lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <20060805104507.GA4506@ucw.cz>
Date:	Sat, 5 Aug 2006 10:45:07 +0000
From:	Pavel Machek <pavel@....cz>
To:	Zachary Amsden <zach@...are.com>
Cc:	Rik van Riel <riel@...hat.com>,
	Linux Kernel Mailing List <linux-kernel@...r.kernel.org>,
	Linus Torvalds <torvalds@...l.org>, greg@...ah.com,
	Andrew Morton <akpm@...l.org>,
	Christoph Hellwig <hch@...radead.org>,
	Rusty Russell <rusty@...tcorp.com.au>, Jack Lo <jlo@...are.com>
Subject: Re: A proposal - binary

Hi!

> >You're making a very good argument as to why we should 
> >probably
> >require that the code linking against such an 
> >interface, if we
> >decide we want one, should be required to be open 
> >source.
> 
> Personally, I don't feel a strong requirement that it be 
> open source, because I don't believe it violates the 
> intent of the GPL license by crippling free distribution 
> of the kernel, requiring some fee for use, or doing 
> anything unethical.  There have been charges that the 
> VMI layer is deliberately designed as a GPL 
> circumvention device, which I want to stamp out now 
> before we try to get any code for integrating to it 
> upstreamed.

Maybe it is not designed tobe evil, but...

> >>I think you will see why our VMI layer is quite 
> >>similar to a
> >>traditional ROM, and very dissimilar to an evil 
> >>GPL-circumvention
> >>device.
> >
> >>(?) There are only two reasonable objections I can see 
> >>to open
> >>sourcing the binary layer. 
> >
> >Since none of the vendors that might use such a 
> >paravirtualized
> >ROM for Linux actually have one of these reasons for 
> >keeping their
> >paravirtualized ROM blob closed source, I say we might 
> >as well
> >require that it be open source.
> 
> I think saying require at this point is a bit 
> preliminary for us -- I'm trying to prove we're not 
> being evil and subverting the GPL, but I'm also not 
> guaranteeing yet that we can open-source the code under 
> a specific license.  Sorry about having to doublespeak 

...it should be very easy to opensource simple 'something' layer. If
it is so complex it is 'hard' to opensource, it is missdesigned,
anyway... so fix the design.

My proposal would be: add open-source hypervisor interface, and keep
it updated for a while. If it is too hard to keep updated, we'll have
to solve it, somehow, but lets not overengineer it now.
							Pavel
-- 
Thanks for all the (sleeping) penguins.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ