New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add fields for patent encumbrance and patent license #254
Comments
Software licences are nothing to do with patents. We use Also, you should note that some of my free software projects are subject to patents that are in the Red Hat patent pool. That doesn't change the license or make them any less free. |
A agree that the copyright license is independent of patents. In the case that prompted the issue, there are known and seemingly respected patents covering the implementation, causing special care being taken by, for example, Fedora and Mozilla. I think that software that acts based on appstream metadata (such as flatpak) should get a chance to handle such cases with care also, which is why I requested fields for known patent issues and patent licenses. I suggested to link to a page listing both copyright and limited patent license as an interim workaround, because the documentation of |
While I agree license is possibly wrong field for this, there possibly should be some way to flag something as being patent-encumbered to allow filtering in clients. Currently we have no good field to put that information in. |
Does the patent situation depend on the end user and distributor legal location? I think this is a slippery slope that isn't a good idea. |
@hughsie my view is that the more information programs and users have to make a decision that is ultimately in the users favour -- the better. If the applicability of a patent depends on geographic locations then ideally that would be communicated to the user. For example one might choose not to install software if its use plausibly opens one up to a lawsuit while travelling, or choose to install it if it is safe to use in the EU. There are also distributions that want to help users to install only free software. Unless they add filtering to flatpak based on the proposed tags, installing almost any app from flathub pulls in openh264, which in my opinion cannot be called free:
What is the argument in favour of omitting the information? Deniability? |
The opposite. I'm not a lawyer, and don't pretend to be, but I am prepared to listen to what they say. |
I too would be happy to listen to what they say about this. Will you ask the Red Hat legal team to have a look at this issue? |
I don't think it would be helpful, it would be meaningless for them. It's up to @ximion if he wants to capture patents in AppStream, but this is something I would never support in Fedora. Google "double damages" if you want to see the difference between accidental and wilful infringement. |
Whom do you want to protect from double damages? If it is the end user, then perhaps it would suffice to design Gnome Software and other consumers of AppStream such that the end users can deny having seen the information -- if they so wish. If it is the curator of the app data, then she can just omit the field. But if the curator is not also the distributor, then I think that she has nothing to fear for including the information. |
After digging through appstream documentation, I found out that there's a field "agreement". It currently has eula or privacy types. It seems to me that accepting eula might well be what accepting openh264 binary license implies. I'm not sure there's any support for handling agreement in any flatpak clients but that's another thing. |
"Fedora and Mozilla do not distribute it." neither does Flathub. Flathub distributes an installer that downloads openh264 from Cisco on end-user machine. Mozilla does exactly the same with Firefox. Based on https://blogs.gnome.org/uraeus/2019/09/23/fedora-workstation-31-whats-new/ Fedora is going to follow suit. The question is mostly whether we're providing sufficient amount of information and control for end-user to satisfy requirements of the license terms. |
Minor correction: Fedora already has an arrangement with Cisco that lets their users download a Fedora build of openh264 from Cisco -- on an opt-in basis. The article mentions improvements to openh264, but no change in this arrangement. I would like the ability for flatpak clients to also filter openh264 and similarly burdened software out by default. Currently it is automatically installed together with the freedesktop platform. (Causing a separate download of a non-reproducible binary from somewhere else than the flatpak repository, but that issue is perhaps best explained in the |
@nanonyme I agree that an EULA field seems to fit with Cisco's own requirements for distributing their openh264 binary. (If clients would require acceptance of the EULA before downloading the package.) That would also solve my immediate concern with the automatic installation of openh264. OT: can you please pull the package until this or an equivalent solution is fully implemented? It also occurred to me that I still desire a general solution that can handle all situations where the software is similarly tainted by credible patent threats; the solutions outlined in the preceding paragraphs would only work if there is a patent license. I am more than happy to change my mind on this if I hear a good argument for why such cases would not in practice restrict software freedoms in a least some regions. |
No.
Are you a lawyer? |
The definition of free software is a social issue, not a legal question. Independently I also think that not only lawyers are allowed to have opinions on legal matters. Nevertheless, to satisfy an apparent desire for a more authoritative voice, here are some quotes from the GPLv3:
The last quoted paragraph explicitly condemns the arrangement used to distribute openh264. |
Bzz, that's me out., sorry. |
FWIW, I don't think we should add an explicit patents list to AppStream. It may look like a good idea to do that, and I totally get where you are coming from, but ultimately I strongly believe it's a bad idea and will lead people down a very slippery slope. I do actually think for your usecase that mentioning such issues in the license or license string is best. Additional legal protection can also be given by the software repository, e.g. Linux distributions usually don't ship code that is covered by a patent that is actively enforced by an entity. |
IÄm going to close this bug report - I think that within AppStream, adding a field to list patents will be the wrong incentive. |
The freedesktop SDK for flatpak by default installs openh264, which is encumbered by patents and in the specific form shipped comes with a limited patent license. Please add fields to specify these.
As an interim workaround I suggested to the maintainers to use:
They have requested an "official" blessing for this.
The text was updated successfully, but these errors were encountered: