matching to isolate relevant data, then to present it to me one project at a time so I can process hundreds of projects. The automation and results prove nothing — they only show where to pay more attention. I take the data and go from there.

As to how to devote hours at a time to this, it really takes a soundtrack. Half of this research was not possible without Green Velvet and Tiësto sets on loop — I would have gotten really bored. With a soundtrack, it’s also quite interesting to discover all these Lilliputian strings linking the GNU project with stuff developed increasingly on GitHub — Microsoft tries, as it always has year after year — to take all the marbles and win.

Will Part 5 have some good news? You tell me.

Long live rms, and happy hacking.

Licence: Creative Commons CC0 1.0 (public domain)

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email
  • Slashdot

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. The National Center for Missing and Exploited Children (NCMEC) Identified Some of the Children in the Pornographic 'Stash' of Bill Gates' Engineer

    Today we carefully and responsibly disclose just 9 pages (out of about 2700 pages) with slightly redacted samples and a handful of exemptions to show what Bill Gates' engineer was amassing, including identified kids (known to NCMEC)



  2. A Red Hat Response to Factual Information About Red Hat

    So far we've seen only Red Hat employees blasting our articles about Red Hat/IBM and the responses lack any substance, just name-calling (so we must be on the right track; there's no refutation so far)



  3. Always Look for Stories the Media is Suppressing and Hiding

    Based upon closer scrutiny of the Jones case (engineer of Bill Gates arrested for pedophilia at the Gates mansion), the sentence he received is incredibly negligible or close to nothing (for possession and sharing/dissemination of massive troves of child pornography, typically leading to many years in prison), so we’re closely examining if he’s still working and whether he still works for Bill and Melinda (more FOIA requests may be necessary)



  4. On Web Servers, Microsoft's Collapse Continues More Rapidly Under COVID (a Million Domains Lost in the Past Month)

    Even though the Microsoft-sponsored media repeatedly refuses (or strangely enough just 'fails') to report on it, the days of Microsoft's IIS are likely numbered; it won't be long before less than a million computers run it



  5. Canonical is Boosting Microsoft's Proprietary Software With Extensive Surveillance

    Canonical’s commitment to Free software barely exists; with so-called “Apps” and “Snaps” and “Stores” we’re seeing a gradual transition to — and acceptance of — blobs and DRM, including Microsoft lock-in inside Ubuntu



  6. IRC Proceedings: Wednesday, August 12, 2020

    IRC logs for Wednesday, August 12, 2020



  7. Harfbuzz Joins LibFFI, Zlib1g in Dragging GNOME, All Free Software Towards Microsoft

    "...I don’t want to help them help Microsoft control my computing by proxy — by controlling the development platform itself"



  8. Links 12/8/2020: Go 1.15, LibreOffice 7.0 Downloaded About Half a Million Times, LibreELEC (Leia) 9.2.4

    Links for the day



  9. Mega Setup, Mini Budget

    For a sum total of under £800 (eight hundred British pounds are about USD/$1043) one can piece together a versatile working environment (my latest additions, as of 5 days ago, are the 4 plastic plants)



  10. Twitter Appears to Have Taken Vendor/Platform Lock-in up Another Notch, Having Become Almost as Malicious as Facebook

    Twitter jumped the shark



  11. IRC Proceedings: Tuesday, August 11, 2020

    IRC logs for Tuesday, August 11, 2020



  12. Infographic by Marcia Wilbur: Where's My Refund?!

    Tweet by Marcia Wilbur:



  13. Links 12/8/2020: New GNU Emacs, GXml-0.20, WordPress 5.5, and Mozilla is Laying off 250 Staff

    Links for the day



  14. You Just Know Somebody is in a State of Retreat When the Strategy Becomes to Discredit One's Critics (or Collectively Paint Them All as Wrong/Crazy)

    A goulash of bullcrap from Bill Gates doesn't add up; it seems like his media strategy has warped (or fallen back) onto discrediting his critics as though they don't exist, don't know anything, or are simply jealous



  15. United States v IBM Archives/Resources

    As the massive case against IBM monopoly (United States v IBM; 104,400 pages of trial transcripts and 17,000 exhibits) predates the World Wide Web it's difficult to find comprehensive literature about it any longer (Wikipedia and more modern sites are instruments of revisionism and reputation laundering)



  16. History Goes in Cycles

    Just like antiwar activism was 'quelled' or 'pacified' half a century ago nowadays we're led to think that software freedom is just fine and there's nothing left to argue about (except words and other petty nonsense)



  17. Looking Back at the Real Story of Microsoft

    Let's take a moment to examine what Microsoft was all along (since its formation in 1975)



  18. Europe Deserves Better Than Today's EPO

    Overly restrictive society with countless monopolies (even on seeds!) will neither serve people nor will it breed general acceptance



  19. European Patent Office Management Swims With Sharks and Liars

    It has become increasingly if not abundantly evident that European Patent Office President Campinos is no better than Battistelli as he’s still a ‘darling’ of patent litigation trolls and their front groups/lawyers



  20. Linked In to Pedophilia

    As the above articles show (one published a couple of days ago), the 'Web of Lies' and the incredible deceit/cover-up run deep and we still lack answers from those who enabled what Salon has just said involved "trafficking five or six girls a day."



  21. Whistleblower Aid Already Showed Cover-up of Bill Gates 'Contributions' to MIT

    The Goodwin Procter report which failed to actually investigate whether Gates and Epstein jointly directed payments to MIT (the latter was already dead) can be understood differently in light of the above leak, which was published earlier this year



  22. IRC Proceedings: Monday, August 10, 2020

    IRC logs for Monday, August 10, 2020



  23. Proof (Archived Original Letter): Bill Gates Lied to the New Yorker, BBC and Others About Connection of MIT Money to Mr. Jeffrey Epstein and Their Close Relationship

    As the article (“The anatomy of Bill Gates’ Jeffrey Epstein-facilitated MIT donations”) put it at the time (just 2 days before Dr. Stallman received all the heat at MIT), “Secrecy in the funding of academic programs is highly problematic, as University of Virginia professor Siva Vaidhyanathan explains in a long Twitter thread. “Companies and the billionaires who run them are always bending research agendas (and sometimes even results) to their interests,” he writes. “Anonymity would prevent any examination or accountability.”” But there are more high-level Microsoft links to Mr. Epstein; “Hoffman invited both former MIT Media Lab director Joi Ito and Epstein to an August 2015 dinner in Palo Alto with Elon Musk, Mark Zuckerberg and Peter Thiel. He tells Axios that he invited Epstein at Ito’s behest, and only because Ito vouched for the convicted criminal, saying that he had successfully cleared MIT’s vetting process.” In 2016 the article “Bill Gates talked to Reid Hoffman about being on Microsoft’s board of directors” was published. “Furthermore,” it notes, “Gates and Hoffman have a lot in common: They both hold board seats and advisory roles, and no other formal status or day-to-day obligations, at the tech companies they founded.”



  24. All This Happened While Bill Gates' Engineer Was on Trial for Amassing Child Pornography

    While MIT relies on the word of someone who repeatedly lied about his relationship with Mr. Epstein (refuted even by MIT itself), the record shows what happened just when Bill Gates’ own engineer faced conviction for pedophilia (the media diverted attention to Dr. Stallman just days after the above E-mails came to light)



  25. Links 10/8/2020: Popcorn Computers Pocket PC, Finnix 121, GhostBSD 20.08.04, EasyOS 2.3.8

    Links for the day



  26. IRC Proceedings: Sunday, August 09, 2020

    IRC logs for Sunday, August 09, 2020



  27. Release: Bill Gates' Engineer Busted for More Child Pornography Than Reported in the Media

    Based on our analysis, which was repeated carefully twice, the sum of recognised hashes turns out to be about 7,500 (7,430 objects), which is more than was reported in the media after the arrest of Rick Allen Jones at Bill Gates' mansion



  28. Links 10/8/2020: KPhotoAlbum 5.7.0 and MX Linux RC

    Links for the day



  29. UserLibre: What I Want You to Get From This Book

    "Corporate-backed lies run the world, and the FSF used to get in the way."



  30. Even the Mainstream/Corporate Media is Trying to Study Why (or If) Bill Gates and Epstein's Sex Abuse Ring Were Closely Connected

    People in the media are eager to understand why Mr. Gates was so close to Mr. Epstein and even flew his plane (despite having several of his own)


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts