Monthly Archive:: February 2016

Ubuntu may ship ZFS as a module… Or not?

Open Source 70 Comments
Ubuntu's announcement about inclusion of ZFS support in upcoming 16.04 LTS started an important discussion in opensource community: the license incompatibility between GPL and CDDL licenses may be an issue. Being a copyleft license, GPL requires that all works that are derived from GPL-licensed work are also distributed under terms of GPL. CDDL, the license of ZFS code, is also a copyleft license, and as such requires CDDL-licensed work be distributed "only under the terms of ." Although Ubuntu's ZFS code comes from OpenZFS project, Oracle is still one of the major copyright holders of the code base, and it does not seem likely to relicense its assets under GPL any time soon.

Dustin Kirkland of Ubuntu, the author of the announcement, explained Canonical's position, albeit light on details:

The CDDL cannot apply to the Linux kernel because zfs.ko is a self-contained file system module -- the kernel itself is quite obviously not a derivative work of this new file system. And zfs.ko, as a self-contained file system module, is clearly not a derivative work of the Linux kernel but rather quite obviously a derivative work of OpenZFS and OpenSolaris. Equivalent exceptions have existed for many years, for various other stand alone, self-contained, non-GPL kernel modules.

Software Freedom Conservancy (SFC), a non-profit with self-assigned mission of carrying on a crusade against GPL violations, quickly pointed out that the "obvious" conclusions of Canonical are not really all that obvious:

f ZFS were statically linked with Linux and shipped as a single work, few would argue it was not a "work based on the Program" under GPLv2. And, if we believe there is no legal difference when we change that linking from static to dynamic, we conclude easily that binary distribution of ZFS plus Linux - even with ZFS in a .ko file - constitutes distribution of a combined work.

Another non-profit organization - Software Freedom Law Center (SFLC) - provides yet another opinion on the matter. Eben Moglen points out that CDDL permits distribution of binaries under other licenses, so in case of Linux module GPL's requirements in case of binary module may be fullfilled by distributing it under GPL. Admittedly, this does not solve the issue of the license incompatibility of the code bases. The proposed solution is basically to ignore the wording of GPL's viral clause:

In this specific sense, then, the conduct which falls outside the words of GPLv2 falls within the "equity of the license," or its "spirit." As all Western legal systems have known since Aristotle, literal interpretation of any legal material will sometimes produce unintended unjust results, which can and should be corrected by the invocation of "equity." This present issue is evidently an example in which the tension between literal and equitable interpretation is raised, and it is the consensus of the kernel copyright holders' intention which determines which mode of interpretation is to be employed.

The issue of GPL compatibility and kernel modules' licensing arised before. For example, Linus Torvalds already noted that kernel modules are in "gray area" when it comes to the issue of derived worked. Using an example of Andrew filesystem he stated that external code base that was designed on different system and only required minimal porting effort due to interface similarities, in his opinion, was not a derived work of Linux. Even more appropriate example is Nvidia's infamous proprietary Linux driver, which interfaces the kernel via specially-crafted module that abstracts away Linux kernel implementation details, so that Nvidia's binary blob may still considered to be a self-contained work targetting module's interface, not the interfaces of Linux. This driver is widely used and generally tolerated by distributions.

The differences in these two positions reveal the two conflicting opinions on Linux copyright situation. SFLC is more concerned about the ability of opensource ecosystem to survive in face of fanatic GPL enforcement: their statements goes into painful details about difficulties that projects with permissive licenses are facing when they need to maintain the ports of their code in GPLed projects. If stictly enforced, GPL could hinder such projects to the point when whole ecosystem comes to net loss. Such situation could be particularly painful in cases like this, when the goals of GPL are met, but the legal mechanism that was chosen by opensource Foundation prevents both Linux and OpenZFS from cross-polination.

But on the other hand, making such excuses would open gates for projects that don't really contribute to the opensource, but only use it to their own benefit. While proponents of permissive licenses (myself included) don't find anything wrong with such outcome, GPL was specifically designed to prevent it, and that is why it is one of the most popular opensource licenses out there. Obviously, every concession weakens the position of those seeking GPL enforcement, including SFC, whose mission right now is endangered by both SFLC's and Canonical's views on ZFS integration into Linux. Being a self-styled GPL crusader with several battles already fought, SFC knows that the ZFS inclusion in Ubuntu may come at a price of legal actions lost, and potentially tolanted hackers driven out of opensource by frustration and disappointment.

There is another interesting angle to this situation: by now it is common knowledge that Sun Microsystems specifically designed CDDL to be incompatible with GPL, so that ZFS, while being opensource, could not be included with Linux. Shipping ZFS with Ubuntu would defeat this tactics and potentially remove motivation for such unfortunate choice of license for companies like Sun or Oracle, to benefit of all involved sides.

And yet another thing to consider: some (most?) jurisdictions explicitly require sticking with literal meanings of laws and contracts. This means that even if SFLC's position is defendable in United States, it might be dismissed in other parts of the world, giving Linux copyright holders ability to sue Canonical over copyright infringement. Given that Oracle holds copyright in both Linux and OpenZFS, and that it already demonstrated willingness to take legal actions against opensource projects, Canonical might still be under significant risk.

At any rate, the outcome of this discussion, if any, have potential to settle a long-standing issue in opensource community, and to make legal implications of using GPL more transparent and clear.

Read More

Announcing Microsoft HoloLens Development Edition

Microsoft 15 Comments

HoloLens is fully untethered and self-contained. It's the only device that enables holographic computing natively with no markers, no external cameras, no wires, no phone required, and no connection to a PC needed. And it's a Windows 10 device - the interface is familiar, and connected by the power of a unified ecosystem of Windows devices.

The device consists of multiple environment understanding sensors and it's powered by a custom-built Microsoft Holographic Processing Unit (HPU) and an Intel 32-bit architecture. The HPU is custom silicon that allows HoloLens to understand gestures and gaze while mapping the world all around you, all in real time.

Microsoft today announced that the Microsoft HoloLens Development Edition will start shipping on 30 March, at $3000 a piece. They also offer a look at the hardware powering HoloLens.

Read More

Raspberry Pi 3 unveiled

Hardware 14 Comments

The Raspberry Pi is turning four today, and in celebration of this, they've now released the Raspberry Pi 3 - which packs a serious performance punch, at the same low price point.

In celebration of our fourth birthday, we thought it would be fun to release something new. Accordingly, Raspberry Pi 3 is now on sale for $35 (the same price as the existing Raspberry Pi 2), featuring:

  • A 1.2GHz 64-bit quad-core ARM Cortex-A53 CPU (~10x the performance of Raspberry Pi 1)
  • Integrated 802.11n wireless LAN and Bluetooth 4.1
  • Complete compatibility with Raspberry Pi 1 and 2

All the previous Raspberry Pi boards will remain available, as long as the demand for them remains. In addition, over the course of the coming months, the userland of Raspbian will be moved to 64 bit.

Read More

Cratering portable sales can’t prop up Nintendo anymore

Games 42 Comments

No matter how its console business is doing, Nintendo has always been able to lean on healthy portable system sales to prop up its finances. With the Wii U continuing to severely underperform sales expectations, though, it looks like the Nintendo 3DS is failing to pick up the slack as its predecessors once did.

Nintendo's going to need a better strategy. Maybe the past 15 years of rehashing the same Mario, Zelda, and Metroid games is finally catching up to them.

Read More

Microsoft fully sides with Apple in iPhone backdoor case

Legal 44 Comments

The case between Apple and the US government keeps generating a lot of responses, but if there's one thing you really need to see, it's ABC's 30-minute interview with Tim Cook about the matter. It's no secret around here that I am not a particular fan of either Apple (or any other company for that matter) or Tim Cook, but I am genuinely impressed by Cook's spirit, insistence, and conviction displayed in this interview.

Meanwhile, Microsoft has firmly and clearly sided with Apple, stating the company will file an amicus brief next week. During a congressional hearing today, Microsoft president and chief legal officer Brad Smith pulled out an adding machine from 1912, to drive the point home how old the law is that the FBI is relying upon.

"We do not believe that courts should seek to resolve issues of 21st Century technology with a law that was written in the era of the adding machine," Smith said.

I still think Apple will eventually lose this whole thing, but hearing Tim Cook say they will take it all the way to the Supreme Court at least reassures me he is willing to take it all the way.

Read More

Meet the Fixers Collective

In the News 24 Comments

The primary weapon manufacturers wield to keep consumers running for the dumpster rather than the screwdriver is the Digital Millennium Copyright Act. Passed in 1998, its purpose was to bring copyright law into the digital era. Among other things, this law makes it illegal for owners and unauthorized repair people to break technical locks over copyrighted content, including software. Fixers have been fighting for exemptions to the DMCA, and in October 2015 the United States Copyright Office finally adopted a new set, making it legal to unlock carrier-activated phones, tablets, wearables, and mobile hotspots. Owners can also jailbreak phones, tablets, and smart TVs, and modify the software on 3D printers, cars, tractors, and heavy equipment. Nevertheless, software in many electronics, including game consoles, is still protected by the DMCA. At-home modifications or repairs can constitute a copyright violation. At the least, it will void a device's warranty, but it potentially carries up to a $1,000,000 fine and 10 years in prison, and numerous researchers, hobbyists, and companies have been taken to court.

Isn't the future fun?

Read More

Microsoft acquires Xamarin

  Submitted by mbpark Microsoft 42 Comments

As part of this commitment I am pleased to announce today that Microsoft has signed an agreement to acquire Xamarin, a leading platform provider for mobile app development.

In conjunction with Visual Studio, Xamarin provides a rich mobile development offering that enables developers to build mobile apps using C# and deliver fully native mobile app experiences to all major devices - including iOS, Android, and Windows. Xamarin's approach enables developers to take advantage of the productivity and power of .NET to build mobile apps, and to use C# to write to the full set of native APIs and mobile capabilities provided by each device platform. This enables developers to easily share common app code across their iOS, Android and Windows apps while still delivering fully native experiences for each of the platforms. Xamarin's unique solution has fueled amazing growth for more than four years.

Read More

The Intex Aqua Fish, a new Sailfish smartphone

Wireless 11 Comments

The Aqua Fish is following Jolla's "traditional" design which was found on the Jolla smartphone.

The phone sports a namely modest but practically beastly (according to my testings), Quadcore 1.3Ghz Qualcomm Snapdragon 212 (don't let the 200-series name fool you. We'll get to that in a moment!), 2GB od DDR3 RAM, 16GB of expandable storage, 5" HD IPS display panel with a resolution of 1280x720, a 2500mAh battery and dual-SIM support, all packaged in a neat package of black and orange plastic.

This looks a lot like the phone Jolla should've made halfway 2014 as a successor to the original Jolla phone instead of that silly tablet most of us are still waiting on and that nearly tanked the company. Sadly, this one will only be available in India for now, and there's no word on further availability.

I'm glad there's 3rd party interest in Sailfish OS, but I'm afraid the window's already closed on this one.

Read More

The most powerful Ubuntu phone is still not good enough

Ubuntu 31 Comments

If there's one thing tech enthusiasts love more than an underdog, it's an underdog with high specs. The Meizu Pro 5 Ubuntu Edition is just such a device. It's powered by the same 14nm Samsung Exynos processor as the flagship Galaxy S6. It has a 21-megapixel camera with laser-assisted phase-detect autofocus and a Hi-Fi audio chip from ESS. Clad in an aluminum unibody shell and sporting an AMOLED display, it's as modern and good looking as any smartphone out here at Mobile World Congress. But it runs Ubuntu, and that makes it too much of an underdog.

With non-iOS and non-Android smartphone operating systems dropping like flies left and right, it's commendable that Canonical is still trying with Ubuntu. Too bad that even on such powerful hardware, and after years of development and promises, Ubuntu is still slow and cumbersome on smartphones.

Read More

Cyanogen introduces MODs

Android 8 Comments

As mods, 3rd party applications that were previously isolated can now take advantage of platform APIs to implement unique experiences directly within Cyanogen OS. Users can install a variety of mods to extend the functionality of their devices. For example, through Cyanogen's partnership with Microsoft, a user can install the Skype mod directly into their dialer to add VoIP calling functionality or they can install the Cortana personal assistant mod to power features like voice-activated selfies.

Cyanogen OS, which isn't CyanogenMod, is introducing MODs, that plug into Cyanogen OS and CyanogenMod. At this point, they are intentionally muddying the waters, right? This is the system Microsoft is using to integrate its services into Android, and now, everybody can use them. The wording here is a bit strange, though, because one of the core strengths of Android is that applications are not isolated, unlike on iOS, where every application looks, feels, and functions like an island.

It's all pretty nifty, and all made possible because of two things: first, Android in and of itself is incredibly extensible, and it contains a ton of APIs for these sorts of things. A lot of this integration can be achieved simply by installing applications from Google Play. Second, it's made possible because Android is open source, so that Cyanogen can make a few changes and claim they're taking Android away from big, bad Google who is giving them Android in the first place, and without whom Cyanogen wouldn't exist, or wouldn't continue to exist.

In any case, let's see if other 3rd parties are going to adopt this. It seems like Android as-is is extensible enough, so I don't see much life in this for most developers and users.

Read More

Answers to your questions about Apple and security

Apple 62 Comments

Following the letter from Tim Cook, Apple has now published a set of questions and answers regarding the case of the FBI demanding, via a court order, that Apple create a backdoor into iOS for the FBI to use. Overall, I find the questions and answers a strong showing by Apple, but two parts really stood out to me.

First, the FBI is apparently a little bit incompetent.

One of the strongest suggestions we offered was that they pair the phone to a previously joined network, which would allow them to back up the phone and get the data they are now asking for. Unfortunately, we learned that while the attacker's iPhone was in FBI custody the Apple ID password associated with the phone was changed. Changing this password meant the phone could no longer access iCloud services.

This is incredibly cringe-worthy. The agency now asking to weaken the security and harm the rights of all iOS users, is the same agency who made beginner mistakes such as this one. If you are a true cynical, which I am, you might think the FBI changed the password on purpose in order to force this case.

The second part that really stood out to me is also by far the weakest part: Apple seems to be contradicting itself regarding the question whether or not it unlocked iPhones for law enforcement in the past.

Has Apple unlocked iPhones for law enforcement in the past?

No.

We regularly receive law enforcement requests for information about our customers and their Apple devices. In fact, we have a dedicated team that responds to these requests 24/7. We also provide guidelines on our website for law enforcement agencies so they know exactly what we are able to access and what legal authority we need to see before we can help them.

For devices running the iPhone operating systems prior to iOS 8 and under a lawful court order, we have extracted data from an iPhone.

Emphasis mine.

So, did Apple unlock iPhones in the past, or not? This is a pretty glaring contradiction, and it makes me feel uneasy about Apple's motives and past and present roles in this case. As with any corporation, of course, Apple is beholden to its shareholders, and if this stance starts to lead to political - and thus, financial - headwinds, shareholders will pipe up, forcing Apple to give in. This contradiction only strengthens this fear for me.

Read More

Linux Mint “generally very bad when it comes to security”

Linux 48 Comments

Over the weekend, news broke that Linux Mint's servers were compromised, and ISO images were replaced by compromised versions with a backdoor. Everything was made public, and int responded in the only way they could: disclosure, site taken down.

Sadly, it turns out that Linux Mint has somewhat of a bad name when it comes to security.

To conclude, I do not think that the Mint developers deliver professional work. Their distribution is more a crude hack of existing Debian-based distributions. They make fundamental mistakes and put their users at risk, both in the sense of data security as well as licensing issues.

I would therefore highly discourage anyone using Linux Mint until Mint developers have changed their fundamental philosophy and resolved these issues.

Let's hope this issue raises a number of red flags for the Mint team so they can start to take steps to better the situation.

Read More

Samsung, LG announce new flagship phones

Android 21 Comments

Both Samsung and LG announced their new flagship phones for the year, and lo and behold, there's actually something interesting to discuss. First, let's get the new Galaxy S7 and Galaxy S7 Edge out of the way: even though they look very similar to the S6 and S6 Edge, Samsung has brought back a few things that many here will like: water resistance, and a microSD card slot. In addition, Samsung has revolutionised the smartphone industry by making the S7 and S7 edge slightly thicker to fit a much, much bigger battery and to reduce the camera hump.

The new LG G5 is more interesting. The phone is, of course, kitted with all the latest processors and RAM and whatever, but at the bottom of the device, there's a slot that you can use to snap on all kinds of additional hardware.

Two of these new accessories plug directly into the LG G5's bottom. A small key on the side of the phone pops open its lower section, which can be pulled out along with the battery, then the battery is fitted into the next module and that straps back into the phone. The whole process sounds finicky, but there's nothing flimsy about the way LG has constructed either the phone, its battery, or the extras, so everything can be done quickly and forcefully. And yes, it really does feel like loading a fresh clip into your gun.

If this reminds you of Handspring's Springboard, you're not alone. As with virtually everything in mobile today - everything can be traced right back to Palm.

In any event, as much as I personally always like these kinds of experiments, the problem is that generally, nobody ever builds anything worthwhile for it. These expansion slots always tend to kind of fizzle out, with few actually, really good accessories to ever be released. Which, in turn, raises the question of why you would invest in it in the first pace.

That being said, let's give it a year or so and see what LG and possible third parties are going to do with this. I like the G5 overall, and the expansion slot is a fun and gutsy move (the fact that it is tells you a lot about the state of the industry, sadly).

As always, be careful with these phones if you care about running the latest Android: flagships or no, updates for these things will be messy.

Read More

Implementing Mutexes in the QNX Neutrino Realtime OS

QNX 28 Comments

A mutex is a common type of lock used to serialize concurrent access by multiple threads to shared resources. While support for POSIX mutexes in the QNX Neutrino Realtime OS dates back to the early days of the system, this area of the code has seen considerable changes in the last couple of years.

Read More

Apple can comply with the FBI court order

Apple 80 Comments

Earlier today, a federal judge ordered Apple to comply with the FBI's request for technical assistance in the recovery of the San Bernadino gunmen's iPhone 5C. Since then, many have argued whether these requests from the FBI are technically feasible given the support for strong encryption on iOS devices. Based on my initial reading of the request and my knowledge of the iOS platform, I believe all of the FBI's requests are technically feasible.

A look at the technical aspects involved.

Read More

Tim Cook’s open letter: we will not create iOS backdoor for the FBI

Apple 65 Comments

The FBI has won a court order demanding Apple help the bureau in accessing the data on the iPhone 5c of one of the San Bernadino gunmen.

The judge ruled Tuesday that the Cupertino-based company had to provide "reasonable technical assistance" to the government in recovering data from the iPhone 5c, including bypassing the auto-erase function and allowing investigators to submit an unlimited number of passwords in their attempts to unlock the phone. Apple has five days to respond to the court if it believes that compliance would be "unreasonably burdensome."

In response, Apple's CEO Tim Cook has published an open letter opposing the court order.

We have great respect for the professionals at the FBI, and we believe their intentions are good. Up to this point, we have done everything that is both within our power and within the law to help them. But now the U.S. government has asked us for something we simply do not have, and something we consider too dangerous to create. They have asked us to build a backdoor to the iPhone.

Specifically, the FBI wants us to make a new version of the iPhone operating system, circumventing several important security features, and install it on an iPhone recovered during the investigation. In the wrong hands, this software - which does not exist today - would have the potential to unlock any iPhone in someone's physical possession.

The FBI may use different words to describe this tool, but make no mistake: Building a version of iOS that bypasses security in this way would undeniably create a backdoor. And while the government may argue that its use would be limited to this case, there is no way to guarantee such control.

It should come as no surprise that I strongly, deeply, and vehemently agree with Tim Cook, and I applaud the company for trying to fight this court order every step of the way. It would be great if other technology companies - Microsoft, Google, whatever - publicly join Apple in trying to fight this court order. Strength in numbers.

That being said, it will be in vain. Apple - and thus, all of us - will lose this war. They might win this particular battle, but they won't win all the battles to come. All it takes is for one important country to demand a backdoor and Apple caving - due to financial pressure, sales stops, etc. - for the whole house of cards to come tumbling down.

This is a hard fight, that we will lose. Get ready.

Read More

ReactOS 0.4.0 released

  Submitted by AmineKhaldi ReactOS 35 Comments

Nearly ten years ago the ReactOS Project released version 0.3.0. Today we are proud to announce the formal release of version 0.4.0. A great deal of work has gone into making this release happen and as we look back it is remarkable to consider how far the project has come since that release a decade ago. This release is both a celebration of and a testament to everything that the ReactOS team and community has achieved together. Thank you to all of you for having stood by the project for this long and we hope rewarding journey. For those of you chomping at the bit to check out the release, go to the download page to get it now.

This is a huge release, and highlighting just a few new features - such as wireless networking, USB support, sound support, etc., etc., - would be a disservice to all the other stuff they worked on.

Read More

Remix Mini wants your next PC to be Android

  Submitted by KLU9 Android 8 Comments

After initially thinking this would be great for people who want to do some of the stuff usually done on PC without the expense, now I'm not so sure who it suits. It fits only very simple work, ideally just in the browser or in Google apps; it's not enjoyable or smooth enough for leisure time use; for viewing content you'd be better off with a set-top box; and you can just plain forget playing games on it.

The Remix Mini has its appeals and uses only for pretty basic work. But as it is, here and now, it's not the post-Windows solution that some of us are looking for.

I applaud what Jide is trying to do, but at this point, with Google having openly stated they are working on bringing Android to the desktop, and giving it proper multi-window and all other features that come with it, I see little to no reason to invest too much into these products.

Read More