Grsecurity stable patches to be limited to sponsors
Grsecurity stable patches to be limited to sponsors
Posted Aug 28, 2015 12:15 UTC (Fri) by ewan (guest, #5533)In reply to: Grsecurity stable patches to be limited to sponsors by smckay
Parent article: Grsecurity stable patches to be limited to sponsors
Posted Aug 28, 2015 17:53 UTC (Fri)
by dlang (guest, #313)
[Link] (6 responses)
There are a tremendous number of companies using a lot of GPL software and not doing this, so I have a hard time believing that the 'social norms' require it.
Posted Aug 30, 2015 1:32 UTC (Sun)
by mathstuf (subscriber, #69389)
[Link] (5 responses)
As I read it, the problem is that if WindRiver gets caught up in some IoT security apocalypse, it having grsecurity on its label can harm grsecurity. Now, if it had been audited and specced by grsecurity itself as up-to-par, this would be valid. But if it is due to poor patching, it is undeserved. Since they will only do such audits and checks with a sponsorship, I think the use of the grsecurity name should be tied to sponsorship. Not unlike Mozilla's trademark allowances on Firefox.
Posted Aug 30, 2015 8:03 UTC (Sun)
by dlang (guest, #313)
[Link] (4 responses)
they seem to be saying, "here are our patches, but you can't use them unless we fully audit the result and approve of it", which is among the most extreme forms of trademark rules you can come up with.
It's bad enough when Mozilla implemented such rules for firefox, but at least Mozilla was providing a complete software package.
grsecurity is only providing patches to the kernel, and to take the attitude that they should have veto power on what other patches can be put in a kernel along with theirs and still use the name is extremely arrogant (at best)
Unfortunately, that sort of "we know everything, everyone else is an idiot" attitude doesn't surprise me from this group.
Posted Aug 30, 2015 8:20 UTC (Sun)
by mjg59 (subscriber, #23239)
[Link] (2 responses)
They wrote the code, they're entirely permitted to choose to enforce whatever restrictions the license gives them permission to enforce. The GPL doesn't require that you give blanket permission for trademark use. If permission is only granted to use the trademark for unmodified code, and if a vendor modifies the code and then continues to use the trademark in a way that would be likely to cause confusion between the modified code and the original code, they're within their rights to attempt to enforce their trademark. There's nothing arrogant about that. What's arrogant is the assumption that you can continue using a name even after the original authors indicate that doing so is against their wishes.
Posted Aug 30, 2015 9:15 UTC (Sun)
by dlang (guest, #313)
[Link] (1 responses)
Posted Sep 11, 2015 11:20 UTC (Fri)
by oldtomas (guest, #72579)
[Link]
As far as I understand it -- no. They are just trying to control the use of their trademark (which I think is understandable).
Wind River can take the code and patch it all the way to Times Square and back (courtesy of the GPL), but they aren't allowed to say "lookee, grsecurity inside" (strictly speaking it isn't). That sounds pretty sane to me?
Posted Aug 30, 2015 14:07 UTC (Sun)
by spender (guest, #23067)
[Link]
-Brad
Grsecurity stable patches to be limited to sponsors
Grsecurity stable patches to be limited to sponsors
Grsecurity stable patches to be limited to sponsors
Grsecurity stable patches to be limited to sponsors
Grsecurity stable patches to be limited to sponsors
Grsecurity stable patches to be limited to sponsors
Grsecurity stable patches to be limited to sponsors