Tgppl, a new type of open-source license

Tgppl, a new type of open-source license(electriccoin.co)

76 points by erwan 5 years ago | 71 comments

nsajko 5 years ago |

This (under the same name and version 1.0) has already been presented to FSF and OSI in the 2000s and 2010 on their mailing lists and other places, so I guess it didn't get approval. Since it thus isn't an open-source license, why present it as such in article title - starting out dishonest is probably not a good idea.

If I'm wrong and it is approved by OSI, that info should probably be more prominent in the blog post.

EDIT: indeed, both the 2008 mailing list post and this blog post call it "Transitive Grace Period Public Licence v. 1.0".

EDIT2: to be more constructive, a more proper way to describe the license could perhaps be "open-source-like".

EDIT3: framing this as an issue of honesty was a mistake, because Zooko or whoever can hold whatever opinion they like. It is a big issue anyways, see downthread if not convinced.

geofft 5 years ago | |

There's a number of other reasons the OSI doesn't approve licenses, such as avoiding license proliferation https://opensource.org/proliferation . As a simple example, there are a huge number of variants of the 4-clause BSD licenses where the advertising clause lists more and more people besides the University of California; they're all open-source licenses under the Open Source Definition, but the OSI isn't interested in promoting them, because including all of those advertising clauses is a pain.

I think this post is not claiming that the license is (yet) approved by OSI, but it is claiming that it's an open source license under the OSD.

nsajko 5 years ago | | |

Still, the claim of "open source" or "libre" or "free software" doesn't hold water effectively if there is nobody to verify it (lawyers are probably needed, too). License proliferation is a separate issue.

BTW, the OSI people on their mailing list weren't convinced that the license is conformant (during the grace period) in 2008, 2009, or 2013. Hypothetically there could have been a change of heart since, but I can't know either way without much more research.

My main point is that there is a lack of transparency in the linked blog post about the license by ECC (Zooko?).

EDIT: If someone wants to choose this (or any other) license, it is important for them to know if it is legally sound, how compatible it is with other licenses/project, and possibly also what are the prospects for the license's future adoption in the "market". Approval by FSF or OSI gives some assurance with all of those. Without that everyone involved with software licensed under the license will just lose time, unless hypothetically TGPPL makes it really big, big enough for everyone to switch from FSF and OSI approved licenses to TGPPL.

ocdtrekkie 5 years ago | |

I don't feel like we're going to make any progress in this space while a single entity is considered the sole authorizer of something being open source or not.

cycloptic 5 years ago | | |

I don't feel like we're going to make any progress either if we consider it open source to toss random code up on github under random licenses with no legal review from any outside parties whatsoever. Sorry I don't mean to be snarky but someone has to fund the lawyers and organize the committees to look over this stuff and it seems those orgs are the only ones willing to foot the bills so far. The groups pushing for newer licenses that skirt the existing definitions almost never seem to be interested in doing this, they only really care about getting someone to bend the rules for their license.

geofft 5 years ago | | |

It's not - there are two entities (FSF and OSI), they happen to have similar definitions, and a number of important organizations (Linux distros, vendors with special plans for open-source users, employers with open-source contribution policies, etc.) all happen to have specified their definition in terms of one or both of those because they're pretty good definitions. For instance, Ubuntu's licensing policy has text that pretty closely matches the OSD's, but does not defer to the OSI for the definition. (And Debian's, of course, is the text on which the OSD was based - any changes to the OSI-maintained OSD would not necessarily flow back to the DFSG. Debian also considers some of the FSF's own licenses non-free, for good reason IMO.)

Concretely, if the OSI were to change the OSD in either a way that included things like the SSPL or that included things like the Hippocratic License, I think there's a good chance that my employer's internal OSS policies would change to say "the version of the OSD before 2020," because it's not clearly in their interest to contribute company-owned code to projects under those licenses. On similar grounds, I'd expect companies that provide free services (hosting, CI, etc.) to F/OSS projects to say "these licenses don't count," Linux distros to not universally agree on including them, etc.

So you're already in a place where there's no sole authority: you need to start by convincing everyone other than the OSI that a new sort of license is actually a good idea and the change you want to make to the OSD is actually something that they, too, should consider "open source." And once you get to the point where enough people agree with you, the OSI isn't going to be in your way in any practical sense.

pessimizer 5 years ago | | |

"Open Source" is an arbitrary label assigned to licenses accepted by the OSI as "Open Source," just like "Free Software" is an arbitrary label assigned to licenses accepted by the FSF as "Free Software." Accepting other definitions as "Open Source" is just like accepting other definitions of meters and grams.

It's also piggybacking. You don't need to be Open Source, you can be something else. You don't have to use the word "open" to mean "available, and can be used under these conditions." It's not a standard usage. "Open" normally means that something can be passed through something else i.e. that something else is not blocked, or that it is currently doing business.

People calling their own licenses "open source" when they're not approved is a way to attempt to trade on the reputation and regard established by licenses that were written or approved by the OSI. That reputation and regard is a result of the consistent standards that OSI have applied to the license language that they approve.

The cases for calling explicitly unapproved licenses "open source" are no more coherent than a hypothetical argument about how we can't let a group of four unelected people, half of them dead and the other half very old and deeply embedded in the industry, decide what bands can be called The Beatles.

arp242 5 years ago | | |

HN: "Facebook, Google, and other Big Corp being gatekeepers is censorship and horrible!"

Also HN: "The OSI is the One True arbiter of the term 'Open Source' and anyone who uses it in a way that disagrees with the OSI is dishonest and trying to cheat you!"

¯\_(ツ)_/¯

amadeuspagel 5 years ago | |

There's nothing dishonest about having a different definition of open source then the FSF or OSI.

lucideer 5 years ago | | |

I disagree.

You can make that statement in theory, for a general term without any biasing factors.

For a term like "open source", that has a generally strong positive connotation, using it to self-define when your own definition of it liberally includes yourself, while the popular definition does not, strongly implies your alternate definition is designed for self-benefit. This is definitely dishonest.

nsajko 5 years ago | | |

Thus my "EDIT3" at the end of the post you replied to.

lucideer 5 years ago | |

I wish you'd retract your EDIT3 as I think you really were right the first time. This is definitely an issue of dishonest framing.

Having your own definition of something that differs to some central authorities' definition is not only fine, but something I'd positively encourage.

But when you then go and use that different definition to categorise your product more favourably, and you flagrantly advertise your product using that categorisation, without referencing the fact you're using a non-mainstream definition, that IS dishonest.

nsajko 5 years ago | | |

"Dishonest" was probably the wrong choice of word, from at least a tactical perspective. I guess many people here disagreed with my comment here because they operated with a slightly narrower "definition" of dishonesty. I guess maybe you could have worded that better than me while still using the word "dishonest"; but if I could go back in time to when I wrote the first comment, I would use "deceitful" or "deceptive" (in regard to both the entire blog post and just its title) - that should have gotten my point across with less friction.

yjftsjthsd-h 5 years ago |

Well I'm skeptical, but at least unlike 99% of "radically new type of open-source license[s]" I think this one is actually, y'know, an open source license and not shared source pretending otherwise. If I'm reading "External Deployment" correctly, it's sorta like AGPL but with a time delay, which is... Not terrible, really.

iameli 5 years ago |

Haven't gone line-by-line on this one, but I like the new trend of "time limit" licenses. If I'm trying to start a business, something AGPL-ish might make sense in the short term to avoid bigger competitors copying everything we're doing. But that doesn't mean I want my great-grandchildren to be able to sue for violations 90 years from now. "AGPL for now, MIT later" seems like a good compromise.

nordsieck 5 years ago |

This seems like a fundamentally bad idea for software.

Simply put, living software contains a constant stream of patches, which "reset" the clock continuously.

It would be one thing if this license were used on a book or some other work which is substantially finished. Once the book is published, the clock starts ticking and users eventually get to the MIT pot of gold at the end of the timer.

With software, the only time that happens if after the software is abandoned. At that point, there's rarely many people interested in using it anyhow.

Animats 5 years ago | |

Yes, that looks like a problem:

...to distribute or communicate copies of the Original Work and Derivative Works to the public, with the proviso that copies of Original Work or Derivative Works that You distribute or communicate shall be licensed under this Transitive Grace Period Public Licence no later than 12 months after You distributed or communicated said copies

It looks like the effect is that the public versions must always lag a year behind the proprietary versions.

So, this isn't open source, although it is abandonware protection.

mncharity 5 years ago | | |

> public versions [...] lag

That was the ghostscript licensing for many years. Recent versions available under a commercial license, and older versions as open source.

Nowadays would have to worry more about security and backporting fixes.

One challenge is it discourages contribution.

GranPC 5 years ago | |

I haven't read the license fully, but wouldn't that just mean you would be able to use releases that are older than the time period specified?

rpdillon 5 years ago | | |

That's my reading as well. It's actually kind of funny to me: the term of copyright has grown so long that folks are essentially looking for ways to reimplement reasonable copyright term length inside of the construct of copyright protection itself.

nordsieck 5 years ago | | |

> wouldn't that just mean you would be able to use releases that are older than the time period specified?

That is a fair point.

Depending on the type of software and the frequency of bug fixes that may be a more or less reasonable strategy.

Also, in case you haven't read the license, the time period is 12 months.

yissp 5 years ago |

"ECC released its implementation of Halo 2 under the TGPPL license."

This had me confused and excited for a second. Alas, it's hot the Halo 2 I was thinking of.

samfisher83 5 years ago |

This license sort of sounds like a patent. The creators get to make some money for a little while and then it gives everyone access to the software.

moonchild 5 years ago | |

In fact, it almost sounds like copyright—or, would have, if not for disney.

wnbc 5 years ago | |

Yes, I think that's the objective for the licence. Reading slightly more into the product (Halo 2), they would benefit from more adoption by others as it could facilitate cross-chain interoperation.

The license model gives everyone equal access to the code, and equal rights to improve Halo commercially (make money?) with the promise that they subsequently open-source their improvements after 12 months.

This license model fits this product quite well.

onei 5 years ago | |

That was my impression too. However, where a patent expires, I couldn't see when the source code had to be released by. Seems a bit problematic if that is the case. I also don't see a substantial difference to just releasing the source code at a later date under a open source license when the copyright holder chooses to.

Animats 5 years ago |

“Congress shall have power… to promote the progress of science and useful arts, by securing for limited times to authors and inventors the exclusive right to their respective writings and discoveries.”

Depends on the time limit. US copyright was once 23 years, now it's 95-120 years in the US. If this is for 1 year, well, maybe. If it's for 10 years, no.

And can it be "evergreened", with the time limit running out 1 year after the most recent change? (See MPEG-LA for how to do that.)

StavrosK 5 years ago |

Can someone better-versed in legalese explain how this works? What is the restriction before the 12 months (and what happens after that?). Say I make money from the code, what about the contributors? Do they contribute code and get nothing for it, or am I supposed to pay them a cut?

Gaelan 5 years ago | |

If I'm reading the blog post right, it's essentially MIT for 12 months after you make changes, then (A?)GPL after. (To be clear, not those actual licenses.)

numlock86 5 years ago |

Can someone summarize in like 2 sentences what this license is trying to solve?

The article mentions underfunding, but since this is a license and not a price tag I don't see how this is going to change that. Also from the comments it reads like this is going to limit usage within "big $$$ cloud providers". Well, my wild guess would be that such projects would get even less attention (read as: money) then.

linkdd 5 years ago |

Reminds me of Sentry's model: https://blog.sentry.io/2019/11/06/relicensing-sentry

gregwebs 5 years ago | |

Their BSL has a 3 year period (whereas this license has a 1 year period). Sentry also admit it is by definition not an open source license since it has restrictions on particular uses.

TGGPL claims to be open source and probably is because everyone gets the same rights. But you are always potentially looking at code that is a year behind.

jancsika 5 years ago |

I've never understood why there isn't a dev framework to allow users to "unlock" certain FOSS features.

E.g., you scroll through a list of already implemented/tested features that are stored somewhere that isn't publicly accessible, perhaps with demo videos if it's UI stuff. Each one is priced. If someone pays the price, then the source for the feature gets automerged (if possible) and ships with the next version of the software.

If it's served by the same maintainers who run the project then there's no trust issues with it.

egypturnash 5 years ago | |

So you want developers to spend a lot of time making new features on spec?

jancsika 5 years ago | | |

That's what FOSS developers already do. It's just that typically they don't get paid for it at all.

jopsen 5 years ago |

Sounds radicałly similar to: https://kde.org/community/whatiskde/kdefreeqtfoundation.php

dathanb82 5 years ago |

This doesn't seem like it actually solves the capture problem, though. The most egregious cases I can think of of third-party capture involve taking a project, bundling it with infrastructure, and offering it via a SaaS model (obviously thinking of Kafka, Elastichsearch, Postgres, MySQL, etc. via AWS). Only direct modifications to the project source are covered by the license, right? So the infrastructure code that make it easy to create instances of the product (but don't involve changes to the product code directly) aren't affected.

ksec 5 years ago |

>Radically...

I vaguely remember reading a similar Open Source License, but couldn't google it.

And it reads very AGPL like. Which may be a big no no for many Cooperation and Enterprise. And what if the Author Set a Grace Period of 50 years or longer?

It feels to me a solution looking for problem.

janoc 5 years ago | |

It is a solution for people who want to keep their software proprietary because they think they can't make money out of it if it is open source. All the while they get to claim credit for it being "open source".

The problem is that this license completely obliterates the major points of OSS licenses - which are open collaboration and security. Nobody is going to contribute and fix bugs in old versions of the software which may not even work anymore (e.g. because some underlying protocol or infrastructure have changed already).

kaszanka 5 years ago |

This is just more license proliferation and a solution to a nonexistent problem. Releasing software under a license like the GPL doesn't somehow prevent you from making money from it. See Ardour - GPLv2, paid binaries.

duckerude 5 years ago | |

It doesn't entirely prevent you from making money, but it can make it harder.

Even the FSF acknowledges this. See for example "Proprietary software developers have the advantage of money" on https://www.gnu.org/licenses/why-not-lgpl.html.

detaro 5 years ago | |

One example of a project working with existing licenses doesn't mean that there isn't a problem. And they don't claim that it entirely "prevent[s] you from making money from it". (Although I'm not convinced this license is a good solution, need to take a deeper look)

franga2000 5 years ago | |

That's just semantics. Sure, nothing in the license says you can't make money, but the basic rules of capitalism say you won't. Every single model I've heard of is unsustainable because of the cost of development puts the developer at a permanent disadvantage.

A "repackager" can charge less than the developer while also having much higher margins. Lower price leads to more market share, which brings more total revenue. In addition, these companies now have more to spend on advertising etc., bringing in even more money, none of which ever has to go to the original devs.

This is simply unavoidable and the only reason we don't see it more often is that most of us with the required skills have morals telling us to not do that and those who don't have much better ways of getting money without creating value.

PaulDavisThe1st 5 years ago | |

... and collecting US$17-20k per month (post COVID19 expansion, or was it just version 6.0?)

raphlinus 5 years ago | | |

Super! My understand is that Krita's distribution through app stores has a similar flavor - it's pure GPL, no tricks, but people pay for the convenience and assurance of downloading the official version of the app.

My personal feeling is that as PC's become more locked down and less under user control, paying for the digitally signed version might increasingly become a viable business model. Trademarks and TOS enforcement might be a more effective moat against being undercut than copyrights and licenses.