lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-Id: <200706150316.56556.rob@landley.net>
Date:	Fri, 15 Jun 2007 03:16:52 -0400
From:	Rob Landley <rob@...dley.net>
To:	Alexandre Oliva <aoliva@...hat.com>
Cc:	Florin Malita <fmalita@...il.com>,
	Daniel Hazelton <dhazelton@...er.net>,
	Linus Torvalds <torvalds@...ux-foundation.org>,
	Adrian Bunk <bunk@...sta.de>,
	Alan Cox <alan@...rguk.ukuu.org.uk>, Greg KH <greg@...ah.com>,
	debian developer <debiandev@...il.com>, david@...g.hm,
	Tarkan Erimer <tarkan@...one.net.tr>,
	linux-kernel@...r.kernel.org,
	Andrew Morton <akpm@...ux-foundation.org>, mingo@...e.hu
Subject: Re: Dual-Licensing Linux Kernel with GPL V2 and GPL V3

On Thursday 14 June 2007 22:25:57 Alexandre Oliva wrote:
> On Jun 14, 2007, Bill Nottingham <notting@...hat.com> wrote:
> > Alexandre Oliva (aoliva@...hat.com) said:
> >> And since the specific implementation involves creating a derived work
> >> of the GPLed kernel (the signature, or the signed image, or what have
> >> you)
> >
> > Wait, a signed filesystem image that happens to contain GPL code
> > is now a derived work? Under what sort of interpretation does *that*
> > occur?
>
> Is the signature not derived from the bits in the GPLed component, as
> much as it is derived from the key?

Actually, you can't copyright, trademark, or patent a number.  In order to 
copyright something it has to have some creative element.  You also can't 
copyright (or trademark) book titles.  So no, last I checked you can't 
copyright an MD5sum or SHA1sum.

I vaguely recall somebody dredging around for the smallest thing there was a 
legal precedent explicitly affirming you could copyright it, and it was a 
haiku.  So they put an uncompressed ascii haiku in their protocol...

Now if you sign the executable binary, then the binary (as a whole) is a 
derivative work of your copyrighted code etc. ad nauseum pluribus unum and so 
on.  And THAT is due to Apple vs Franklin in 1983:
  http://www.internetlegal.com/impactof.htm
Before which copyright was only guaranteed to apply to source code, not to 
binaries (which are basically big numbers).  That's why everybody distributed 
source code before then: it was the only thing they knew you could enforce a 
copyright on...

IBM's "Object code only" initiative happened around the same time...
  http://landley.net/history/mirror/ibm/oco.html
Along with the AT&T breakup commercializing Unix, the launch of the GNU 
project, and the general rise of "shrinkwrap" software.

(There's this marvelous book called "Legal battles that shaped the computer 
industry" by Lawrence D. Graham, devotes a few pages to Apple vs Franklin.  
Franklin honestly didn't think Apple's binary ROMs were copyrightable.  Just 
as in a 1980 interview with Bill Gates, he couldn't stop somebody from 
printing a book with an annotated printout of the TRS-80 ROMs Microsoft had a 
copyright to.  He sounded kind of pissed about it, actually.  Also young and 
whiny:
Transcript:
  http://slashdot.org/features/00/01/20/1316236.shtml
Audio:
  http://landley.net/history/mirror/ms/gates.mp3
)

Rob
-- 
"One of my most productive days was throwing away 1000 lines of code."
  - Ken Thompson.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ