Linus Torvalds: Any CLA Is Fundamentally Broken

← Back to Stories (view on slashdot.org)

Linus Torvalds: Any CLA Is Fundamentally Broken

Posted by samzenpus on Monday January 20, 2014 @11:30AM from the no-sir-I-don't-like-it dept.

sfcrazy writes "The controversy over Canonical's Contributor License Agreement (CLA) has once again surfaced. While Matthew Garrett raises valid points about the flaws in Canonical's CLAs, Linus Torvalds says 'To be fair, people just like hating on Canonical. The FSF and Apache Foundation CLA's are pretty much equally broken. And they may not be broken because of any relicencing, but because the copyright assignment paperwork ends up basically killing the community. Basically, with a CLA, you don't get the kind of "long tail" that the kernel has of random drive-by patches. And since that's how lots of people try the waters, any CLA at all – changing the license or not – is fundamentally broken.'"

37 of 279 comments (clear)

Spell it out the first time by tepples · 2014-01-20 11:34 · Score: 5, Insightful

Why doesn't the summary for articles like these spell out unfamiliar abbreviations such as "contributor license agreement"?
1. Re:Spell it out the first time by DaKritter · 2014-01-20 11:36 · Score: 3
  
  Thanks! And I could not agree more.
2. Re:Spell it out the first time by Anonymous Coward · 2014-01-20 11:40 · Score: 5, Funny
  
  I guess CLA clearly doesn't stand for "Clear and Labeled Acronym"...
3. Re:Spell it out the first time by icebike · 2014-01-20 11:40 · Score: 5, Funny
  
  I'm pretty sure they were talking about Conjugated linoleic acid. After all, that is the number one hit in google.
  
  --
  Sig Battery depleted. Reverting to safe mode.
4. Re:Spell it out the first time by bob_super · 2014-01-20 11:42 · Score: 4, Funny
  
  I was going for Chlamydia, Lupus and AIDS, and then I remembered that House has been finished for a while.
5. Re:Spell it out the first time by techno-vampire · 2014-01-20 11:42 · Score: 5, Informative
  
  Because the submitter doesn't know how to do it right, and the "editors" don't know how to do their job. What else do you expect from Slashdot?
  
  --
  Good, inexpensive web hosting
6. Re:Spell it out the first time by gallondr00nk · 2014-01-20 11:44 · Score: 5, Informative
  
  Or mention the problem people have with the Canonical CLA in the first place, which according to TFA is the requirement that contributers sign an agreement that gives Canonical the right to relicense their contribution under a proprietary licence.
7. Re:Spell it out the first time by TWX · 2014-01-20 11:51 · Score: 5, Informative
  
  Because the submitter doesn't know how to do it right, and the "editors" don't know how to do their job. What else do you expect from Slashdot?
  I used to expect a lot more from Slashdot, but now that none of the old-guard are left it's steadily and inexorably slipping in the same fashion that kuro5hin, The Register, and other tech sites have slipped.
  
  In case you didn't know, there are holding companies buying up forums, news sites, aggregators, etc. At this point half-a-dozen automotive forums that I've used are now under one company, and that company milks the forums for advertising revenue without really policing the forums for abuse anymore. Since those forums lack a community-policing method like Slashdot and a few others there's very little to stop the race to the bottom as suddenly off-topic discussions, especially politics, come to pollute the original purpose with garbage that has nothing to do with cars.
  
  These companies often don't advertise that they're in charge of so many forums, but some like The HAMB do. I encourage people to leave forums that head down this route, it's the only way to let these companies know that we don't appreciate what they're doing. Unfortunately that's probably a losing battle as there are a lot more users to replace those that walk away.
  
  --
  Do not look into laser with remaining eye.
8. Re:Spell it out the first time by Chuck+Chunder · 2014-01-20 11:54 · Score: 3, Funny
  
  Cryptic Letter Algorithm?
  
  --
  Boffoonery - downloadable Comedy Benefit for Bletchley Park
9. Re:Spell it out the first time by kesuki · 2014-01-20 12:20 · Score: 4, Funny
  
  Complete
  Loss
  Altogether
  google is worthless urban dictionary equally so, and it's not in the jargon file. this is classic slashdot, making up acronyms no one can figure out. wikipedia had the best page http://en.wikipedia.org/wiki/CLA
  but i can't figure out how a command line argument is related.
  
  --
  https://www.gnu.org/philosophy/free-sw.html
10. Re:Spell it out the first time by lgw · 2014-01-20 12:27 · Score: 5, Funny
  
  Chlamydia, Lupus and AIDS
  What are "better things than Dice's editing", Alex?
  
  --
  Socialism: a lie told by totalitarians and believed by fools.
11. Re:Spell it out the first time by Phroggy · 2014-01-20 12:31 · Score: 5, Insightful
  
  I used to expect a lot more from Slashdot, but now that none of the old-guard are left it's steadily and inexorably slipping in the same fashion that kuro5hin, The Register, and other tech sites have slipped.
  The "old guard" editors didn't know how to do their jobs either. Note my user ID; I remember. I come here for the comments, not the articles.
  
  --
  $x='S24;r)>63/* h@<5+oZ)32"5cz';$me='phroggy'x$];
  $x=~y+ -xz+\0-Tx+;print$_^chop$me for split'',$x;
12. Re:Spell it out the first time by synaptik · 2014-01-20 13:34 · Score: 4, Insightful
  
  Yes; but back then it was because they were amateurs, doing this for a hobby.
  
  --
  HSJ$$*&#^!#+++ATH0
  NO CARRIER
13. Re:Spell it out the first time by CauseBy · 2014-01-20 13:40 · Score: 5, Funny
  
  Seriously. I've been reading since 1999 (under different accounts) and trust me, the editing was definitely even worse back then. We used to have mis-spelled words, broken links, and sentences the cut off in the mi
14. Re:Spell it out the first time by haruchai · 2014-01-20 13:57 · Score: 5, Funny
  
  I was wondering how much Linus knows about Conjugated Linoleic Acids.
  
  --
  Pain is merely failure leaving the body
15. Re:Spell it out the first time by fractoid · 2014-01-20 14:03 · Score: 4, Informative
  
  The issue isn't that it's an unfamiliar abbreviation, the issue is that the TLA namespace is so horribly cluttered now that CLA could mean any one of between 74 and 85 different things.
  
  --
  Rampant carbon sequestration destroyed the Dinosaurs' tropical paradise. I'm here to help repair the damage.
16. Re:Spell it out the first time by ShanghaiBill · 2014-01-20 14:40 · Score: 5, Funny
  
  Because they hope your interest will fuel the very slightest bit of initiative, like the ~5 seconds it takes to Google it?
  I tried Googling it. Google said it meant "Conjugated Linoleic Acid". According to the linked Wikipedia article, it is high in trans-fat, so it is a good thing that Linus doesn't care for the stuff.
17. Re:Spell it out the first time by Rob+Riggs · 2014-01-20 14:48 · Score: 4, Funny
  
  If you want news and articles, honestly Yahoo's News is not too bad.
  And if you need personal or professional advise, there's no better place than Yahoo! Answers."
  
  --
  the growth in cynicism and rebellion has not been without cause
18. Re:Spell it out the first time by dreamchaser · 2014-01-20 15:11 · Score: 5, Insightful
  
  Because they hope your interest will fuel the very slightest bit of initiative, like the ~5 seconds it takes to Google it?
  Just a guess, but it worked for me! No whinging here about such a trivial matter. I mean, if you are seeing this site anyway, you are definitely online...
  That's a bullshit answer. It is standard practice in good writing to say what an acronym or abbreviation means the first time it's used. Afterwards using the shortened version is just fine.
19. Re:Spell it out the first time by Minwee · 2014-01-20 15:13 · Score: 3, Funny
  
  Ooo...Maybe we should get Watson to replace the /. editors? Brilliant!
  If Watson's busy, I would settle for ELIZA.
20. Re:Spell it out the first time by hawk · 2014-01-20 16:16 · Score: 3
  
  Yeah, but the 3 digit IDs are suspect: you guys all caved instantly when taco insisted on cookies . . . some of us held out a while before caving. :)
  hawk, who still blocks almost all cookies
21. Re:Spell it out the first time by sconeu · 2014-01-20 16:40 · Score: 5, Funny
  
  Tell me about settle for ELIZA?
  
  --
  General Relativity: Space-time tells matter where to go; Matter tells space-time what shape to be.
22. Re:Spell it out the first time by gmhowell · 2014-01-20 18:20 · Score: 3, Funny
  
  Please, you four digit guys are so old that Alzheimer's is kicking in and you don't really remember what things used to be like. People with five digit ID's, OTOH, have been around a while yet are still young and sexy without a brain full of swiss cheese.
  
  --
  Jesus was all right but his disciples were thick and ordinary. -John Lennon
23. Re:Spell it out the first time by zoward · 2014-01-20 23:09 · Score: 5, Insightful
  
  Also, the Slashdot editors need to understand that when they don't spell out these acronyms the first time they use them, the first half of the comments section is going be discussing the lack of proper acronym definition and poor editorial skills instead of, you know, the actual article content. Just sayin'.
  
  --
  "Can't you see that everyone is buying station wagons?"
CLA by ZackSchil · 2014-01-20 11:40 · Score: 5, Funny

Yes of course, the CLA. I have long hated CLAs. CLAs are a problem and someone should do something about the CLAs.
1. Re:CLA by aix+tom · 2014-01-20 11:52 · Score: 3, Funny
  
  CLAatu barada nikto.
  'nuff said.
Co-operation and Trust by bug1 · 2014-01-20 11:47 · Score: 3, Insightful

Free and Open source software are about working together to write software, its unquestionably good.
There are tens of billions of dollars worth of Libre code out there, with thousands of unpunished violators, and only 2 or 3 people in the world defending it.
And this "community" persistently rallies against working tegether Legally with CLA, i just dont understand, is it purely a trust thing ?
(And if you want to help defend Free Software, consider donating to the Software Freedom Conservency)
Linus may be an asshole... by Anonymous Coward · 2014-01-20 11:55 · Score: 3, Insightful

But he's a wise asshole. Not cow-towing to the fail that is GPL 3 (kernel, git and subsurface.) Not climbing on the CLA bandwagon...
One day Linus will be gone and Linux will probably fall into the hands of license-mongering zealots. I'm glad I probably won't be around to suffer that.
Re:WTF... by jedidiah · 2014-01-20 12:03 · Score: 3, Insightful

Lack of trust.
This is what this is all about. Many people view Canonical as untrustwory for one reason or another. I could cite a whole litany. However, that's not the point.
Many people find reason to be suspicious of Canonical in a way that isn't comparable to anything regarding the FSF or Apache. It's not a remotely comparable situation.
As a general rule, CLAs originating from any corporation with the standard "fuck everyone else" style charter should be met with skepticism. They're not your friends. They probably aren't even your ally.

--
A Pirate and a Puritan look the same on a balance sheet.
As can ANY of the major CLAs... by trims · 2014-01-20 12:28 · Score: 5, Interesting

Take a look at pretty much any major CLA out there.
I'll name three big ones: OpenJDK, FSF's for GNU, and Apache's.
ALL of them either directly assign the copyright of the contribution to the org, and thus, you lose any ability to control it whatsoever, or give the org the ability to relicense it explicitly.
This is intentional, and a GOOD thing, because it increases the flexibility of the project, including making it easier to defend rights in court. Frankly, have a project with multiple copyright assignment is impossible to manage from a legal standpoint, let alone one where you don't even know the real identity of a contribution's author.
The Linux kernel is stuck on the GNU v2 license for exactly this reason, and can never change. That's the fate of any such non-CLA'd Open Source project (other than something using Public Domain or the BSD license).
FYI: the FSF can (and has) relicensed code contributed to GNU projects under a proprietary license. (gcc and part of the toolchain)

--
There are always four sides to every story: your side, their side, the truth, and what really happened.
1. Re:As can ANY of the major CLAs... by ustolemyname · 2014-01-20 12:48 · Score: 5, Informative
  
  The Linux kernel is stuck on the GNU v2 license for exactly this reason, and can never change. That's the fate of any such non-CLA'd Open Source project (other than something using Public Domain or the BSD license).
  Actually no, the Linux kernel is stuck on the GNU GPL v2 because Linus made that decision on purpose. The default GNU license allows for relicencing under any later version, but Linux removed that clause on purpose.
  Here's his rant against GPLv3: https://lkml.org/lkml/2006/9/2...
Re:For a noted pragmatist, Linus is dead wrong... by Anonymous Coward · 2014-01-20 13:08 · Score: 5, Interesting

On the contrary, Linux is quite right. Lots of long-term open source projects don't require copyright assignment and I'm not likely to work for any which do. The reason is quite simple: If I'm contributing my time and effort to a project, I don't want the project's code to get relicensed without my concent. If a company, such as Canonical, wants me to contribute then they should be prepared to let me keep copyright of my code so I can be assured it won't get tucked away in a closed source project.
The Linux kernel not getting relicensed under a newer form of the GPL is a feature, not a bug. Some companies which use Linux now wouldn't if it switched to the GPLv3 because the newer license isn't as friendly (or easy to read) as the old one.
Re:For a noted pragmatist, Linus is dead wrong... by phantomfive · 2014-01-20 13:37 · Score: 4, Interesting

Normally, I see Linus being pragmatic about things, but I have no idea why he's against CLAs.

Linus doesn't like them because it's an extra barrier for people who might want to contribute to the code. The more barriers you have to contributors, the fewer will contribute. I can tell you that I fixed some bugs in Android, which I didn't contribute back, because the process was too painful (and that was before I realized there was a CLA; if I'd known that, I wouldn't have even tried).

Of course, there are benefits to CLAs, as you point out, and Eban Moglen points out other benefits. It's a matter of choosing what your priorities are. Linus favors the ease of contribution. He also considers the fact that Linux is stuck forever on GPLv2 to be a feature, not a problem.

--
"First they came for the slanderers and i said nothing."
Re:Wait, you care but didn't know? by tepples · 2014-01-20 16:40 · Score: 3, Insightful

A lot of people who skim Slashdot's front page don't know enough to know whether they need to care about a particular story. People don't know what they don't know.
Not true by linuxhansl · 2014-01-20 17:45 · Score: 4, Informative

Let me just go ahead and call this bullshit. I am a committer to Apache HBase, and we see (and encourage) drive by patches all the time. The only folks who have to sign a CLA are the committers themselves, which seems reasonable to me.
Re:For a noted pragmatist, Linus is dead wrong... by hweimer · 2014-01-20 20:29 · Score: 3, Insightful

Yeah, explain that to me in 10 years when some court rules that contributions under the GPL are illegal to distribute due to some legal deficiency in the license.
Actually, it is much more likely that a CLA will be found to be unenforcable than the text of a well-established software license. In fact, CLAs requiring copyright assignment are probably void in large parts of the world, meaning you are back to square one.

--
OS Reviews: Free and Open Source Software
Canonical-hate by jones_supa · 2014-01-20 23:07 · Score: 3, Informative

Linus is correct: even at Slashdot I see a lot of people hating Canonical just for the sake of doing it. They systematically hate Mark Shuttleworth and every new component that is introduced to Ubuntu.