| 1 |
On 25/06/18 15:37, Ulrich Mueller wrote: |
| 2 |
>>>>>> On Mon, 25 Jun 2018, Greg KH wrote: |
| 3 |
>> And I'm dragging this back to -core, as I'm not on -project, so my |
| 4 |
>> responses are not even going there, and you started this on -core. |
| 5 |
> Nope, I started the thread on -project on 2018-05-30: |
| 6 |
> https://archives.gentoo.org/gentoo-project/message/b1d92fc4275c15a052cf27bb2a5d75dd |
| 7 |
> I cross-posted to -core once (on 2018-06-04) for wider audience, |
| 8 |
> because I had received only a handful of replies by then. |
| 9 |
> |
| 10 |
> Otherwise, there is no reason why this discussion should take place in |
| 11 |
> private, so it is off-topic in -core. |
| 12 |
> |
| 13 |
>>> With the license currently listed at https://developercertificate.org/ |
| 14 |
>>> ("changing is not allowed") nobody would even be allowed to commit |
| 15 |
>>> the DCO to a repository under it's own terms. Catch-22. |
| 16 |
>> And as the Debian developers said, "that's crazy-talk, don't worry |
| 17 |
>> about it." Seriously, don't. |
| 18 |
> If anyone worries about non-free files in their repositories, then |
| 19 |
> it's Debian. Certainly much more than we do. |
| 20 |
> |
| 21 |
> Also, encouraging people to falsely certify things (and "don't worry |
| 22 |
> about it") is exactly what we want to avoid. If there is a S-o-b line |
| 23 |
> included with a commit, then there must not be any doubt that this |
| 24 |
> commit conforms to the wording of the certificate. If we allow people |
| 25 |
> to commit non-free files and certify them under the Linux DCO 1.1 then |
| 26 |
> the whole exercise is useless. |
| 27 |
> |
| 28 |
>> And if you do have a lawyer who is worried about such a thing, |
| 29 |
>> please let me talk to them and I'll be glad to put them in contact |
| 30 |
>> with loads of other lawyers who will be glad to discuss it. |
| 31 |
>> What company or legal entity has concern with the DCO as-written? |
| 32 |
> Everybody who wants to commit a license file to the Gentoo repository, |
| 33 |
> and with the DCO 1.1 would have to lie about its status? |
| 34 |
> |
| 35 |
>> That's not the only thing that you have changed here, as you state. |
| 36 |
>> You changed the wording of the types of licenses (hint, "free |
| 37 |
>> software" is not the same as "open source" and has consequences by |
| 38 |
>> changing that wording.) |
| 39 |
> It is generally acknowledged that "open source" licenses and "free |
| 40 |
> software licenses" are mostly congruent. (There are very few OSI |
| 41 |
> approved licenses like Artistic 1.0 which the FSF classifies as |
| 42 |
> non-free. The other way around, I am not aware of any.) |
| 43 |
> |
| 44 |
> Nevertheless, I don't have a strong opinion here. Our Social Contract |
| 45 |
> says "free software", so we changed it to that for consistency, but |
| 46 |
> replacement of the term alone wouldn't be a sufficient reason to |
| 47 |
> create a modified version. |
| 48 |
> |
| 49 |
>>> Do you think that anybody would have difficulties understanding |
| 50 |
>>> this? Then please propose a better wording. |
| 51 |
>> I am saying, over and over and over, that it's not up to me to |
| 52 |
>> change the wording. I want _you_ to justify the change by getting a |
| 53 |
>> solid legal opinion that what you are changing actually does what |
| 54 |
>> you think it does, and is even needed in the first place. |
| 55 |
>> Again, don't try to arm-chair legal issues. That ends up causing |
| 56 |
>> many more problems than you can ever imagine. There's a good reason |
| 57 |
>> that lawyers write licenses and legal texts as they understand |
| 58 |
>> things that are not obvious to non-legally-trained people. |
| 59 |
> (Sometimes I wonder how some people survive. Do they ask their lawyers |
| 60 |
> before passing a green traffic light? Or before agreeing to a contract |
| 61 |
> of sale in the grocery store? :-) |
| 62 |
> |
| 63 |
>> And again, you are ignoring the fact that we all are now going to |
| 64 |
>> have to get the legal departments of our companies to evaluate this. |
| 65 |
>> That will NOT take just 1 minute. If you use the DCO as-is, that |
| 66 |
>> would only take 1 minute. |
| 67 |
> How about the following change then: |
| 68 |
> |
| 69 |
> --- a/glep-0076.rst |
| 70 |
> +++ b/glep-0076.rst |
| 71 |
> @@ -133,12 +133,17 @@ with the project's license. |
| 72 |
> For commits made using a VCS, the committer shall certify agreement |
| 73 |
> to the Gentoo DCO by adding ``Signed-off-by: Name <e-mail>`` to the |
| 74 |
> commit message as a separate line. Committers must use their real |
| 75 |
> name, i.e., the name that would appear in an official document like |
| 76 |
> a passport. |
| 77 |
> |
| 78 |
> +As an alternative to the above, commits may be certified with the |
| 79 |
> +Linux Kernel DCO 1.1. Committers shall clearly indicate this by |
| 80 |
> +adding ``(Linux DCO 1.1)`` at the end of the ``Signed-off-by`` line. |
| 81 |
> +Using the Gentoo DCO is strongly preferred, though. |
| 82 |
> + |
| 83 |
> The following is the current Gentoo DCO:: |
| 84 |
> |
| 85 |
> Gentoo Developer's Certificate of Origin, revision 1 |
| 86 |
> |
| 87 |
> By making a contribution to this project, I certify that: |
| 88 |
> |
| 89 |
> |
| 90 |
> It would allow anyone who has issues with our modified version to |
| 91 |
> commit under the original Linux DCO instead. Of course, certain files |
| 92 |
> they couldn't commit then. |
| 93 |
> |
| 94 |
> Ulrich |
| 95 |
I make a simple observation based on the thread here. I would personally |
| 96 |
probably be more comfortable under a DCO that has "large organisation" |
| 97 |
backing eg. Linux kernel, as the effort required to make changes is |
| 98 |
likely to be significant, and it is likely to have been vetted by |
| 99 |
"qualified persons". By contrast, Gentoo is likely to have been cobbled |
| 100 |
together by a consensus of unqualified persons, and is quite unlikely to |
| 101 |
be defended in court, -should- it come to that (see recent legal case of |
| 102 |
McHardy et al). |
| 103 |
|
| 104 |
Not that I have any issue with Gentoo having it's own, but it lacks |
| 105 |
teeth and claws. |
| 106 |
|
| 107 |
----- |
| 108 |
another 2c from the peanut gallery. Apologies. |
Archives