IETF Logo Mail Archive

(Re: IETF and open source license compatibility)

Scott Kitterman <scott@kitterman.com> Fri, 13 February 2009 14:16 UTC

Return-Path: <scott@kitterman.com>
X-Original-To: ietf@core3.amsl.com
Delivered-To: ietf@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 9B9523A67F7 for <ietf@core3.amsl.com>; Fri, 13 Feb 2009 06:16:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id c275QW0kkvYV for <ietf@core3.amsl.com>; Fri, 13 Feb 2009 06:16:43 -0800 (PST)
Received: from mailout02.controlledmail.com (mailout02.controlledmail.com [72.81.252.18]) by core3.amsl.com (Postfix) with ESMTP id 50CE33A6B78 for <ietf@ietf.org>; Fri, 13 Feb 2009 06:16:43 -0800 (PST)
Received: from mailout02.controlledmail.com (localhost [127.0.0.1]) by mailout02.controlledmail.com (Postfix) with ESMTP id 1189020E40FD; Fri, 13 Feb 2009 09:16:48 -0500 (EST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=kitterman.com; s=2007-00; t=1234534608; bh=dQA1wfx4GHwEZpWOCXKuXd53puV1A8NoTMiu2pP/Fkg=; h=Mime-Version:To:Subject:Message-ID:In-Reply-To:References:From: Date:Content-type:Content-transfer-encoding; b=P67Wiezgkrf8c6PUm95BoxQIWDjn1L/m0q1jIK7Dlg+wStbH7YZAH+9dMag8VR44D UHac76dFNsuTTxz4UDovrcWfG9tQV/V2LyFN50vnLepl23yyxDjizQ2v5GYLKO6xw1 z45i5K8KQzQkvB2nufLJBT2jz9XO+VBanzSnL31E=
Received: from [75.196.36.10] (10.sub-75-196-36.myvzw.com [75.196.36.10]) (using SSLv3 with cipher RC4-MD5 (128/128 bits)) (No client certificate requested) by mailout02.controlledmail.com (Postfix) with ESMTPSA id ACF8420E40FB; Fri, 13 Feb 2009 09:16:44 -0500 (EST)
Mime-Version: 1.0
X-Mailer: SnapperMail 2.5.0.06 by Snapperfish
To: ietf@ietf.org
Subject: (Re: IETF and open source license compatibility)
Message-ID: <30218-SnapperMsgD8DB99B6C5BB314C@[75.196.36.10]>
In-Reply-To: <87bpt6im7l.fsf@mocca.josefsson.org>
References: <87bpt9ou7d.fsf@mocca.josefsson.org> <C5B8BAE5.30347%stewe@stewe.org> <87k57vlwfu.fsf@mocca.josefsson.org> <49941899.5010506@piuha.net> <alpine.LSU.2.00.0902121243481.4546@hermes-2.csi.cam.ac.uk> <499447D1.6060600@alvestrand.no> <87mycrjsuz.fsf@mocca.josefsson.org> <4994AE67.7050007@alvestrand.no> <87r622iq1p.fsf@mocca.josefsson.org> <49954E44.3030704@alvestrand.no> <87iqneio0p.fsf@mocca.josefsson.org> <4995588F.6090805@alvestrand.no> <87bpt6im7l.fsf@mocca.josefsson.org>
From: Scott Kitterman <scott@kitterman.com>
Date: Fri, 13 Feb 2009 09:16:00 -0500
Content-type: text/plain; charset="US-ASCII"
Content-transfer-encoding: 7bit
X-AV-Checked: ClamAV using ClamSMTP
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 13 Feb 2009 14:16:44 -0000

On Fri, 13 Feb 2009 12:57:02 +0100 Simon Josefsson <simon@josefsson.org> 
wrote:
>Harald Alvestrand <harald@alvestrand.no> writes:
>
>>> This seems more or less correct, even though it may sound surprising at
>>> first.  More generally, and more clearly expressed, it can be stated as
>>> this: The license for a piece of work applies to the piece of work, it
>>> does not apply to the license itself.  The license of a work is not
>>> normally not considered part of the work; it is metadata about the work.
>>>   
>> But (and the reason why this is important, and IETF-relevant) how is
>> this case different from the case where you introduce pieces of an RFC
>> (which also don't need to be considered part of the work) as comments
>> into a work?
>
>The only way I can see to avoid having the comment be part of the work
>is to use different licenses for the code and the comment.  (Do you see
>any other way?)
>
>That is possible, but leads to problems.
>
>The result is a complex license on the combined work.  The combined
>license says essentially something like "License A applies to portion X
>and the IETF Trust License applies to portion Y".  That combined license
>may not be compatible with other licenses, both free and non-free
>licenses.
>
>For example, the combined license would not be compatible with the GPL
>because modifications of the entire work is not permitted.
>
>I believe it is possible to find proprietary licenses that have other
>clauses that render the license incompatible with the IETF Trust
>license.  So the problem is wider than just free software licenses.  I
>believe the IETF needs to realize that GPL software runs part of the
>Internet and that catering to these licensing needs is as important as
>catering to the licensing needs of, say, Microsoft.
>
>The license compatibility question is more relevant for free software
>because people are more conservative in evaluating software licenses in
>the free software community compared to the enterprise setting where
>licenses are typically only ever evaluated when someone sues or is sued
>by someone.
>
>My point has been that triggering this situation works counter to the
>goal of the IETF.  In a strict setting, it means implementers cannot use
>verbatim text from RFCs, but needs to rewrite the text to avoid re-use
>of material under the IETF Trust license.  I believe that opens up for
>interoperability problems (when a re-written comment is subtly different
>from the original meaning, and the comment influences code).  If people
>decide that this rewriting needs to happen to avoid contamination from
>the IETF Trust license, it would also delay getting IETF protocols
>deployed.
>
>This has been my rationale for suggesting that IETF documents should be
>licensed under a free software compatible license.  I am aware that
>battle is already lost, so I have mixed feelings about discussing this
>further.  However if others bring up related topics I feel a need to
>respond.  My hope is that it is possible to alter the policies in the
>future.  Fortunately, I believe the new BCP 78 has created good ground
>to make that possible.
>
>Generally, however, I think this question is very different from where
>this thread started.  It started, as far as I consider, with Stephan
>suggesting that free software authors publish "free" (as in licensed
>under a free software license) standards in the IETF.  That is not
>possible, and is unrelated to the question we discuss here.  I'm happy
>to discuss both questions, but I'm concerned that you and others may
>believe that you dispute my first claim by discussing this separate
>issue.
>
>> With the GPL text, you don't have the copyright, and you don't have a
>> license that permits modified versions. But you do have the right to
>> copy it.
>>
>> With the excerpt from an RFC, you don't have the copyright, and you
>> don't have a license that permits modified versions. But you do have
>> the right to copy it - you even have the right to copy pieces of it.
>>
>> Why are you insisting that the first is perfectly reasonable, and the
>> second is a show-stopper?
>
>I'm not saying the second is a show stopper.  The Internet appears to
>work relatively well on most days.  However, I insist that it is a
>potential impediment and that it works counter to the goals of the IETF.
>

This kind of complexity will end up having all kinds of unfortunate 
consequences.  To give but one example ....

I do some development work for Debian and Ubuntu (a major derivative of 
Ubuntu).  Debian has a long standing policy on licensing requirements for 
inclusion of software in Debian (I'm not asking you to accept any value 
judgements about the goodness or badness of these requiements, they are 
what they are).

One requirement is that the work be freely modifiable.  As a result, RFCs 
and IETF drafts are not acceptable.  Any substantial quote that carried the 
same licensing requirements would have to be removed.

Another requirement is that software sources be shipped in their preferred 
form for modification.  Obfuscated code is not allowed.

Removing comments is a form of obfuscation.

As a result, the type of combined work envisioned here would likely be 
unacceptable.

If one wants to consider experiments, I do see a way out.  

The biggest concern I undertand the IETF having is that someone might 
modify RFC xyz and claim the modification is RFC xyz.  Debian (and Ubuntu) 
permit licenses that require the work to be renamed if they are modified.  
Thus Ubuntu ships Firefox (and coordinates its changes with Mozilla) and 
Debian ships Ice Weasel (and is not required to get Mozilla's permission to 
modify).

It might be useful to conduct an experiment with licensing some subset of 
RFCs with a modified license that allowed modification of RFC text as long 
as the modified work is renamed.  

I think this is a potential approach that supports the requirements of the 
IETF, proprietary software developers, and Free software developers.

Scott K

P. S. I'm not familiar with licensing policies of other 
distributions/operating systems, so this is admitedly focused on the 
requirements of the parts of the Free software ecosystem with which I am 
most familiar.

v2.35.0 | Report a Bug | By Email | System Status