SCO Claims Kernel Contains UnixWare Code

ergo98 writes "SCO has increased the intensity of the lawsuit with IBM by claiming to hold indisputable proof that copyrighted UnixWare code found its way into Linux, violating the rules of both camps. Whether this is true or not remains to be seen: SCO refuses to divulge the code in question, however they promise to reveal it in court shortly."

Does anyone even pay attention to SCO anymore?

[ahkbarr]

As already stated on LKML here, it's far more likely that they saw something that had been stolen from Linux or other GNU code in SCO, and thought is was the other way around.

It also isn't clear if SCO is referring specifically to Redhat userland, redhat kernel patches or what. It's only clear that they don't mean specifically the Linux kernal as found on kernel.org.

-If you wish to make a complaint, press 1. If you wish to wish upon a star, makes no difference who you are, press -- what else? -- the star key.

Re:Does anyone even pay attention to SCO anymore?

[molarmass192]

Exactly, the fact they aren't prepared to even present a single example of this makes me very suspicious. It would be magnitudes easier for SCO devels to steal code from the Linux kernel (even unintentionally) than for the Linux kernel to steal code from SCO. Anyhow, as some have already mentioned, who's to say that the code lines in question weren't already in the public domain prior to them even being in SCO? I'm doubling-down on IBM if they want to play a chicken-and-the-egg fight in this suit.

Re:Does anyone even pay attention to SCO anymore?

[Col.+Klink+(retired)]

I also wonder if the code in question was actually BSD or public domain code that both SCO and Linux adopted.

Re:Does anyone even pay attention to SCO anymore?

[sheldon]

"Exactly, the fact they aren't prepared to even present a single example of this makes me very suspicious."

Ummm, they said they are prepared to present examples in court.

So are you less suspicious now?

"It would be magnitudes easier for SCO devels to steal code from the Linux kernel (even unintentionally) than for the Linux kernel to steal code from SCO. "

SCO had a working relationship with IBM on the Monterey project. Obviously IBM then had access to SCO source. SCO is now claiming persons within IBM took said access to SCO source and used it in some Linux component.

"Anyhow, as some have already mentioned, who's to say that the code lines in question weren't already in the public domain prior to them even being in SCO?"

The Judge at the court hearing.

"I'm doubling-down on IBM if they want to play a chicken-and-the-egg fight in this suit."

I'll take a bet that IBM settles the case out of court.

Re:Does anyone even pay attention to SCO anymore?

[doorbot.com]

Why would SCO cause themselves more difficulty by using a legal strategy that ultimately would cause them more harm then good?

If SCO was looking to get bought out, specifically by IBM, then threatening IBM with such a lawsuit might make sense. The problem is, SCO was betting on IBM not calling SCO's bluff. If IBM does, SCO is screwed, although current lawsuits aside, it looked like that was going to happen anyways.

Re:Does anyone even pay attention to SCO anymore?

[jedidiah]

The problem with the SCO claim is that they make it sound like these "infractions" date back to before the time when IBM was making contributions to the kernel. That obviously raises the question of: If IBM wasn't inserting SCO code into the kernel, who else could have?

SCO's claims have to fit into a rather restricted time window to make any sense. Otherwise, it becomes more likely that the theft occured from Linux -> SCO.

Re:Does anyone even pay attention to SCO anymore?

[1lus10n]

to qoute: Given the loose nature of linux coding, I'm not surprised at all that someone with access to SCO code would contribute it to Linux.

I dont think you know a damn thing about "Linux" coding. what you seem confused about is weather a program is "Linux", the answer is NO. the only thing that is and has been "Linux" is the Kernel. And if you know that i would like you to explain to me how its "loose" in nature ? their is only ONE person who can "officially" approve code for use in "THE" kernel, and thats Linus. You can code a module, or even modify the hell out of the kernel, but thats not "Linux", "Linux" can only be found from one place: kernel.org, everything else is a modifyied version of it, and therefor the individual vendors are responsible for it. (hence redhat has an issue if a redhat kernel has SCO code in it, whereas the vanilla kernel wont.)

and i would challenge you to find ANY OS who only has one guy in charge of approving code/patches to the kernel.

Re:Does anyone even pay attention to SCO anymore?

> Ummm, they said they are prepared to present examples in court.
> So are you less suspicious now?

Nope.

Saying is one thing, doing's another. They can keep saying whatever they like, and outgas FUD into the stratosphere. But until they actually show that proof, and also prove that they are not the ones who stole that matched-up code, I for one will remain skeptical.

Re:Does anyone even pay attention to SCO anymore?

[bwt]

If copied code has been there for a long time, the Caldera Linux includes them and this lawsuit will go absolutley nowhere, because SCO itself has authorized their use by distributing them under the terms of the GPL. One could simply go back to the GPL code released by Caldera, reapply all original patches since then and continue on without fear of reprisal.

I think the absolute worst outcome here is that a judge would order Linux to purge all copied code from its sources. There is very little chance of damages because any supposed infringement is at best unknowing by anyone besides the person who submitted the first infringing patch.

Re:Does anyone even pay attention to SCO anymore?

[Black+Parrot]

> Why would SCO cause themselves more difficulty by using a legal strategy that ultimately would cause them more harm then good? Most likely they have proof, or they wouldn't have said anything.

Yes, we all know that the plaintif always wins a lawsuit, because no one would be so foolish as to file a suit when they didn't have rock-solid proof in their briefcase.

> Hell, Stallman believes all code should be free. Why wouldn't one of his followers steal code given that philosophy?

A) Are Linux kernel hackers "followers" of RMS?

B) Does RMS advocate stealing code?

C) Which is the better way to put egg on the faces of closed source software shops such as SCO, to steal their code or to write your own code that does the same thing better, and give it away for free?

Your argument makes a great example of what is known as "special pleading". Hopefully the court will want facts rather than silly arguments such as yours, and SCO's "Linux couldn't have matured so fast if someone hadn't been stealing our code".

Re:Does anyone even pay attention to SCO anymore?

[orangesquid]

Or, maybe it's something like:
! Save all registers.
push eax
push ebx
push ecx
push edx
jmp somewhere

"Hey, wow, we have that in our code too! And it's not just a minor copying, because they used the same comment!"

C and assembler have a much smaller vocab (orders of magnitude) than English, and accidental things like this go on in English all the time.

Also, they're comparing two unix-based kernels.. don't you think similar code would show up? After all, both are derived (either directly (SCO) or indirectly (Linux)) from the same original operating system (duh!).

Re:Does anyone even pay attention to SCO anymore?

[Guy+Smiley]

I'll take a bet that IBM settles the case out of court.

Yeah, with SCO paying an undisclosed sum of money to IBM for SCO Unix infringing on IBM's intellectual property. IBM has patents on operating system methods coming out of their ears and it is almost impossible for SCO not to infringe upon it.

The only saving grace might be if SCO already licenses this technology from IBM, but IBM can still withdraw that license and screw SCO six ways from Sunday.

Re:Does anyone even pay attention to SCO anymore?

I'll take a bet that IBM settles the case out of court.

That wouldn't surprise me, given the IP powerhouse that is IBM. But I also bet that the settlement will not be on terms favorable to SCO! IBM has a herd of lawyers ready to dig into a "discovery" feeding frenzy, keeping a sharp eye out for SCO infringements of IBM patents, source code, etc. SCO's suit reminds me of a kamikaze raid: it seldom sinks the target, but always takes out the attacker!

Re:Does anyone even pay attention to SCO anymore?

[nitehorse]

No, because if SCO/Caldera distributed the changes in the GPLed version of the source, they were giving permission implicitly for the code to be included - and if they're still selling it, which they are, then any and all of the code that "infringes" and is also included in their version of Linux is freely redistributable. I'm not a lawyer, but my uncle is. We've had a very lengthy discussion about this.

Personally, I would be surprised if IBM didn't bury SCO with something on the order of 517 patents that SCO has been infringing on of theirs - I honestly think that the only reason it's taking IBM so long to formulate their response is that they have that many patents to check and make sure SCO is infringing that it could take a little while to enumerate them and write them down. But that's just me.

Re:Does anyone even pay attention to SCO anymore?

[master0ne]

ENV flame="on" "Exactly, the fact they aren't prepared to even present a single example of this makes me very suspicious." Ummm, they said they are prepared to present examples in court. So are you less suspicious now?
In court, behind closed doors, if the code has found its way into any OPEN SOURCE software, obvisouly many people will have access to it, so its now worthless to keep it a secret, its not, revel the problem lines of code, if the Linux user community makes changes to the offending program, then thats self implication! if not, well its still right there for anyone to read!
"It would be magnitudes easier for SCO devels to steal code from the Linux kernel (even unintentionally) than for the Linux kernel to steal code from SCO. " SCO had a working relationship with IBM on the Monterey project. Obviously IBM then had access to SCO source. SCO is now claiming persons within IBM took said access to SCO source and used it in some Linux component.
yes, and linux is all open source, meaning ANYONE has access to the code, including those SCO goones, only a FEW people at IBM had access to SCO's UnixWare code, making it FAR less likely it was leaked.
"Anyhow, as some have already mentioned, who's to say that the code lines in question weren't already in the public domain prior to them even being in SCO?" The Judge at the court hearing.
Only if he was paid off by an unnamed company which owns the rights to UnixWare, called SCO, oops, that sliped...
"I'm doubling-down on IBM if they want to play a chicken-and-the-egg fight in this suit." I'll take a bet that IBM settles the case out of court. i got $100 here that says SCO either gets laughed out of court, trys to delay the hearing, looses, and retries the case on a techinacality, or simply gets smashed into 1986 by IBM.

Re:Does anyone even pay attention to SCO anymore?

[dcmeserve]

As already stated on LKML here [iu.edu], it's far more likely that they saw something that had been stolen from Linux or other GNU code in SCO, and thought is was the other way around.

I wonder, then, if someone could turn around and sue SCO for infringement of the GPL -- it would at least force them to reveal the code to the plaintiff, who could then make a determination as to whether that's the case.

If it turns out they did put GPL'd code into their proprietary code... now *that* would be justice: in sueing for copyright infringement, SCO winds up "losing" its entire base of source code to the public domain.

Re:Does anyone even pay attention to SCO anymore?

[bwt]

Section 4 of the GPL provides:

You may not copy, modify, sublicense, or distribute the Program except as expressly provided under this License. Any attempt otherwise to copy, modify, sublicense or distribute the Program is void, and will automatically terminate your rights under this License. However, parties who have received copies, or rights, from you under this License will not have their licenses terminated so long as such parties remain in full compliance.

Unless Caldera offers recipiants of its distribution of the linux kernel a GPL licence for the portions of its IP that are included, then Caldera's attempt to require a separate licence voids its GPL licence and means it has no licence to distribute linux, which means it is committing copyright infringement. Unlike Torvalds and other distos, SCO/Caldera is doing so knowing (if their claims are true) that they are distributing a combination of their own IP mixed with linux but not GPL'd as a whole.

Note that it makes no difference if they created the modification that produced the mixing. Just as they claim distributors of linux violate their copyright for distributing an improper mixture of GPL code and their non-GPL code, they too have distributed such a mixture. So if they are correct in their claims, the prove their own guilt and have commited knowning and willful copyright infringement for commercial gain.

Re:Does anyone even pay attention to SCO anymore?

[flatus]

There is no doubt that some code will be common between both kernels. Since the unix kernel is such a common teaching too, there is no doubt that datastructures will even have the same variable names. Beyond that, data structures that have a common function but use different variable names will look like they were obfuscated.

If this only turns out to be data structures, I will always assume that this is SCO's attempt to steal money from others. If there is non-trivial amounts of code and design involved my opinion of SCO may shift slightly toward the positive.

One thing that I think about is the source code program that SCO offered a few years ago; did they release code and hope that someone would steal it?

Re:Does anyone even pay attention to SCO anymore?

[Xenophon+Fenderson,]

It depends on how far back it was when Linus adopted BitKeeper, and when the code in question was submitted to Linus for inclusion in the kernel. There's nothing like the various BSD CVS trees (and attendant commit logs) for the Linux kernel, or Linux distributions, for that matter. Until Larry McVoy convinced Linus to use BitKeeper, Linus was opposed to any kind of version control system then available (including CVS). Larry basically wrote BitKeeper for Linus, if I recall correctly.

Re:Does anyone even pay attention to SCO anymore?

[Desert+Raven]

Ummm, they said they are prepared to present examples in court.

Actually, if they really plan on going to court, they're going to have to reveal their evidence to IBM long before it actually makes it to the courtroom.

See, there's this little thing called "discovery", where both parties in a court action are entitled to request any information from the other party even slightly pertinent to the case. And the other side must comply unless they can get a judge to agree that it's not relevant.

Re:Does anyone even pay attention to SCO anymore?

[unoengborg]

"Ummm, they said they are prepared to present examples in court."

Not really. It only shows that SCO hopes for a settlement out of court. If this goes to court, SCO may have to reveal that they use the same portions of code in their own Linux distro, and that would violate GPL, meaning that they will have to chose between selling Linux and their precious Unix kernel.

Re:Does anyone even pay attention to SCO anymore?

[MarkusQ]

I might not believe in the scary monster from Redmond as much as some more zealous FSF and OSI lovers, but please! Do you actually think billg is paying SCO to do this? That would open MS to so much litigation (and possibly more prosecution) if one person talked, or a crafty reporter found the paper trail or money trail linking the two. If you're just going to make crap up, at least make it reasonable.

We are talking about a company that has been caught forging "grass roots" letters to lawmakers, although I still can't decide which part was worse, forging letters from living people who could raise an objection, or the ones from dead people who obviously couldn't have written the letters themselves.

We are talking about a company that tried to pass off faked videos to a federal judge.

We are talking about a company that was using a unix server to host a site saying no one in their right mind would use unix.

We are, in short, talking about a company that makes Nixon look honest and prudent.

I will agree, the claim that Microsoft is behind SCO is unreasonable. It is far too safe, simple and straight forward for them. When they shoot themselves in the foot it is generally a lot more convoluted.

-- MarkusQ

Re:Does anyone even pay attention to SCO anymore?

[saden1]

I remember an old saying that goes something like this:

IBM has well over 20,000 patents. If they so desire they can go treasure hunting and find every IT company out there infringing on at least one of its patents.

It is time for IBM to lock and load, and bring out the big guns. Time for SCO to smoke the barrel of double barrel shotgun!

Re:Does anyone even pay attention to SCO anymore?

[Tim+Browse]

Yeah, and they even used the same variable names - what are the chances two people would call their variables ebx, ecx, etc?

Re:Does anyone even pay attention to SCO anymore?

[tunah]

their is only ONE person who can "officially" approve code for use in "THE" kernel, and thats Linus.

...

and i would challenge you to find ANY OS who only has one guy in charge of approving code/patches to the kernel.

Uh, Linux?

Re:Does anyone even pay attention to SCO anymore?

[Basje]

But I am almost (2 years of lawschool and counting), and I think he/she is right.

SCO has a linux distribution, PowerLinux, and any kernel in there, including alleged copyright infringing parts, have been released _by_SCO_ under the GPL.

Thus, it can always be argued that the claiming of copyright on these parts is against their own licence (the GPL) in this case. As the licence is considered a legally binding contract, any code they have in their distribution, is available to anyone under the GPL.

Every time I read...

[BgJonson79]

about the Sco vs. IBM suit, I can't help but think that SCO is going to be worse off than Mike Tyson's cellmate when all is said and done.

I know what they are!

[Garion911]

And they are repeated many many times! /*

*/

Those lines are exact duplicates of orginal Unix code! Oh no! They've got us!

Re:I know what they are!

[cdrudge]

I know the solution...strip all the comments out of the code. I know many places that do this already as a regular coding practice. Actually, I don't think that they put them in there to begin with. They must be pretty smart in order to proactively dodge lawsuits like this.

Re:I know what they are!

[Xerithane]

I know the solution...strip all the comments out of the code. I know many places that do this already as a regular coding practice. Actually, I don't think that they put them in there to begin with. They must be pretty smart in order to proactively dodge lawsuits like this.

The search is over... I now have the perfect excuse.

I thank you from the bottom of my heart, but my boss will probably hate you.

Re:I know what they are!

[juan2074]

I've seen source that has a 1 line undescript description at the top and nothing else as to what does what.

Are you making fun of my programs?

New option in make menuconfig.

[*] SCO lawsuit support (EXPERIMENTAL) (NEW)

If Y is selected, then copywrited code from unixware will be compiled into the kernel, if you have millions of $CURRENCY and would like to get SCO after you then say Y, most people would say N here.

Patch here

Re:New option in make menuconfig.

[corsec67]

Or, in make xconfig, you could put a skull and cross bones, and then a picture of a pirate in the description. But then people might get it confused with a module that automagically goes and gets new mp3s for you.

Re:New option in make menuconfig.

[Chmarr]

Folk... don't click the AC's link to google... it isn't really a link to google, but some stupid 'click this link and make me a bunch of points in some stupid game' link.

Troll.

Ok, screw the lawyers...

[Howard+Beale]

SCO's up against the wall first!

My apologies

As someone who bought both Caldera 2.2 and 2.3 when they first came out, I feel I somehow contributed to this mess. So that I might make amends for my actions, unwitting though they were at the time, please allow me to state that:

FUCK SCO AND THE HORSE THEY RODE IN ON.

Just wondering....

If in case SCO clamis are true... would the linux kernel itself, as it stand become non-gpl'ed? After all if some GPL code makes its way its something else... its is GPLed... seems kinda fair to me.

Re:Just wondering....

No, because they've specifically stated they're not referring to official (kernel.org) kernel code.

Re:Just wondering....

[Paul+Jakma]

if some GPL code makes its way its something else... its is GPLed

This isnt true. If GPL code is incorporated into proprietary code, then it is a GPL licence violation (providing 'derived work' holds true). Licence violations mean you can seek redress, either by settling privately with the violator, or by getting a judge to rule in your favour. Redress could consist of damages and the violator excising the GPL code from his app, and/or even relicensing of the derived work under GPL.

But it is by no means automatic. What happens when GPL licence is violated is for the 2 parties to settle between themselves or, if they can not come to an amicable settlement, a judge to decide.

In other news...

[intermodal]

SCO is back at it, begging IBM to buy and assimilate them...

Our world against theirs...

[EvilTwinSkippy]

Well if the "Smoking Code" is ever revealed, we can always trace back through the patches to discover who the guilty part is (assuming there is one.)

The fact that a) they were looking for it and b) found it, leads me to suspect it might (assuming it exists at all) be SCO or someone at SCO.

That's the beauty of open-source. It's wide open, and well documented.

Re:Our world against theirs...

[phkamp]

Imagine how much easier that task would be if a version control management system had been used from the start.

... said the FreeBSD bigot who has been using CVS for the last 10 years.

Re:Our world against theirs...

[Dolly_Llama]

The search for smoking code has failed. Now is the time to withdraw the inspectors and use force...

Reading the story

[rutledjw]

These guys (SCO) sound like they hired the old Information Minister from Iraq - whats-his-face Aziz...

"The Linux community would have me publish it now, (so they can have it) laundered by the time we can get to a court hearing. That's not the way we're going to go."

Infidels!

So worst case, IBM DID do this (which I doubt), Linux suffers and BSD takes over!?!? Grreeeeeaaat, then we'll have to listen to a bunch of "Linux is dead" trolls. When will it end??? Either way, one thing is for certian:

SCO is dead.

Re:Reading the story

[cdrudge]

These guys (SCO) sound like they hired the old Information Minister from Iraq - whats-his-face Aziz...

Actually it is Muhammed Saeed al-Sahaf. Tariq Aziz was the deputy prime minister. Both were mouthpieces for Saddam's politcal machine, but Muhammed is much more fun to listen to. Check out all his quotes on the above website.

Re:Reading the story

[tmarzolf]

Actually it is Muhammed Saeed al-Sahaf

AKA Comical Ali

Re:Reading the story

[dracken]

In related story, SCO declared "If linus is really innocent, we dare him to publish the source of the linux kernel!"

Re:Reading the story

[lspd]

These guys (SCO) sound like they hired the old Information Minister from Iraq

It sounds a bit more like the statements from the US government.

1: Claim you have proof of IP theft
2: Refuse to show proof
3: Sue
4: ??buyout offer??
5: Pretend IP theft was a non-issue all along.

In other news,

[Sevn]

SCO is claiming they have found weapons of mass
destruction in the linux kernel code. The UN will
be assembling an inspection team shortly.

Re:In other news,

[Zugot]

Ther are no WMD in the linux code, it was all moved to FreeBSD.

Confusion and delusion...

[BubbaTheBarbarian]

One would think that SCO has enough version control to know what they have, when they got it and where it came from. That would be assuming alot with them though.

Repeatedly over the past few days, they have provided a moving target as to what they they are claiming as thier IP. First it was IBM, then it was the OSS Linux community as a whole, and now they are saying it is the distros.

How typical. A bunch of dumbasses that could never have corperate direct now cannot even give thier litigation a sure direction for one day.

Note to SCO: Go back to drinking your Provo Girl beer, watching forest fires and making bad Linux distros. This is turing into a joke for you that you will NEVER recover come.

You will not own the community, you sure as hell won't IBM, and if I was IBM, I sure as would not want to purchase a company full of directionless assholes.

Give it up guys. All your linux are belong to us should not be anyone's mission statement.

"Lithuanian gutter weed or blunt from Portland...which do think the Blazers like?"

bah.

[Quasar1999]

Why are we wasting valuable time? Couldn't this time be better spent innovating? If Microsoft gets wind of this method of screwing opensource, there will be no more innovation.

Come on, everyone knows SCO is no longer innovating, but rather using lawyers to gain revenue... This reminds me of another company, Research in motion, recently renamed to Lawsuits in motion, as they no longer create new products, they just sue people for copying their generic designs...

I'll be real interested to find out what code IBM stole. Look! They push their stack parameters the same way during a task switch!!! OMG!

Re:bah.

[drinkypoo]

I'm sorry, did you say SCO is no longer innovating? They've never innovated. Any interesting IP they've ever owned they got from someone else, witness how Unixware's kernel is superior to SCO Open Server in all ways. Xenix was the only SCO product which was ever really cool in its time, and they got that from Microsoft!

Everything SCO has ever done has been either something someone else did that they bought and put their name on, or something that someone else did that they found a way to mimic. I must apologize to all the former SCO employees I know (particularly Dave and Dave) because I'm sure you did good work... But I stand by my statement.

Re:bah.

[s.surfer]

Who says MS is not behind this. Maybe the SCO bosses will get nice jobs with microsoft, when this is
settled out.
It worked for Beluzzio(sp!) at SGI.

Even if this is true

[Gleef]

Even if this is true, shouldn't they have contacted Linus and had him remove the offending code? I'm sure he would have.

Since they are claiming Trade Secret status on the System V code, isn't failure to perform even basic attempts (such as contacting Linus) to minimise the impact of this leak enough to void the Trade Secret status of their code?

The more SCO speaks, the less credible this lawsuit sounds.

Re:Even if this is true

[einhverfr]

Even if this is true, shouldn't they have contacted Linus and had him remove the offending code? I'm sure he would have.

Or more to the point-- by distributing the offending products, they are consenting to grant rights to all of the code in question that is in any kernel that they distribute! So really only 2.5.x is vulnerable.

Basically SCO here has failed to adequately protect *anything* and one wonders whether the evidence is falsified. Or maybe the lines of code stolen are probably limited to:

#include
#include
#include
#include

Re:Even if this is true

[SEE]

Since SCO distributed Linux that contained the offending code, SCO, upon trying to end the distribution, would be violating the terms of the license under which they copied and distributed Linux. SCO therefore would have violated the copyright of everyone who made a legitimate contribution to the Linux kernel.

If I were IBM, I'd countersue for SCO distributing my code in violation of the license and copyright, with intent of making it a class action by all the non-SCO Linux programmers. Since at least 95% of the kernel code used by SCO (nee Caldera) was developed by others, my target would be, retroactively, 95% of SCO's lifetime Linux revenue, plus an injunction against SCO ever distributing *any* code licesned under the GPL ever again.

And if you ask around...

[stefanlasiewski]

And if you ask alot of former SCO employees, there are many rumors of Linux code in the SCO kernel!

So, it's a fair trade!

The Stolen Code

[Wanker]

I bet this is the stolen code:

for (i=0; i<256; i++) {

Dirty, stinking thieves!

Re:The Stolen Code

[daeley]

// Ack!!!

}

// Phew!

Re:The Stolen Code

I have a better guess:

/* FIXME */

Re:The Stolen Code

[Musashi+Miyamoto]

I bet this is the stolen code:

for (i=0; i 256; i++) {

Dirty, stinking thieves!


So that is how they found the code... there is a bug... "i" is probably a single byte variable...and it just overran its bounds by one! (the range should only be from 0 to 255, not 256)

Re:The Stolen Code

[orkysoft]

If i is an unsigned byte variable, it'll always be in the range [0..255], so i < 256 will always be true, so the loop will go on and on forever.

(Until you get to the end, and the monkey starts throwing barrels at you.)

Re:The Stolen Code

[nickbrown]

Wrong! It will loop forever.

[localhost]$ cat test.c
int main()
{
char i;
for (i=0; i<256; i++){}
}
[localhost]$ gcc test.c
test.c: In function `main':
test.c:4: warning: comparison is always true due to limited range of data type
[localhost]$ cat test.s
.file "test.c"
.text
.align 2
.globl main
.type main,@function
main:
pushl %ebp
movl %esp, %ebp
subl $8, %esp
andl $-16, %esp
movl $0, %eax
subl %eax, %esp
movb $0, -1(%ebp)
.L2:
leal -1(%ebp), %eax
incb (%eax)
jmp .L2
.Lfe1:
.size main,.Lfe1-main
.ident "GCC: (GNU) 3.2 (Mandrake Linux 9.0)"
[localhost]$

Is it just me

[leviramsey]

...or do the stock quotes at the bottom of the article provide the best commentary on this issue?

Caldera (SCOX): 3.60, -0.09
IBM (IBM): 87.21, +1.32
Red Hat (RHAT): 6.13, +0.16

Re:Is it just me

[purplebear]

You know, this is quite insightful. SCO is obviously dying. We all know it. We all proclaim it.
But, the one important thing to keep in mind here is, a sinking ship does suck down quite a lot of it's surroundings with it. I believe no matter what the outcome of this crap is, it is going to hurt Linux in the long run. Well, this and all the zealots.

Re:Is it just me

[Galvatron]

Actually, Caldera has approximately tripled since announcing this lawsuit. The one day loss was a blip. That being said, the only reason it's gone up is that otherwise, the company had no prospects at all. This at least is a shot in the dark.

Conspiracy Theory

[pixel_bc]

Wouldn't it be interesting if someone managed to slip in copyrighted code intentionally, with the knowledge that it would eventually be found -- causing quite a bit of damage to the Linux movement...

Adjust your tinfoil hat, people.

Re:Conspiracy Theory

[JoeBuck]

Hundreds of people have slipped in copyrighted code to the Linux kernel. The whole thing is copyrighted. But anyway ...

I have on several occasions seen junior programmers at proprietary software companies take code off the net or out of a textbook, and try to build it into a proprietary product (e.g. they need to do an FFT, so they get one out of "Numerical Algorithms in C"). This is because they have no clue about the difference between "the source code is published" and "it's public domain". Such codes get ripped out when found, or licenses are negotiated when it's too hard (at least at ethical companies),but it does happen.

The point is, it does happen that proprietary code contains illegally copied software, so SCO had better be careful what they allege.

Re:Dirty thieves

[jonabbey]

I'm sure there are hundreds of others who've had their code "liberated" without their consent.

Are you saying you've liberated someone else's code for an open source project? I know I have not, and I've not seen any evidence of this having been done in the Linux kernel.

Where's the evidence?

Re:Dirty thieves

[elmegil]

So they can slam OSS, but what about going the other way? I've heard of software stealing GPL code in part and in whole, making modifications, and not releasing the source again. Some have been caught, I'm willing to bet a whole lot more haven't been.

Real Motives

[hendridm]

I love this quote:

> "The Linux community would have me publish it now, (so they can have it) laundered by the time we can get to a court hearing. That's not the way we're going to go."

So you don't want us to fix this so-called infringement? Most companies do a cease-and-decist before a lawsuit, allowing the accused to make changes. If this infringment HAS cost them a billion in damages, wouldn't you think they would want the infringement to stop right away? They could still make their case in court and use the same so-called evidence to show that previous infringment caused the damage, but not allowing the accused to fix the problem just shows that it's not the infringement they care about. It's just a means to getting money.

Re:Real Motives

[standards]

Falacy. Past infringement is still infringement.

SCO can release this information now... if they want. The fact that they aren't releasing it immediately suggests that the violation (if true) isn't significant to their business.

It seems to me that they're just looking to make sure that this stays in the press for as long as possible. This is a fairly common business strategy.

After all, if they released the information, they know they'll have a few zillion people looking to prove them wrong. And if they're proven wrong, well, then they look incompetent. So it's better to lay low and let the press have a field day with it.

Re:Dirty thieves

[ivan256]

You know, if everything he says is actually true, there must be lots of copyright violations in commercial software too; the only difference is that we can't see the code to prove they are there.

Mod this troll down.

[EinarH]

I can't belive that this troll is being modded up as Insightful.
He is obvious trolling with quotes like:

Seriously, open source software projects are, by and large, copylefted clones of commercial products.

Moderators who moderated this up: Get a clue.

SCO have no clue about their own claims

[whoever57]

Over on Mozillaquest.com, SCO/Caldera states that there is no SCO code in the kernel itself: "Chris Sontag: We're not talking about the Linux kernel that Linus and others have helped develop. We're talking about what's on the periphery of the Linux kernel. "

In this article, they clearly refer to the kernel: "We're finding...cases where there is line-by-line code in the Linux kernel that is matching up to our UnixWare code," McBride said in an interview" How do they possibly expect to win a lawsuit when they can't even agree amongst themselves about where the UnixWare code appears in GNU/Linux? And what the hell is "the periphery of the Linux kernel"? Modutils? Fileutils? Util-linux?

Re:SCO have no clue about their own claims

[drinkypoo]

If it's code from IBM, which supposedly infringes on their "advanced technolgies" (among which they list a bunch of shit which cannot possibly be applicable, but one item of which is a filesystem) then I can only assume it is in the volume manager or in the utils for jfs.

Re:SCO have no clue about their own claims

[grendelkhan]

But JFS was written independantly of the code IBM licensed from SCO, so that can't be it. I agree they have no clue what they're targeting.

There are two other possible explanations...

[Eric+Smith]

There are two other possible explanations for why some code might be similar or identical:

1. Small chunks of code may result from multiple programmers solving the same problem. I've seen this firsthand, when a company accused me of stealing code from one of their embedded systems. I sent the company copies of the development snapshots of that piece of code from my open-source program, documenting its evolution, and the company was satisfied that I'd independently developed my code.
2. It's possible that the code was copied, but not by Linux. Can SCO prove that their developers weren't influenced by Linux code? Of course, if they can document when the code in question was written, it would be fairly easy to compare that to the Linux history, which is very well documented.

This seems quite reminiscent of the USL v. U.C. Regents case over the BSD release. USL maintained that the BSD code was tainted, but never cited any specific lines of code. USL decided to settle after the U.C. regents pointed out that USL was in violation of the license terms for the BSD code they were using in System V. At that point, USL probably realized that U.C. could force them to withdraw System V from the market and recall all existing copies in order to strip out the BSD code. Anyhow, as part of the settlement, CSRG did remove a few files that were said to be tainted, but since USL didn't indicate which files to remove, CSRG picked out a few of the files that were crufty and in need of replacement anyhow, and removed those.

Does anyone remember the letter that SCO sent out to customers back in the late 1990s, suggesting that customers would be better off with a professionally written and maintained operating system, rather than an amateur effort by a few hackers? It has a lot of other ridiculous comparisons like that. Someone (ESR?) wrote a parody letter refuting every one of their points.

I used to have the two letters posted outside my cube at a previous place of employment. I just tried to find them using Google, but I must not be using the right search terms.

Re:There are two other possible explanations...

[Fammy2000]

I agree with point 1. Someone somewhere will eventually write lines of code that are exactly like code that has come before it. Have you ever seen an Intro to C class? There are only so many ways to solve the same problem. I wouldn't expect each student to come up with a completely unique solution. (Granted, there was a lot of cheating at my school's Intro to C classes).

Stupid Examples:
----------------
Write a program that calculates the area of a triangle, given the correct inputs.

Write a program that reads a file from the file system an creates an exact copy in a new location.

There are only so many ways to do each of those.

I would say it is safe to say that Linux and Windows share a few common lines of code.

This lawsuit has no merit.

Re:There are two other possible explanations...

"I used to have the two letters posted outside my cube at a previous place of employment. I just tried to find them using Google, but I must not be using the right search terms. "

I don't think Google works THAT well.

Re:There are two other possible explanations...

[Target+Drone]

Does anyone remember the letter that SCO sent out to customers back in the late 1990s

I believe you are talking about this SCO letter and this parody.

Re:Is this the end?

[Shads]

Shrug and keep doing what they do? I really don't see, regardless of legality of it (if it is even true), people just tossing away as much work as they have put into linux. SCO is desperate for money or a buyout and they are making things much worse for themselves now by alienating their customers... They won't exist much longer no matter what the end result is (buyout, flush, etc.)

We know they have them!

[Glytch]

So, SCO's taking lessons from the Bush junta, eh?

"We have indisputable proof of their guilt! We are right, we have always been right! Details? Uh... we'll let you know later, we promise. Pinky swear."

Dirty hands

[bstadil]

Not telling the world what the code is, is a legal blunder of the first order.

This means that they have unclean hands, as they are supposed to try and mitigate the damage in order to receive compensation.

You can't knowlingly add to the damage and then ask for compensation incl Punitive damages based on same.

Any suit against Linux vendor in the future can site this as an Affirmative Defense" and pretty much get the suit tossed on that account alone.

Re:Dirty hands

[bstadil]

I have followed this from the get go. Even submitted the initial /. article the day the suit was filed.

I totally agree with you, lots of errors on the IBM suit side and I hope you are right about personal liability for Officers, incl Insider issues based on stock transaction close to the suit being filed.

My point was a little different, This Error of not trying to mitigate the damages is pertinent to all future suits. If indeed there will be some.

Did you notice in the filing by IBM yesterday they was a comment about timing. The estimate is TWO years before a court date will be set. SCO will be out of money by then. Just look at the Rambus idiots, and what a toll on their cash position all the litigation has caused. Rambus started from a position of strength, not like the SCO clowns that is up against the wall, and just killed off their business end of things.

Re:Dirty hands

[jbolden]

Another good point about the stock transactions. That's more on the SEC side of things but I certainly hope that happens as well. I agree with your point regarding future suits just adding this is one of many blunders which appears you already knew so...

As for the cash position I agree with you but I don't think SCO has any intention of making it to trial. They wanted IBM to buy them out to avoid this. The problem for SCO is this is turning into good publicity (at least among techies) for IBM. Among non techies it might be harmful short term since many of them are highly worried about liability issues. Long term it might be quite good as it could resolve some underlying legal issues.

Admins, please wait for evidence

[realdpk]

This story has been posted about probably a dozen times now without any evidence included. Do you suppose you could hold off on posting new stories until either the evidence is made available or the suit is dismissed/won/settled? As it is now we're just seeing the same responses posted over and over again.

Suggestion: Sue for LIBEL

[cmehta1]

I think RH, UnitedLinux(minus SCO, of course), any other commercialized distro, and Linus should sue SCO when they make claims that Linux source code is contaminated with their intellectual property.

This is a blatant attempt to scare potential customers of the distros, and/or impugns the reputations of the distros and Linus.

Even if SCO decides to settle with IBM (i.e. get bought out or bribed), they have opened themselves up to a case of libel, unless they can back it up with examples and proof. Their CEO alluded to exact code duplication and semi-obfuscted replicas of code.

Ok, np, show the code in question, and then we'll check some verifiable (repeat VERIFIABLE) code submittal logs of Linux and SCO. If by some miracle their logs, show an earlier submission...then the lkml community would probably yank the code immediately, and probably improve on it just to make a point.

Second of all, by not coughing up the examples, there might be a case for "failure to mitigate damages". Basic speak for "You cant say I did something to hurt you, wait forever, then tell me what I did wrong to wrack up increased "economic damages", when you could have told me sooner, and I would have cleaned up the issue and reduced your potential losses further.

(IANAL^2)

What happens if they are right?

[sterno]

Let's assume for the moment that some IBM engineer took some code from SCO and added it to Linux. What is the consequence for the Linux kernel and other distros who did not intend to violate their copyright? I'm assuming that the GPL would cause all the legal liability to fall on the shoulders of the people who added the code, but then somebody still has to go and scour that code out of the kernel right?

This is messy, but then it gets even worse when you consider the notion of code forks, etc. What if Linus removes it, but for whatever reason a fork over at SUSE doesn't get removed? What if they don't bother, can SCO get a court order to force removal?

Re:What happens if they are right?

[jbolden]

Claiming to have copyright of something you don't is a felony. So the devleoper in question is in deep kaka. As for Linux SCO is going to have to prove intent (which they won't be able to) so I can't see them not winning.

But remember they are suing IBM. So what they really need to show (and what the lawsuit claims) is that IBM was the one who took the code and put it in the kernal not just some SCO developer. IBM doesn't distribute Linux. The lawsuite mentions there was code which IBM and SCO had joint access to as part of project Monterey which is now part of Linux (JFS). So to win they are going to need to show that SCO had JFS before IBM (100% provably false IMHO).

Let's Just buy them out

[BigGar']

Let's set up a fund to collect money from open source users to use for the sole purpose of buying SCO stock. We'll collect enough to just buy the damn company release all IP into the GPL that we own.

And that as they say will be that.

Re:SCO should sue M$.

[einhverfr]

They did sue Microsoft. And settled for an undisclosed ammount (probably in the $500M range).

IANAL: Disclosure

[HaeMaker]

Thy HAVE to disclose it prior to trial. They will have to give it to IBM. IBM can then find the author and determine the truth.

Re:Will be sooner than later.

[rmadmin]

Yes, they do. What I'm pondering on though, is how they are going to prove the code's time. I mean.. seriously... how hard would it be for them to be like.. "Oh.. we'll just cut some GPL code, and paste it into SCO code......super.. there we go... " :-/ Like... closed source programs have a serious advantage there unless there is some way of proving that the source was actually there x years ago. :-/ Can someone spread some light on how they'd prove how old their code is?

Re:Dirty thieves

[gilesjuk]

Depends if you're talking about GUI apps and desktops, if so then I would agree there are many clones.

If you're talking command line and server apps then I disagree.

Apache isn't a clone of IIS.

MySQL isn't a clone of Oracle, SQL Server.

Sendmail isn't a clone of Exchange server.

OpenOffice is and isn't a clone of MS Office, it provides similar features but uses XML for its file format, something that Microsoft have chickened out of using.

Anyway, you can run things like GIMP on Windows if you want. Without Linux and the Open Source community there would be very few decent free apps for Windows.

Re:Dirty thieves

[coyote-san]

Moderators on crack again (when it was marked as 'insightful,' iirc)

It is completely legal to write your own software. It's completely legal to use the same metaphors when solving the same problems. It's even legal to "clone" an interface when such interoperatibility is a high user requirement. Can you imagine the chaos if every vendor had to come up with new names and flags for programs like ls(1), cc(1), find(1), etc.

What's illegal is copying code without permission. That's not cloning, and the results can't be copylefted since the punitive author doesn't have the right to release the code.

And as for the idea that all OS implementations are just ripped off from commercial products, have you actually looked at the quality of commercial code lately? Haven't you heard of company after company after company switching to Linux and open tools after realizing that they were regularly spending 20% or so of their time fixing files corrupted when the app or system crashed, cleaning up after viruses, cleaning up the mess left by bundled malware, etc.? Even if some mad Microsoft employee sneaked out with the source for Word or Outlook and ported it to Linux, a lot of us would still keep far away from it because of the profound flaws in the applications.

two points

[MORTAR_COMBAT!]

1. I would find it hard to believe that SCO can prove that IBM put such code into the kernel (if indeed it exists there at all).
2. I would find it reasonable to believe that SCO put the code into the kernel itself as a poison pill (if indeed it exists there at all).

"Due Diligence"

[Idou]

If I recall correctly, companies must make an effort to minimize their damages under all circumstances if they want to be able to collect compensation for damages. For instance, if I am IBM, and my supplier of screws never delivers me my shipment of screws for my mainframes, I am responsible to find another supplier. I can't wait a year and not ship any mainframes and then try to collect damages of Billions of dollars of lost revenue. Such a claim would be absurd since I didn't do anything to minimize my damages.
Isn't this true for SCO? They were supplying source code to companies like IBM. Apparently, according to their claim, they were also losing great amounts of revenue to Linux due to the unauthorized use of this code in Linux. It seems like they could have minimized the damage by doing a "diff" command between the Linux sourcecode (which was always available) and their own code and found out immediately that there was tainted code in there.

By being open source, it seems that Linux should be the most compliant OS out their because anyone with such claims as SCO should immediately be able to check the source. For them to wait this long to check (as they are losing over a BILLION dollars) seems to be a gross incompetence of SCO management. What else could contributors to Linux do to ensure the compliance of Linux wihout access to SCO's code? It seems that by being open source, the community has already done everything in its power to comply to IP law. SCO losses are a result of its failure to do its own part ($diff file1 file2).

Besides, the fall of SCO did not happen overnight, why must IBM take disproportionate responsbility (assuming they are at fault, which is unsubstantiated at this time) for what appears to be very poor efforts on the part SCO to protect their own IP (especially since they are also a Linux distr.!!!).

Also, if I were an investor I would be very upset. SCO has basically changed their business model without proper disclosure to the SEC. It is pretty well known that after they made their claim, it would be impossible for them to continue as a software company. Yet they seem to be continuing to waste money on new releases of Linux products that nobody will buy. What is the logic of releasing products for an OS that you are trying to slow the development of? What kind of business strategy is that?
Finally, the fact of SCO is a Linux distro is really ironic.

I mean, if even they are openly distributing their own IP through Linux under the GPL, what right to they have to sue other companies for doing the same!? If they couldn't even ensure that they were not dilluting their own IP themselves (with a simple "diff" command), how can they require other entities to do so?

I really believe that SCO has not put enough thought behind this and some of upper management is going to be directly liable to the stock holders for some blatant acts of poor judgement.

Re:"Due Diligence"

[bazmonkey]

...even they are openly distributing their own IP through Linux under the GPL, what right do (sp.) they have to sue other companies for doing the same!?

None.

They don't even have the right to sue other companies for distributing SCO's own IP if they put it in. Releasing anything under the GPL (assuming you have the legal right to do so), is ensuring that it will be distributed.

I personally believe that SCO will being to adopt the concept that actual code may not have moved over, but concepts that they believe fall under their IP rights. SysV stuff especially. Chunks of kernel code could resemble SCO's code at least in style and possibly perfectly in some places because they are both implementations of SysV concepts. As long as SCO doesn't have pages of copy-pasted code to show us, they'll have a very hard time disproving the idea that kernel developers have similar code because they mimick SysV.

Another thing I don't think anyone has brought up... how can SCO prove that the code they produce in court to compare to Linux's is actually UnixWare code? They're talking about laundering Linux code, it would be much easier for them to toss chunks of code in to UnixWare, or not even actually put them in at all, and just pretend it was theirs all along.

I think the big debate isn't over copied code, but whether or not implementing SysV without code-piracy is under SCO's IP rights.

Food for thought...

Here it is

[r_j_prahad]

/* Drunk. Fix later. (Dennis R) */

Don't they get it?

[Jerk+City+Troll]

What SCO clearly do not understand and what the judge hopefully will, is that there are many common algorithms that when implemented, may have identical code. For example, if you were to have 100 coders, all with similar education, and told them to impliment Bubble Sort, I'd bet you'd venture afterwards that 70-80 of them plagerized somebody's code. While I cannot begin to speculate what kind of algorithms were implimented in code SCO claims was stolen, there's a very strong chance the similarities are coinincidence.

A situation like this arose in a couple assignments in computer science courses I've taken. This one professor I had, who was super anal and also did not understand this principle, accused myself and some of my peers of copying each others' code. His evidence for our "cheating" was that our programs all had some almost identical code save for variable names and some functions. Now, the kids I was accused of helping to cheat or cheating off of were people I had never before interacted with until we found ourselves in the prof's office. However, the professor had done the usual thing of teaching basics, here's some algorithms, here's how you do this, here's how you do that... and because some algorithms are so intuitively implimented, the product can look the same. I mean cripes, how do you expect every student to do mutexes or handle deadlock in completely unique ways? Some things have one correct way or being done!

We explained this to him numerous times, but it seemed with every assignment, different segments of the class were being accused of cheating. Unfortunately for some, they were not able to properly explain this phenomenon.

Either SCO is really dumb or they fully expect the judge to not understand it either.

SCO Linux was GPL

[nuggz]

SCO released a linux distribution.
At least the kernel was released under the GPL.

I would like to see how they explain that IBM GPL release of code is much more damaging then their own release, under the GPL, of that same code.

The fact that SCO has licenced others to redistribute this code under the GPL should make it pretty hard to get damages for others doing the same.

If their code is secret...

[GrimReality]

[Clarification: I am posting it at the danger of being attacked, but my puny brain cannot comprehend it as it is. Please help.]

If their code is secret, it means they could put whatever they want in there now and claim that it was there from the very beginning. Who knows when that particular piece of code was placed there. 20 years ago? Yesterday? Or just before they go to court to present the evidence?

I am not saying that they are lying, but how can one be sure. If there are ways to make sure that it is, please enlighten us.

Thank you.
GrimReality
2003-05-02 20:25:51 UTC (2003-05-02 16:25:51 EDT)

Re:i'm sick of people dissing sco..

[Bacchite]

Common sense? Common sense like:

"The Linux community would have me publish it now, (so they can have it) laundered by the time we can get to a court hearing. That's not the way we're going to go."

How do you launder open source code that is spread across the internet like so many grains of sand at the beach, there is no cleaning that up. Wake up and smell the money AC.

Charges of code "laundering?"

[47PHA60]

"The Linux community would have me publish it now, (so they can have it) laundered by the time we can get to a court hearing. That's not the way we're going to go."

Now, admitting that anything is possible, I must ask, is McBride insane? Here is how to "clean" the code out of the Linux kernel:

Step 1: Log into kernel.org.

Step 2: Remove or patch the offending code in every version of the kernel ever posted to that site.

Step 3: Run complete tests on every patched kernel to make sure it builds and runs on all supported architectures.

Step 4: Contact RedHat, SCO (Caldera), IBM, debian.org, Suse, Slackware, and anyone who has ever distributed a Linux kernel and have them do the same.

Step 5: Contact every Linux user in the world and have them patch their kernels.

Laundering, indeed. I predict that this evidence will turn out to be shit.

Effect on Stock Prices

[IncohereD]

Did anyone notice the stock charts at the bottom of the article?? SCO down, with IBM, Red Hat and Microsoft all up.

The market knows which way this is going to go.

Re:If SCO is correct, what does this mean to Linux

[Skapare]

IANAL

My understanding of this is, since they are playing games by not telling anyone what the specific violation is, they are losing their rights to claim past damages (unless they can prove the party they are suing knew of the violation). The usual way a copyright or trade secret violation is handled is by contacting the violating party and asking for the matter to be corrected. If the violating party does correct the problem in a timely manner, courts will generally treat past violations as innocent violations, and awards would not be more than the profits involved. But SCO hasn't done this. Instead they are refusing to saw what the violation is. They are only referring to "Linux" and it isn't even clear if they mean the kernel, some driver, or userland code. There's nothing any party can do to remove any violating code until they know what it is.

Re:Will be sooner than later.

[Gleef]

rmadmin asks:

Can someone spread some light on how they'd prove how old their code is?

In this day and age, there's no such thing as proof. There are ways (both low and high tech) to falsify almost any piece of evidence. Thankfully, the court system is already set up to handle this.

From what I understand, in most trials there are issues of fact (he did this to them at this time) and issue of law (and because of that he should be convicted of this charge). Early in the process, SCO is supposed to file documents asserting (among other things) the facts as they understand them. IBM is supposed to reply with (among other things) the facts as they understand them, including pointing out where the agree (eg. IBM stipulates that the plaintiff is, in fact, called the Santa Cruz Organization, Inc), and where they disagree (eg. IBM at no point transmitted any part of foo.c to persons outside the company).

If they disagree on significant factual issues (and don't settle, and IBM doesn't eat SCO to make the headache go away), then the case will eventually end up in a trial by jury. The jury's main job is to listen to both sides evidence regarding the facts of the case, and decide whose evidence is more convincing.

If there's no dispute on the facts, juries can be dispensed with, and a judge can just decide how the law applies. You get fun things like Summary Judgements as in the Grokster case if everyone's on the same page as far as facts go.

If SCO produces a falsified source document from 1998 with GPL code pasted in, IBM can rebut with a witness from IBM showing that in 1998 they received a different document, including the SCO (Novell?) branded CD and the matching checksums from the printed and dated documentation. They could also add a witness from a third company showing that in 1998 they received a different document too. I don't think a jury will have a hard time deciding relative merits of such evidence.

Disclaimer: I am not a lawyer, the above should not be considered to be legal advice. Some states may permit Judges to determine issues of fact and not require a Jury for that under some circumstances.

Re:three points

[tomhudson]

uh, people, if you've been following this story over the last few months, just a few points:

1. SCO doesn't claim in its' filing that there is any SCO IP in the linux kernel, contrary to what McBride says
2. SCO does claim in its' filing that certain compatability libraries that allow UnixWare binaries to run under linux are their IP.
3. None of the current distros has a copy of any of these libraries.
4. McBride should read his own companys' suit before giving interviews, but then he would be open to charges of "pump and dump" vis his SCO stock (not that ignorance is a defence, but ...)

This whole thing is so fucked up that it can only be a stock-market scam.

Re:Did SCO violate the GPL?

[MoxCamel]

So...what would happen if SCO just copied and pasted some code from the Linux kernel into the Unixware kernel, doctored a few documents, paid off a few developers to keep their mouths shut, and then claimed that Linux had Unixware code?

Why are you looking at me like that, Scully?

Mox

Who can we trust?

[dark-br]

This allegation really underscores a primary issue of closed source software - it's not out for public review, and hence, it would be VERY difficult to validate these claims. For all we know, SCO's code is a rip-off of Linux or some prior open-source code that Linux was a beneficiary of. SCO never published their source and there's nothing outside of SCO (or maybe IBM, if there was some kind of agreement) to validate the claims. The trouble is, we can trust neither of those parties to present untainted copies of the relevant code as both could have altered timestamps or copied in code. There's also the fact that some processes in software can just really be done in one optimum way.

This is a good reason software should not be considered "published", hence copyrightable, unless the source code exists in some human-readable means in some organization outside of the "software publisher" (who truly publishes nothing), a place the courts could seriously look at as proof of the existance.

A way that might serve as a valid stopgap would be the generation of an MD5 hash of each source file and submitting that to some trusted agency (Library of congress?) for another digital signature and timestamp to be added, proving the date of creation to some legal standard so that these allegations could be backed with proof. We'd know the plaintext was validly signed by the LOC and that it existed at the time alleged to.

Re:Who can we trust?

[swordgeek]

Interesting point, but many issues are left open.

First is the one that people have already pointed out: The released binary is a de facto checksum of the source code. If the code compiles to be identical to the binaries they released years ago, then the source is unchanged.

Then there's the fact that SCO did release the source code--to companies (like IBM) willing to pay for a license and sign an NDA. There are several copies of it floating around out there.

Then there's the question of honesty. It's one thing to lie to the public. It's another thing to perjure yourself (or your company) in court. I imagine SCO has signed (somehow) copies of their source code saying in effect, "this is an official copy of our trade secret code as of such-and-such a date." These are legal documents, and much as we might like to think otherwise on /., companies tend to take such things VERY seriously when they're talking to a judge.

Fundamentally, this is exactly the same as any other copyright/trade secret claim. Biotech companies rely on their researchers' signed and dated notebooks to prove their work (or prior art).

As far as your LoC idea, it's another breakable step--people are bribable, plants can get hired to destroy/alter records, etc. etc. It's an onerous step that's not going to help any honest companies, nor stop any companies truly dedicated to evil. It just causes more beaurocracy.

hey, once palladium comes it will kill linux

Its a moot point anyways, wintel's new palladium will make it impossible to install linux on a new machine, so linux will be killed anyways. I chose to specialize in linux for my career and now face homelessness and death out on the streets for not going with King Bill.

isn't this a dupe?

[MobyTurbo]

I know I'll get modded down for this, but the hot link in this story and the previous story on the subject are identical except for a positioning flag... I'm surprised nobody else has noticed.

Den of Dirty Thieves at SCO

[kupci]

" And taking the offensive, Perens added, "Copying works both ways. I want to see some proof they haven't copied Linux source code into SCO Unix."

I find this statement has more merit than anything from SCO. Corporate driven programming is much different from Open Source. With OSS, there's really no pressure to get stuff done and out the door, or at least far less than in the corporate world. This idea is based on Linus's many comments about when such and such release will be shipped : "when it's done".

Now contrast that with UnixWare version whatever, with a crackpot like McBride at the helm whipping up the team to get the code out the door. You can imagine the chaos: see the Mythical Man Month about OS/360, and I believe there's a book about Dave Cutler's team at M$. This is not Extreme Programming, it's the death march.

To conclude, which programmer is more likely to grab some peice of code that just works?

Here's another point: From my experience, OSS code is revised and rewritten constantly. Look at Ingo's work with the scheduler, or the recent work by several folks on the VM. Or Apache Xerces (XML4J). I've been using that for a few years, since it had jp (originally written by some IBMers at one of IBM's Japan labs I think), and that has been rewritten from scratch at least once. One last example - Mozilla was rewritten entirely, sidelining it for several years. That was a questionable move, but I say they did a good job - Mozilla is awesome.

Again contrast that with corporate software - how often do you rewrite working code from scratch? You do if business rules change, but I'd argue that with corporate software (think COBOL) it's more if it ain't broke don't fix it. Case in point: at the organization I work at, we have a database (well, more of a filesystem) written in assembler that is basically 25 year old code. Why? It works, it is very fast, it runs mission-critical systems, and it's very hard to modify, let alone maintain it. (Yes it is being replaced, so they say).

So, Unix code in Linux, copied line by line? Doubtful, I side with Perens.

To conclude, Perens has a good point. But as can be seen by the Sun/Netscape vs. Microsoft lawsuit, anything can happen in the courts. They'll have fun figuring out the "obfuscated" code.

I have the line os code SCO is sueing about!!!

[randomErr]

Here's the code:

/*
'SCO suxs.'
Copyright SCO Slogan Department 1994
All Right Reserved

*/

What Darl McBride is *really* saying:

[Xlib]

/* You are not expected to understand this */

Ahhhh, now it all makes sense...

Re:Dirty thieves

[Kong+the+Medium]

man 1 ls, man 1 cc ,man 1 find

and then you'll know.

Maybe i've been trolled, but maybe i've helped a newbie.

The Numbers refer to the original MAN PAGES books 1 to 8. Try Xman on any ***X machine.

Does this remind anyone of the /. april fools?

[Elwood+P+Dowd]

Way back in the day (1999?), slashdot ran one of its most successful april fools stories. It was an ask slashdot:

Since MS Windows is closed source, isn't it possible that there's GPL code in there that they're using illegally? What should we do about this?

Of course, everyone responded that the questioner was an idiot, /. was biased, blah blah blah.

Maybe SCO didn't get the joke either. Can anyone find a link to that article? I tried /.'s find feature and google to no avail.

Out with it already....

[jemenake]

I wish SCO would just go ahead and announce what parts of the Linux kernel have their code so that we can get started on replacing it with something that works.

What are they waiting for.... a bug-finder's fee? :P

SCO GOTCHA

[azoidx]

from a great article http://www.corante.com/openmind/20030501.shtml "Finally, there's another gotcha as far as this suit goes. SCO is claiming that IBM, Red Hat and SuSE are somehow violating SCO's IP with code that they're shipping with their Linux offerings. If this is true, is SCO shipping it as well? Under the terms of the GNU General Public License, even if IBM and the rest are shipping stuff wrongly (which, again, I very strongly doubt), once it makes it out the door in SCO's Linux offerings as GPL'ed code then the company as the legitimate copyright holder (if they are) has given carte blanche to the rest of the world to use that code. From the GPL, section 6: Each time you redistribute the Program (or any work based on the Program), the recipient automatically receives a license from the original licensor to copy, distribute or modify the Program subject to these terms and conditions. You may not impose any further restrictions on the recipients' exercise of the rights granted herein. It would seem to me that one quick way to debunk SCO's claims would be to examine the source from SCO Linux and the source from what IBM is shipping. If, in fact, there are no significant differences (and I suspect there are not) then SCO has no leg to stand on. "

Re:Let's Just buy them out

[Some+Dumbass...]

I have a dollar.

Hang on to that. In a few months, that may be all the money we need...

Buy Him Out Boys! or What I hope IBM does 2 SCO

[SubtleNuance]

Ahh, The Simpsons, full script here

Bill Gates: Mr. Simpson?
Homer: You don't look so rich...
Bill Gates: Don't let the haircut fool you, I am exceedingly wealthy.
Homer: [quietly] Get a load of the bowl-job, Marge!
Bill Gates: Your Internet ad was brought to my attention, but I can't figure out what, if
anything, Compuglobalhypermeganet does, so rather than risk competing with you, I've decided simply to buy you out.

% Homer and Marge quietly discuss this proposal.

Homer: I reluctantly accept your proposal!
Bill Gates: Well everyone always does. Buy 'em out, boys!
[Gates' lackeys trash the room.]
Homer: Hey, what the hell's going on!
Bill Gates: Oh, I didn't get rich by writing a lot of checks! [insane
laughter]

Re:Will be sooner than later.

[HopeOS]

For what it's worth, some companies are required to use code escrow for reasons dealing with financial liability. One place that I worked escrowed the source for every release as well as the development tree on a regular basis. I don't know who required it, but it could well have been a bank, a customer, or a regulatory agency. Data was provided on CDROM and the escrow company verified that the data received matched the declared checksums.

-Hope

The question is not how much has Linux stolen

[defile]

Their entire suit may be based on header files in Linux which conform to SYSVR4 specifications. To an untrained reviewer, this may indeed look like infringement.

Fortunately, there's plenty of legal precedence about header files, conforming to specifications, etc. which should make short work of this claim.

Anyway, down to business...

SCO customers in New York! would you like to move away from a sinking ship and regain control of your systems? Looking to develop a Linux strategy? We can help.

You can't get blood from a stone

[Jason+Earl]

The reason that SCO is pursuing this case in the first place is that they are doomed. They rely primarily on proprietary UNIX licenses (OpenServer and Unixware) for x86 hardware to survive and anyone with half a brain is making the easy migration from SCO UNIX to Linux. In the meantime SCO has to maintain not one but two proprietary UNIXes with a development team smaller than RedHat's, and they haven't even got a version of their software that runs on Itanium or Opteron processors. Not to mention the fact that they are already losing money with no relief in sight.

In short, SCO is screwed.

However, they realized that they could alleviate some of the hurting in the short run by running a FUD campaign against Linux. If they scare enough of their current customers into thinking that Linux has intellectual property problems then they might retain some key accounts for another round of upgrades. Some investors might even believe that they have a chance of making real money with their lawsuit, and this would give SCO managers a chance to cash in some of their SCO stock while it is still worth more than the paper it is printed on. That is what this circus is all about. SCO knows they aren't going to win. Heck, they aren't even *trying* to win. The whole thing is nothing more than an elaborate con job.

RedHat and friends could countersue for damages based on their ridiculous claims, but this isn't likely to make them any money. After all, if SCO had money they wouldn't be trying this stupid stunt in the first place.

Re:Dirty thieves

[sheldon]

Colin Powell will be presenting the evidence at the UN next month.

Re:Did SCO violate the GPL?

[richardellisjr]

Or a even bigger conspiracy theory. Maybe they put it there. A failing company with declining revenue sees a competing product doing well, it's easy to send suggested code changes to the kernel developers, wait a little while. Then sue.

Re:Did SCO violate the GPL?

[1lus10n]

chicken vs the egg argument.

internal documents alone wont win this case. the funny thing is that even if SCO has a winnable case they are not going to win against IBM. IBM can just drag this case out forever until SCO runs out of money. kinda scary that the RIAA's legal plan can be used for something good eh ?

SCO - IBM, RedHat, SuSe...

[Discopete]

Has anybody else noticed that the only distributions that SCO is
even looking at are those that actually are making money?

This appears to be nothing more than a money grab targeted at a portion of the
industry where they are failing. One of their execs. (probably the CFO)
asked himself one day
"How are we going to make any real money of this linux thing?"
"Sue big blue and any other company that is doing it right!, thats the ticket!"

I believe that IBM will end up litigating them into bankrupcy then aquiring all of their assets.
Upon which they should can McBride and his crew.

I had this idea as well..

[yokem_55]

But I took it in a different direction. This would not just be a libel suit involving just Linus or the distromakers, this is defamation/libel of an entire community of developers. Thus a multi-plaintiff suit, or perhaps even a class-action suit might be more worthwhile. Second, my understanding of libel torts is that you while have to even prove intent to mislead/lie/etc, blatent negligence to the facts of your assertions can constitute this intent. If IBM isn't going to counter-sue, WE SHOULD.

Re:Licensing

[SEE]

When SCO (nee Caldera) distributed Linux under the GPL, there was an SCO authorized distribution of the previously stolen code under the GPL.

At the very least, this indemnifies *everyone* past the first rogue, and arguably makes it impossible for SCO to call the code back.

Re:Licensing

[Alan+Hicks]

At the very least, this indemnifies *everyone* past the first rogue, and arguably makes it impossible for SCO to call the code back.

They already know this, but that isn't what the law suit is about. The law suit is about $1 billion that SCO claims this alleged offense has cost them. Honestly I doubt they care if the code is there by this point. Taking the code out will only cause some one to write a replacement relatively quickly, and net SCO nothing.

Re:Licensing

[Courageous]

I don't disagree with the accuracy of what you're saying.

If what you are saying is that you "can't undo" a piece of code that has been "GPL'd" by an unauthorized third party, your disagreement is not pertinent, because you'd simply be mistaken. A broad, but very powerful principle of law basically says that, sans authorization, no third party can create a contract between two parties.

In court, an offender may be able to testify that they had every reason to believe that their possession of some copyrighted item was lawful. Such a claim might even hold up, assuming, of course, they *CEASED* violation of copyright upon being informed of the unlawful possession. If not, then the interim would most likely be actionable.

Note that I know nothing about what was going on at SCO, whether or not it is right or wrong, or any of that. I'm *only* commenting on the asserted irreversability of GPL'ing something, which is not at all irreversible by any stretch of the imagination.

C//

GPL virus FUD

[agurkan]

Hi,
There have been a couple of comments about how Caldera has already distributed Linux kernel so they cannot claim IP theft etc.
I think we should be careful that Microsoft et al. should not put a spin on this like "See, they got involved in GPL software and lost their IP rights. We have been saying IT companies which produce original work should stay away from GPL if they do not want to lose their IP."
We have to make it clear that SCO/Caldera did not get screwed because they touched GPL software but they have simply agreed to share their IP and now claiming someone stole it, or something along these lines.

you laugh but...

[rmdyer]

...Microsoft is already making code obfuscation a natural part of their development process. Most likely they are going to release their code open source at some point in the future, after they've obfuscated it to death.

See...

http://msdn.microsoft.com/library/default.asp?ur l= /library/en-us/dnnetcomp/html/netcfobfuscation.asp

+2 more cents.