Feeds

Google's 'clean' Linux headers: Are they really that dirty?

When lawyers and Linus collide

  • alert
  • submit to reddit

The Power of One Brief: Top reasons to choose HP BladeSystem

The trouble with open source is that most coders aren't lawyers and most lawyers aren't coders. And even if everyone did wear both hats, there would still be ample room for disagreement. The law, you must remember, is subjective.

Two intellectual-property lawyers have told the world that Android is at risk of legal attack because it uses Googly versions of the original Linux header files. But Linux daddy Linus Torvalds says this is "totally bogus". The truth lies somewhere in between. But good luck finding it.

Earlier this month, Edward Naughton, an intellectual-property attorney with the Boston-based firm Brown Rudnick, penned a piece for the Huffington Post in which he argued that Google's use of the original Linux "header files" in Android made the OS vulnerable under US copyright law. "Google's Android contains legal landmines for developers and device manufacturers," the headline read.

According to Naughton, when building Android's Bionic library – which provides application developers with access to Android's underlying Linux kernel – Google stretched the boundaries of copyright law by making use of the Linux header files open sourced under the GNU Public License (GPLv2), which has a strong copyleft provision. Google stripped programmer commentary and other information from the files, arguing that these "cleaned" files are no longer subject to copyright. Then, as part of Android, it open sourced the files under a license with no copyleft provision. But Naughton contends that the GPL may still apply .

"I have serious doubts that Google's approach to the Bionic Library works under US copyright law," he wrote. "At a minimum, Google has taken a significant gamble. While that may be fine for Google, because it knows about and understands the risks, many Android developers and device manufacturers are taking that same risk unknowingly.

"If Google is wrong, the repercussions are significant for the Android ecosystem: the manufacturers and developers working with Android would be incorporating GPLv2-licensed code into applications and components and taking on the copyleft obligations of that license." In other words, if Google is wrong, developers will have to open source their code, as the GPL stipulates.

The argument was based in part on a recent blog post from Raymond Nimmer, a law professor at the University of Houston Law Center and co-director of the Houston Intellectual Property and Information Law Institute. In discussing the "risk of disclosure" when using copyleft platforms, Nimmer spent a paragraph questioning Google's use of the Linux header files in the Bionic library.

Naughton's story promptly sparked a blog post from outspoken open source watcher Florian Muller, who has gained some added attention of late for questioning Google's use of Oracle's Java code in Android. "Google's Android faces a serious Linux copyright issue (potentially bigger than its Java problem)," read the headline, and with the post, he roped in a 2003 mailing-list post from Linux founder Linus Torvalds to support his argument. Soon, countless tech news sites were reporting that Android and its applications were build on shaky ground.

But in one dissenting story, Eben Moglen – the founder, director-counsel, and chairman of Software Freedom Law Center; a professor of law at Columbia University; and one of the world's most respected open source legal minds – poured a little code water on the brouhaha. "I would say that the issue is a little less complex and a little less dire than it might seem on first acquaintance," he said.

Then Linus himself spoke, calling Naughton's claims "totally bogus". And before long, Free Software Foundation chairman Richard Stallman weighed in too, indicating that according to the legal advice he had received, Google's use of the header files was not a problem.

The war of opinions was only inflamed by suggestions that Naughton was somehow beholden to Microsoft. A week before his story appeared on the Huffington Post, Naughton's online bio was edited to remove references to his past work with Redmond.

If you strip out the petty arguments flying back and forth, the situation is actually quite intriguing – whichever side you come down on. With Android, Google could have used the Linux headers provided by GNU C Library (aka glibc), which was created separately from the Linux kernel and does not carry a strong copyleft provision. This is used by the likes of MeeGo and HP's webOS. But Google took a different route, choosing to use the original Linux header files and "clean" them using its own scripts.

Google declined to comment on the situation. But as Naughton pointed out to us when we spoke to him in the wake of his Huffington Post story, a Google powerpoint presentation indicates that the company chose to build its own library because it "wanted to keep GPL out of user space" and it wanted a library that was relatively small and fast.

Obviously, Mountain View believes its scripts have removed all copyrightable material from the files. "This header was automatically generated from a Linux kernel header of the same name, to make information necessary for userspace to call into the kernel available to libc," reads the top of each file in the Bionic library. "It contains only constants, structures, and macros generated from the original header, and thus, contains no copyrightable information."

Seven Steps to Software Security

More from The Register

next story
Secure microkernel that uses maths to be 'bug free' goes open source
Hacker-repelling, drone-protecting code will soon be yours to tweak as you see fit
KDE releases ice-cream coloured Plasma 5 just in time for summer
Melty but refreshing - popular rival to Mint's Cinnamon's still a work in progress
NO MORE ALL CAPS and other pleasures of Visual Studio 14
Unpicking a packed preview that breaks down ASP.NET
Cheer up, Nokia fans. It can start making mobes again in 18 months
The real winner of the Nokia sale is *drumroll* ... Nokia
Put down that Oracle database patch: It could cost $23,000 per CPU
On-by-default INMEMORY tech a boon for developers ... as long as they can afford it
Another day, another Firefox: Version 31 is upon us ALREADY
Web devs, Mozilla really wants you to like this one
Google shows off new Chrome OS look
Athena springs full-grown from Chromium project's head
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Application security programs and practises
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
Securing Web Applications Made Simple and Scalable
Learn how automated security testing can provide a simple and scalable way to protect your web applications.