Slashdot Mirror

← Back to Stories (view on slashdot.org)

Castle Technology UK Ripping off Kernel Code?

Posted by chrisd on from the bad-company-no-cookie-for-you dept.

Jonathan Riddell writes "`It would appear that Castle Technology Limited, UK, have taken some of the Linux 2.5 code, and incorporated it into their own product, "RISC OS", which is distributed in binary ROM form built into machines they sell. This code is linked with other proprietary code.' Full details from Russell King on lkml."

19 of 745 comments (clear)

  1. They've recieved one warning by Anonymous Coward · · Score: 5, Funny

    And apparantly it just resulted in them trying to better hide the incriminating code in later versions of the product.

    Okay, then. Let's get everybody forming into single-file lines; you'll receive your pitchforks on the left, torches on the right. Please, no shoving, there will be plenty for everyone.

  2. How to prove anything? by dk.r*nger · · Score: 5, Interesting

    Being a relatively non-hardcore geek, I wonder how it is possible to actually prove that GPL'd code was used?

    Once compiled and linked and what-know-I, the source would be rather obscure, and after all, other products seem to do the same tasks, yet not using GPL code..

    Please enlighten me!

    - rnger

    1. Re:How to prove anything? by Ark42 · · Score: 5, Interesting

      As I understand it, there were function signatures (linking information) indendical to all the functions from certain pieces of Linux kernel code. After their first request for source under GPL, they removed that information but the rest of the binary code remained unchanged. I would consider that pretty strong proof that they are knowingly stealing from the Linux kernel.

      --
      Morphing Software
    2. Re:How to prove anything? by bwt · · Score: 5, Informative

      During the discovery phase of the trial, the defendent would have to produce the complete source code and build instructions for their product. The plaintiff would have an expert follow the build instructions and verify that they result in the exact exectuable that the defendent ships. Then the expert would examine the source code for "substantial similarity" to the copyrightable elements of the linux kernel code. A judge would hear this testimony and rebuttals and examine the evidence it was based on.

      Legal arguments on affirmative defences of fair use and licence compliance could be made. The judge would rule on infringement, then if the plaintiff prevails, he would rule on damages. Factors influencing damages would be willfulness of the infringement and the presense or absense of commercial gain as a result of the infringement.

    3. Re:How to prove anything? by boots@work · · Score: 5, Interesting

      Here's a step-by-step walkthrough proving that a scumbag called Stephen Kapp wripped off some GPL'd code that I wrote.

      You can see that the functionality is very similar, and that by using some simple tools to compare the binaries we can see they're the same on the inside. What we see here is mostly the names of functions which carry through from the source to the binary, to support debugging, run-time-linking, and similar things. The LKML post said that these strings were also found to be the same, and then Castle removed them, which is clearly evidence that they knew they'd been caught stealing.

      Basically we're looking for patterns and similarities. Although somebody could (legally) write a program that had the same user interface, it's astronomically unlikely that they'd call their functions the same thing and have the exact same design.

      Stephen Kapp crawled back under his rock once this was published. I expect Castle will do something similar: just continue to deny that it ever happened, but remove the code.

      Similar things have happened to other major open-source projects. It hasn't been to court yet because, as far I know, every case has either been an honest misunderstanding, or an intentional violation but the perpetrator skulked away when challenged. I suppose in both cases it's not worth the FSF's time&money to take it further, but the drawback is that there's no clear example to others.

      I really hope the FSF does help the copyright owners bring a lawsuit, it's time for a demonstration and I'd certainly throw in a hundred bucks to help fund it.

      This isn't just a free software problem though: people who publish proprietary reusable code (development libraries, ...) have lots of trouble preventing copyright infringement. I don't think I've ever seen a Windows developer's machine that didn't have pirated, or at least unregistered-shareware, software.

  3. Hold on. by Quasar1999 · · Score: 5, Interesting

    I have a question, perhaps it does not pertain to this situation... but where do you draw the line about code being stolen?

    For example, if lets say I stole a simple 3 line chunk of code that converts a date from one format to another, and threw it in my multi-thousand line project (which is all original except for those 3 lines), would it really be breaking the GPL? I understand that it of course technically is.. but at what point would the 'borrowing' of code be of such basic elements that really, there is no other way to solve a particular problem?

    Sure my above example sucks (it's friday afternoon, brains already gone)... but what amount of code warrants a "you're stealing you son of a b*tch" title, and what warrants a "meh... it's not rocket science, hell, there's no other way to do it, even if he hadn't looked at the code, this is the logical solution anyone with half a brain would come to..."...???

    --

    ---
    Programming is like sex... Make one mistake and support it the rest of your life.
    1. Re:Hold on. by bwt · · Score: 5, Insightful

      Are you sure that it makes the GPL irrelevant? You may not be violating copyright law by using the code, but you are violating the terms of your license. As such, you are bad, and can be reasonably sued, and compelled to do what the judge tellys you to do if you lose.

      Violating the terms of the licence is only illegal if it results in copyright infringement. Fair use is an affirmative defense to copyright infringement. One factor (of four) in determining whether fair use applies is the quantity of work copied. For three lines of code, that would be small.

      The most important factor, however, is commerical impact. If those three lines add a feature that fills a marketing gap, then the result of the copying is unfair competition and thus improperly obtained revenue.

  4. Re:Sue them by JamPonyXpress · · Score: 5, Interesting

    Actually, what's much more important than any money involved is that a case like this could provide a precedent that would prove that the GPL is legally enforceable - something that has not occurred to date, AFAIK. For this reason it might be a good thing if Castle is (a) guilty and (b) obstinate about it and Linus sues. (I just love the thought of Microsoft quivering.) It would have to be appealed a level or two for the precedent to be strong and widely binding.

  5. Re:Sue them by Black+Copter+Control · · Score: 5, Informative
    Who would be the initiator of such a lawsuit?

    It depends on who holds copyright to the associated pieces of code. Best bet is that it's been assigned to the EFF, but it could also be Linus and/or some of the people who wrote the bulk of the code.

    It'll actually be rather interesting (in ~200 years) when it comes time to determine when the code's copyright expires. Just who's lifetime does each piece of code expire in relation to?

    --
    OS Software is like love: The best way to make it grow is to give it away.
  6. Re:Sue them by wass · · Score: 5, Interesting
    RMS and other folks at GNU typically respond to issues such as these. That is, when people/companies have not followed the licencsing of GPL'd software. I believe the offending party has usually changed their policies and was never actually taken to court.

    IIRC, RMS has actually been anticipating for a serious GPL breach to rear its head, so it can provide an actual legal acid test of the GPL. I don't believe any organization/company has ever gone to court over GPL violations. Winning any courtroom legal victory would be a huge boon to for the GPL, as it would demonstrate it's legal resiliance. IANAL, of course.

    --

    make world, not war

  7. Re:Does that mean... by bwt · · Score: 5, Informative


    No, it means that they are commiting willful copyright infringement for commercial gain. The penalties for that are severe and include the larger of statutory and actual damages. The statutory damages can be up to $100K, iirc. Actuals include any revenue which results from the infringement.

    I hope somebody tears them a new sphincter, if this is true.

  8. Some may argue... by bill_mcgonigle · · Score: 5, Insightful

    ...that Linux is somewhat unique here. If I steal your copyrighted book and sell it, I'm taking revenue from your potential customers. You lose money and customers.

    If I steal Linux, I sell it and make money. But "Linux" doesn't lose any money (I'm personifying Linux here, bear with me) because Linux is free.

    However, Linux does suffer damages. The thing of value to Linux is its user base. The only reason somebody improves Linux is because he's a user. If I take away a potential user by offering the same feature by stealing Linux, I'm eroding its user base, future development potential, and therefore value.

    --
    My God, it's Full of Source!
    OUTSIDE_IP=$(dig +short my.ip @outsideip.net)
  9. Give it a couple of days by I+Am+The+Owl · · Score: 5, Insightful

    Before everyone starts clamoring for all out war against these horrible, horrible GPL violators, I would advise you at least give it a few days for the dust to settle. Slashdot, after all, is hardly known for responsible reporting, and has quite often reported such violations erroneously and caused quite a bit of damage to the reputations of various corporations.

    --

    --sdem
  10. Re:Information wants to be free by RoyBoy · · Score: 5, Insightful

    Ok, to begin with you've managed somehow to completely misunderstand that the spirit of the GPL is to produce a COPYLEFT - in other words, it exists as a product of ridiculous copyright laws in a attempt to circumvent them through their own application (that's why MS likes to call it viral).

    In any event, the comparison is obviously flawed because in the case of GPL code theft, you're talking about someone knowingly violating the license under which they acquired a product in order to PROFIT from a derivative product.

    Most 14-year olds who pirate MP3s and DVDs are interested in FAIR USE of the products in question, or at worse in depriving the copyright owners of proceeds that they could have directly collected. I have not hear of any real cases where gangs of 14-years old pirates have set-up conterfeit CD and DVD rings to sell the products on FOR PROFIT. If you really doubt this, just ask the P2P companies when their huge profits fro residuals are gonna start rolling in.

    Amazing how hard it is to see right from left, huh?

    --
    -- People who think they know it all, really annoy those of us who do!
  11. Re:Sue them by glwtta · · Score: 5, Interesting

    I believe the FSF's stance on this is, the later that the first GPL case goes to court, the better. The thinking is that there is the potential of the judges (and the media, and the public in general) becoming more tech savvy as time goes on; as well as the hope that traditional copyright laws will be adapted to software issues more fully by then.

    --
    sic transit gloria mundi
  12. why is anyone that stupid by Splork · · Score: 5, Insightful

    there are three perfectly good sets of BSD code to copy from with zero repercussions that do the exact same thing.

  13. Re:Sue them by mindstrm · · Score: 5, Insightful

    I'm not sure which part everyone thinks needs to be enforced. If it's "release your code", it's being looked at backwards.

    One thing copyright is clear on: You need permission to use other's copyrighted works.

    If you are taking someone's code, which is available under the GPL, and using it in your own product... the only way you have legal grounds to use it is if you either a) abide by the GPL, or b) get permission from the author.

    If the author goes and says "They are using my code illegally", the company would have to prove they have a license to do so. It's not about the enforceability of the gpl.

  14. It's not though by renard · · Score: 5, Insightful
    Every time we see one of these GPL-violation cases, people start talking about "testing the GPL".

    But invariably the guilty corporations are violating copyright law first before they are violating the GPL. This makes sense, because the GPL is actually more permissive than copyright law. And copyright law has been tested, many times - and it does have teeth.

    If someone can present an argument why Castle in this case is violating the GPL, and not violating standard copyright law in the process, then I would like to hear it.

    -renard

  15. Re:They have nerve by Paul+Vigay · · Score: 5, Informative

    Actually, speaking as the webmaster of www.riscos.org, that quote is mine, and I have no link to Castle Technology at all. If you're going to call someone names, at least check your facts to see who you're accusing.
    www.riscos.org is completely independent and in no way affiliated to ANY RISC OS hardware manufacturers.