Android Devices Are Hives of License Violations

inkscapee writes "Android developers are paying little attention to Free/Open Source software licenses and have a 71% violation rate. Come on folks, FOSS licenses are easy to comply with, certainly easier than proprietary software licenses, and less punitive. But it seems even the tiny hoops that FOSS requires are too much for devs eager to cash in."

What the hell?

[Stratoukos]

The article doesn't mention Android separately. It has one set of numbers for both Android and iOS. Exact quote:

A new study from open source services vendor OpenLogic reports that 71 percent of Apple iOS and Google Android apps are not in compliance. OpenLogic scanned 635 apps, including both free and paid on the Apple App store and Google Android Marketplace. Of those 635 scanned apps, 52 apps include Apache licensed code while 16 included GPL/LGPL licensed code.

Who the hell wrote that summary?

Re:What the hell?

[jdgeorge]

Furthermore, the 71% figure has no apparent relationship with the other numbers mentioned in the article.

The article is nearly as brain-dead as the summary.

Re:What the hell?

[Facegarden]

You have a negative one score, but there is nothing wrong with what you said. This summary is complete crap. Slashdot chose to publish it. So Slashdot is publishing crap. This happens often. It is then not unreasonable to say the site has stagnated. I sure am sick of all this bottom of the barrel content myself.

The submitted did not read the article, or was an idiot. The approver(s?) did not read the article or are idiots. Everyone involved in posts like this are doing a bad job or are an idiot. Why does slashdot keep doing this? I see extremely poorly written content all the time here. Its just dumb.

*ALSO*, most blogs nowadays read their own comments and post updates like "many people in the comments have pointed out...". I don't think I have ever seen this happen on Slashdot, or if I have, it does not happen often enough. You'll see times where 80% of the comments are rightfully pointing out that the story is BS, but it still does not get updated. Posting bad content and then not fixing it when it is clearly shown to be BS just shows that the people running the site do not care about the quality of the content, or at the least are very bad at showing it. You just see false stories hang out on the front page all day long. Its ridiculous.

Shape up slashdot!
-Taylor

Re:What the hell?

[dgatwood]

And one set for GPL and Apache, too. That's pretty night and day as far as the requirements go, and it's not clear if all of those are really even violations.

I mean, GPL code, sure. That's pretty much toxic to closed source development. But Apache? How do you even violate the Apache license when you're distributing only object code?

Apache defines a derivative work very narrowly, such that (by my reading anyway) library code under an Apache license used as a small part of a larger work isn't one. Therefore, one could potentially argue that it doesn't even require attribution or a copy of the license....

Re:What the hell?

[MozeeToby]

Of the 635 apps that they looked at, they confidently identified 68 as having Apache or GPL'd code. Of the 68 apps with open source code 71%, or 48 in absolute terms, were in violation. I admit that it would have been clearer and more interesting to say that 7.6% of the apps they looked at were in violation. If they had a truly random sampling and that number held out, you'd be looking at more than 20,000 apps that are violating the Apache and GPL licenses.

Re:What the hell?

[BitZtream]

APL, Section 4.1 ... you must include a copy of the apache license.

Section 4.4 ... if you give attribution to anyone, you must give attribution to the original work you used. I.E. if you credit yourself you have to credit the original authors as well.

Its REALLY easy to comply with, but I've failed to comply in early releases of both open and closed source software myself simply because I forgot to add attribution and the license file. Of course, as soon as I or anyone else noticed, I fixed it as it is an honest mistake but ... its still REALLY easy to violate the license in a clearly defined way.

What about iOS?

[rafial]

Wait a minute here, the linked article says "A new study from open source services vendor OpenLogic reports that 71 percent of Apple iOS and Google Android apps are not in compliance." Yet the headline for this story mentions only Android. I understand it's become fashionable to bash Android lately, but this seems a bit egregious. The problem appears to be endemic across all mobile devices.

Re:What about iOS?

[s0litaire]

It was an iPhone user who wrote the headlines...

71 percent?

How does 52 apps out of 635 add up to 71%??

Re:71 percent?

Easy. 5+2 = 7, and you carry the one.

Re:Do no evil (directly)

[teh31337one]

You flag the app, and Google will remove the apps from the android market. Why are Google to blame here? iOS has violations too. http://www.pocketgamer.co.uk/r/iPhone/The+Blocks+Cometh/news.asp?c=26696

"FOSS licenses are easy to comply with, certainly"

[BagOBones]

Actually I find the Copy left licences have far more demands than any commercial licence. You can spend huge amounts of time figuring out if you can link or not link, how you must publish the code and how you can distribute the application.

With commercial software you are often presented with a library or set of tools you can or can't bundle with your product, past that there is no code to deal with most of the time..

Tiny hoops

[TheCyberShadow]

Wouldn't jumping through tiny hoops be harder?

Re:"FOSS licenses are easy to comply with, certain

[Teckla]

Actually I find the Copy left licences have far more demands than any commercial licence. You can spend huge amounts of time figuring out if you can link or not link, how you must publish the code and how you can distribute the application.

As a commercial software developer myself, I'm glad at least one other person on Slashdot understands this!

For some of us, copyleft code is, by far, the most expensive code there is. In fact, it's pretty much poison.

Re:Do no evil (directly)

[macs4all]

You flag the app, and Google will remove the apps from the android market. Why are Google to blame here? iOS has violations too. http://www.pocketgamer.co.uk/r/iPhone/The+Blocks+Cometh/news.asp?c=26696

Ok, that's one iOS example down, 177,499 to go to equal Android ( at 71% of the 250,000 current iPhone apps).

I retract my previous post. I didn't RTFA, and didn't realize the Summary was misleading.

Sorry, Androids, I apologize. I guess we're ALL in the license-violation-boat together...

27% for Android - 32% for iPhone

[Infonaut]

From the press release for the study:

OpenLogic found that among the applications that use the Apache or GPL/LGPL licenses, the compliance rate was only 29%. Android compliance was 27% and iPhone/iOS compliance was 32%. Overall compliance of Android applications using the GPL/LGPL was 0%.

Re:"FOSS licenses are easy to comply with, certain

[The_Wilschon]

Well, that was the original intent. RMS envisioned a world in which all software was Free (Libre), and then he thought about how this could be brought about. What he came up with was two-pronged. 1) copyleft 2) write lots of really excellent software, so excellent that people will want to use it even though they know they will get sucked into the copyleft. It appears to be working.

Re:"FOSS licenses are easy to comply with, certain

[H0p313ss]

Actually I find the Copy left licences have far more demands than any commercial licence. You can spend huge amounts of time figuring out if you can link or not link, how you must publish the code and how you can distribute the application.

As a commercial software developer myself, I'm glad at least one other person on Slashdot understands this!

For some of us, copyleft code is, by far, the most expensive code there is. In fact, it's pretty much poison.

Which was the intent, free to extend, not so free to commercialize. TANSTAAFL

Re:"FOSS licenses are easy to comply with, certain

[BitZtream]

Not sure why you're modded Funny because your statement pretty much matches my experience.

I've found commercial licenses far easier to deal with than GPL, and that alone is why our company doesn't bother with anything that has GPL attached to it, its just not worth the effort.

Generally, there are BSD licensed equivilents of the major GPL libraries anyway so why screw with it?

Even Apples licensing is far easier to deal with than GPL, its just a minefield.

I realize I'm picking on GPL, but its true of just about all Copy-left licenses, which are most of the time more restrictive than commercial licenses I've dealt with.

Its sad that its far cheaper overall for our company to pay 100k in licensing fees than to use a copy-left license.

I'm sure I'll get marked as a troll but the reality of it is, copy-left is a fucking pain in the ass unless you are also copy-left. More software isn't than is.

Re:Do no evil (directly)

[basotl]

The linked article says "A new study from open source services vendor OpenLogic reports that 71 percent of Apple iOS and Google Android apps are not in compliance." So I guess they ARE saying around 177,500 iOS apps are also offenders.

But I am taking the whole article with some skepticism.

Well hidden slashvertisement?

[ShadoHawk]

If you read the article aside from the summary leaving out iOS this is all really an advertisement to sell you a product from OpenLogic called OpenLogic Exchange (OLEX).

http://www.openlogic.com/products/olex.php
This product will certify your source code is compliant after it scans it...

Re:"FOSS licenses are easy to comply with, certain

[jedidiah]

As a computing professional, I find all of this whining about Free Software license complexity rather embarrassing frankly.

Electronic Arts and Oracle can manage navigating this "quagmire". Why can't you?

One really wonders what an SBA audit of you whiners would turn up.

Re:"FOSS licenses are easy to comply with, certain

[xaxa]

copy-left is a fucking pain in the ass unless you are also copy-left

That's pretty much the point.

Re:"FOSS licenses are easy to comply with, certain

[xaxa]

Oops, that's ambigious language.

copy-left is a fucking pain in the ass unless you are also copy-left

That's pretty much the intention.

Re:Whining never helps

[Jason+Earl]

If you use a piece of Free Software in your software product and then distribute that product and you fail to follow the license then the folks that wrote that particular piece of software have you by the nuts. You might not like whining, but I can guarantee you that you'll like litigation a lot less. Especially because you will lose, and the penalties for copyright violation are ridiculous (at least in the U.S.). Assuming, of course, that the folks that wrote the Free Software that you "borrowed" actually care, which is probably not the case.

In fact, in this particular case the article is basically about a company that scans people's software for them, finds out if they have any licensing issues, and then offers to help you sort the licensing issues out if they find something bad. It's not really the Free Software developers that are whining. Instead it is a third party that wants you to pay them money to help you sort out a licensing issue on the off chance that the Free Software developers *do* decide to complain. You might not think that this is a service, but your legal counsel probably has a different opinion.

And then some.

[thePowerOfGrayskull]

More than that - 71% of 635 apps on Android and iPhone is NOT the same as 71% of Android apps or even 71% of apps period. TFS and TFA both gloss over the fact that this is 71% of a very small sampling -- which may or may not have been specifically targeted based on functionality and features. TFA also does not discuss how the scan was able to identify OSS production by looking at compiled, stripped down, and signed (and possibly encrypted) binaries.

Hmm, something's fishy here... oh, wait. I see. It's right there in TFA:

OpenLogic sells a product called the OLEX App Store Edition which provides tooling that can be used by developers to do a self-service scan on their apps prior to submitting to the app store and by app stores to track open source compliance.

How convenient! A one-company study -- using undisclosed methodology -- draws broad and irrational conclusions that suggest that people really need to buy its products and services. Amazing!

Big claims, no proof == slashvertisement

[tomhudson]

1. While they claim that 71% of almost 700 apps they scanned were in violation, they didn't list a single example.

2. They offer to sell developers scanning software so devs can make sure their apps are in compliance.

3. PROFIT!?!

Color me skeptical.

Re:"FOSS licenses are easy to comply with, certain

[GreatBunzinni]

Oh really? Can you please tell us what would be the cost of building a product on a proprietary closed-source software program which doesn't grant anyone the right to extend it, let alone commercialize any derivative work?

It appears that you are one of those ignorant FLOSS detractors who tries to bitch that hijacking other people's code is "most expensive" while the alternative is... you investing your own time to fill all the countless man-hours that it took other people to build the software you are trying to sell off as if it was your own? Because you sure can't just pick up, for example, Microsoft Office, tweak it's UI and sell it off as Teckla's Office suite.