| ▲ | traversaro 5 days ago |
| Related gitlab comment: https://gitlab.gnome.org/GNOME/libxml2/-/issues/976#note_253... . |
|
| ▲ | matheusmoreira 5 days ago | parent | next [-] |
| > The basic idea is to offer a paid commercial license for people who don't want to use GPLed code. This business model is known as selling exceptions to the GPL. https://www.gnu.org/philosophy/selling-exceptions.html Use the most radically copyleft and freedom preserving license you can. If the corporations want your software, you present a business solution: pay for special licensing conditions. It's even blessed by Stallman. I emailed him to confirm. Unlike permissive licenses, only the original copyright holders get to benefit in this way. Others don't have this relicensing permission. The damage is contained. I hope it works out for him. Watching beggar barons make billions off of free software that's being maintained for free is really hard to watch. https://zedshaw.com/blog/2022-02-05-the-beggar-barons/ |
| |
| ▲ | bayindirh 5 days ago | parent | next [-] | | Personally what he's doing is very sensible, and how I personally advocate. Hope it works out for him. I personally like the slow and steady tide of understanding the value of GPL family of licenses. | |
| ▲ | zamalek 5 days ago | parent | prev | next [-] | | My friend sent me that article a few months ago. It _completely_ changed my approach to OSS contribution: from a 25yr MIT/BSD adherent to AGPL adherent in 30min. | | |
| ▲ | matheusmoreira 5 days ago | parent [-] | | It was very influential for me too. Here's another one, also from Zed Shaw: https://web.archive.org/web/20120620103603/http://zedshaw.co... > Why I (A/L)GPL > Open source to open source, corporation to corporation. > If you do open source, you’re my hero and I support you. > If you’re a corporation, let’s talk business. > I want people to appreciate the work I’ve done and the value of what I’ve made. > Not pass on by waving “sucker” as they drive their fancy cars. |
| |
| ▲ | ducktective 5 days ago | parent | prev [-] | | So if one wants to open-source his project and sell it : - Licence as AGPL - Mention that commercial use (without having to open source the derivative work) is available Did I get it right? 1- Is this solution useful for subscription-based contract too? 2- Does it make a difference if the product is a app, library or hardware device? | | |
| ▲ | matheusmoreira 4 days ago | parent | next [-] | | > Did I get it right? I think so. > 1- Is this solution useful for subscription-based contract too? If you mean SaaS, then maybe. I emailed Stallman about the ethics of the SaaS case and he said it's a net good. You might want to think about whether the license actually gives you leverage in that case though. You might find that the corporations are perfectly willing to host a service using your AGPLv3 software. That's within their rights. You only gain leverage if they want to create a proprietary version of your software. > 2- Does it make a difference if the product is a app, library or hardware device? Absolutely. The GPL has very specific wording with regards to linking and distribution which trigger license conditions. You should read the full license for a better understanding. Hardware is a completely different matter, I won't even pretend to know anything about how licensing works in that case. Remember, I'm not a lawyer. I'm just a hobbyist free software developer who's also trying his best to understand all this and make the best possible decision. | |
| ▲ | tobias3 4 days ago | parent | prev [-] | | The main problem is that you need to have contributors sign a copyright assignment/CLA, otherwise their code is going to be AGPL only and you cannot license it commercially. Or you don't have any contributors, which is the base case, I guess. | | |
| ▲ | rcxdude 3 days ago | parent [-] | | And, you'll trigger the same response in potential contributors: There's a generally anti-CLA attitude in open-source/free software circles because it means if you contribute your contributions can be used to enrich someone else. | | |
| ▲ | matheusmoreira 2 days ago | parent [-] | | One could write patches and refuse to sign the CLA. The maintainer would be unable to incorporate those patches into the repository without losing the ability to relicense. Maybe it would be useful to reframe the CLA as the price of centralized maintenance. It's free software so it's perfectly possible to refuse to sign the CLA, modify the software regardless and even publish the changes. It just means the software must be forked and maintained separately. |
|
|
|
|
|
| ▲ | bgwalter 5 days ago | parent | prev | next [-] |
| The RedHat apparatchik at the top of the link is amazing. Attacking others from his secure position and celebrating more corporate influence: "Good news is several Google and Apple engineers have volunteered to help with libxml2 and libxslt security issues, despite your effort to sabotage libxml2 users -- especially web browser users -- by disclosing all vulnerabilities immediately rather than allowing them the industry-standard 90 day disclosure deadline used by all other GNOME projects (#913 (closed)). They've posted a couple patches in the libxslt issue tracker already. I assume you're not satisfied with this, and are now trying to push them away. If that's your goal, you'll no doubt succeed pretty quickly." RedHat often has a detrimental effect on open source, it is filled with bureaucrats and careerists. Thanks Nick Wellnhofer for going AGPL. You are setting a great example! |
|
| ▲ | codethief 5 days ago | parent | prev | next [-] |
| This should be higher up and seems very relevant to understanding what's going on. Looks like the (former) maintainer does not actually want to abandon libxml2. |
| |
| ▲ | bayindirh 5 days ago | parent [-] | | He just wants his sanity and dignity back while continuing his passion project. Respectable and commendable, if you ask me. | | |
| ▲ | morkalork 5 days ago | parent [-] | | The bit about google employees willing to step up and work on the project is kind of disgusting: The company is too cheap to fund the project with money, but don't worry, they've got an endless supply of eager developers looking to 'pad their résumé' and deny you all the reward and satisfaction of what you built. It almost reads like a threat "work for free or we'll fork it and take it away from you". Wow | | |
| ▲ | matheusmoreira 5 days ago | parent | next [-] | | The maintainer's leverage is severely diminished due to the fact MIT licensed versions of the software exist. Only new code will be copylefted so it will be easier to cut him out of the picture. This is why developers should AGPLv3 their personal projects from day one. Then others can't fork it under another license. Even if they choose AGPLv3, the creator still maintains full freedom since they own the copyrights. They can make a commercial version if they want to. They can even relicense it under favorable terms to companies for a licensing fee. Everyone else must abide by the copyleft rules. If they don't like it, let them pay hundreds of thousands of dollars a year for their own developers to make their own in house proprietary version. | | |
| ▲ | rlpb 4 days ago | parent | next [-] | | > Even if they choose AGPLv3, the creator still maintains full freedom since they own the copyrights. Only if they either refuse all contributions, require contributions to be made under an MIT license or similar (and then immediately relicense back to AGPLv3 before publishing), or require a CLA. I'm all for personal projects to be licensed AGPLv3, but we must acknowledge that the moment you take others' AGPLv3 contributions, in practice you won't be able to do those other things. | | |
| ▲ | matheusmoreira 4 days ago | parent [-] | | Of course. The creator retains copyright. If there are multiple creators, things get complicated quickly. This is also why GNU projects ask that contributors assign copyright to the FSF. Gotta deal with this sort of bureaucracy before contributing is allowed. |
| |
| ▲ | overfeed 4 days ago | parent | prev [-] | | > This is why developers should AGPLv3 their personal projects from day one. That would be detrimental to "growth hacking" GitHub stars and gaining traction. One can't be paid without baiting users first. | | |
| ▲ | morkalork 4 days ago | parent | next [-] | | Is there a free-for-corporate use under XX revenue or limited time license one can pack with an AGPLv3 project? Something that doesn't block people, even businesses, from using the project during the growth stage but also doesn't give away all your rights or ability to get paid later? | | |
| ▲ | wild_egg 4 days ago | parent [-] | | The copyright holder is free to grant use under any license they like to whoever they like. It's rare but I've seen a number of projects over the years that have a hard copyleft license along with a line in the readme like "Want to use this with a different license? Send me an email and we'll sort it out" |
| |
| ▲ | matheusmoreira 4 days ago | parent | prev [-] | | There's gotta be a way to do this ethically, naturally and organically. I want people to engage with my projects too but I don't really want to sell my soul for it. I hate advertising so I don't even post about my projects anywhere unless some very specific conditions are met. People found and shared my projects anyway. They've made it to the front page of HN. I even gained a GitHub sponsor because of that. Not enough to turn my hobby into full time work but still awesome. |
|
| |
| ▲ | bayindirh 5 days ago | parent | prev [-] | | Wow, indeed. To add insult to the injury, the whole message reads like this: > Good news is several Google and Apple engineers have volunteered to help with libxml2 and libxslt security issues, despite your effort to sabotage libxml2 users... I mean, c'mon. He's carrying the world on his shoulders and people are just pointing fingers? Also, this shows how evil corporations are. I can understand Apple, it's their culture to avoid GPL code and and committing code to any public project needs permission from everyone plus the campus cat, but Google, the apparently bastion of open source software is doing the same thing without any shame... They have morphed into the next Microsoft AFAICS. Despicable. | | |
| ▲ | tristan957 5 days ago | parent | next [-] | | mcatanzaro frequently makes these over the top comments, and when called out, refuses to backtrack on them. | | | |
| ▲ | matheusmoreira 5 days ago | parent | prev [-] | | The accusation of sabotage was pretty disgusting but there's something that's arguably even worse deeper in the thread: > maybe if you stop fixing things for free, perhaps somebody will suddenly be willing to pay you to do so We should all remember that line every time we think about being generous or altruistic. He essentially called the maintainer a fool. | | |
| ▲ | overfeed 4 days ago | parent | next [-] | | I think mixing altruism with work is a mistake, which is the sentiment I read into the (sarcastic) comment. The maintainer has very little leverage for payment if they continue working on the project for free. The maintainer has to pick a side and commit to it, and deal with the downsides. Alternatively, they may choose not to play. | | |
| ▲ | matheusmoreira 4 days ago | parent [-] | | I don't think he should be forced to pick sides. He made the thing, he knows the code base inside out. It would have been trivial for companies to hire him as a consultant or something since they're all depending on him. Why didn't they? It really makes no sense. | | |
| ▲ | aseipp 4 days ago | parent | next [-] | | Nick Wellnhofer did not create libxml2 or libxslt, David Veillard did. Nick has been the primary contributor since about 2015, though. | | |
| ▲ | matheusmoreira 4 days ago | parent [-] | | My mistake, I apologize. Still, it looks like he maintained the library for a long time. He no doubt has more knowledge about the code base than outsiders. That ought to be valuable to corporations relying on the library and contributing security patches. |
| |
| ▲ | overfeed 4 days ago | parent | prev | next [-] | | > Why didn't they? Why buy the cow if the milk is free? The license let's them use it without payment, and in a just world, they'd pay all the maintainers of libraries they use, but ours isn't a just world, and we need to formulate our strategies with that in mind. | |
| ▲ | lovich 4 days ago | parent | prev [-] | | > Why didn't they? Because he continues to work for free? Companies are amoral actors. They aren’t going to donate out of charity and if someone wants to give them free work they won’t say no |
|
| |
| ▲ | hulitu 4 days ago | parent | prev [-] | | Google does _not_ fix things even for money, so he may have a point. /s |
|
|
|
|
|
|
| ▲ | kelvinjps 4 days ago | parent | prev | next [-] |
| I don't like the comments from Michael candaroza they feel entitled |
|
| ▲ | JonChesterfield 5 days ago | parent | prev | next [-] |
| I really hope the AGPL fork is called libxml3 |
|
| ▲ | 5 days ago | parent | prev | next [-] |
| [deleted] |
|
| ▲ | preisschild 5 days ago | parent | prev [-] |
| > You are no doubt well aware that nobody will ever use a GPLv3 libxml2 Why wouldn't other FOSS projects like Gnome Web for example not use GPLv3 licensed software? |
| |
| ▲ | imtringued 5 days ago | parent [-] | | Because according to the Gitlab comment you've taken that excerpt from, companies are so allergic to the GPL that they will not only avoid using the GPL version of libxml2, no. They will maintain a MIT fork of libxml2 out of spite, even though they've been actively running away from their responsibility to do so. | | |
| ▲ | matheusmoreira 4 days ago | parent [-] | | Let them maintain it. We can take their permissive code and add it to our AGPLv3 projects literally no questions asked, we just have to replicate the copyright notice and license file. Meanwhile they can't take our copyleft code without also copylefting any improvements they distribute. And with AGPLv3, network use is distribution. | | |
| ▲ | blueg3 4 days ago | parent [-] | | It's MIT-licensed, so they don't have to share their changes. That'll make it harder to take their changes. | | |
| ▲ | matheusmoreira 4 days ago | parent [-] | | Let them keep it. Refusing to share kills their open washing as well. Everyone will see them for what they are. |
|
|
|
|
