Discussion:
Free Software DVD contains non-free firmware
(too old to reply)
Birzhan Amirov
2023-08-27 23:40:01 UTC
Permalink
Hello Debian CD Images team.

I decided to switch to the latest version (12.1.0), and encountered the
following issues:

1) Looks like this DVD image:
https://cdimage.debian.org/debian-cd/current/amd64/iso-dvd/

https://cdimage.debian.org/debian-cd/current/amd64/iso-dvd/debian-12.1.0-amd64-DVD-1.iso
which is supposed to be Free Software only, actually contains 3rd party
non-free firmware.
The way I discovered it was that my 6th gen Lenovo ThinkPad x1 carbon wifi
card started working, while with 11.6 and prior it didn't have the firmware
and was disabled because of that.

This image is labeled as
"Debian GNU/Linux 12.1.0 _Bookworm_ - Official amd64 DVD Binary-1 with
firmware 20230722-10:49".
Was there some kind of mistake when publishing the images?

2) Also, when I tried to download this disk [DVD-1] using jigdo, I ended up
getting an image of the first disk that wasn't bootable.

Thanks and Regards, John Amirov.
Andrew M.A. Cater
2023-08-27 23:50:02 UTC
Permalink
Post by Birzhan Amirov
Hello Debian CD Images team.
I decided to switch to the latest version (12.1.0), and encountered the
https://cdimage.debian.org/debian-cd/current/amd64/iso-dvd/
https://cdimage.debian.org/debian-cd/current/amd64/iso-dvd/debian-12.1.0-amd64-DVD-1.iso
which is supposed to be Free Software only, actually contains 3rd party
non-free firmware.
The way I discovered it was that my 6th gen Lenovo ThinkPad x1 carbon wifi
card started working, while with 11.6 and prior it didn't have the firmware
and was disabled because of that.
Hi,

Debian has had a full General Resolution on this and resolved to include
non-free firmware as part of the installer, especially because without this
you cannot install Debian on some hardware if you need sound, for example.

https://www.debian.org/vote/2022/vote_003
Post by Birzhan Amirov
This image is labeled as
"Debian GNU/Linux 12.1.0 _Bookworm_ - Official amd64 DVD Binary-1 with
firmware 20230722-10:49".
Was there some kind of mistake when publishing the images?
This is not a mistake: see also the release notes for 12. This is a change
from Debian 11.

https://www.debian.org/releases/bookworm/releasenotes
Post by Birzhan Amirov
2) Also, when I tried to download this disk [DVD-1] using jigdo, I ended up
getting an image of the first disk that wasn't bootable.
Can you show us where you got the jigdo files from, please?
Post by Birzhan Amirov
Thanks and Regards, John Amirov.
All the very best, as ever,

Andy Cater
Birzhan Amirov
2023-08-28 00:00:01 UTC
Permalink
Additionally,

I've just checked the DVDs of 12.1.0 and 11.6.0, and it looks like all the
DVDs of 12.1.0 are labeled like the following:
`Debian GNU/Linux 12.1.0 _Bookworm_ - Official amd64 DVD Binary-{X} with
firmware 20230722-10:49`, where X is the DVD number.

---

However, the releases of 11.6.0 are labeled as the following:
`Debian GNU/Linux 11.6.0 _Bullseye_ - Official amd64 DVD Binary-{X}
20221217-10:40`, where X is the DVD number.
Notice how there is no string "with firmware" in these labels.

At the same time, when looking at a community version of 11.6.0 DVD, which
contains non-free firmware, that's exactly how it's labeled:
`Debian GNU/Linux 11.6.0 _Bullseye_ - Unofficial amd64 DVD Binary-1 with
firmware 20221217-10:46`.
Notice that the string "with firmware" is present in the label of the DVD
with non-free firmware.

---

I'm still trying to understand what that's supposed to mean.
Are you `Officially` non-free software now, or is it some insider attack
trying to compromise your integrity?
Do you have an `Official` way to de-poison your release, and if so, is it
published as a document?

Regards, John.
Post by Birzhan Amirov
Hello Debian CD Images team.
I decided to switch to the latest version (12.1.0), and encountered the
https://cdimage.debian.org/debian-cd/current/amd64/iso-dvd/
https://cdimage.debian.org/debian-cd/current/amd64/iso-dvd/debian-12.1.0-amd64-DVD-1.iso
which is supposed to be Free Software only, actually contains 3rd party
non-free firmware.
The way I discovered it was that my 6th gen Lenovo ThinkPad x1 carbon wifi
card started working, while with 11.6 and prior it didn't have the firmware
and was disabled because of that.
This image is labeled as
"Debian GNU/Linux 12.1.0 _Bookworm_ - Official amd64 DVD Binary-1 with
firmware 20230722-10:49".
Was there some kind of mistake when publishing the images?
2) Also, when I tried to download this disk [DVD-1] using jigdo, I ended
up getting an image of the first disk that wasn't bootable.
Thanks and Regards, John Amirov.
Andrew M.A. Cater
2023-08-28 00:50:01 UTC
Permalink
Post by Birzhan Amirov
Additionally,
I've just checked the DVDs of 12.1.0 and 11.6.0, and it looks like all the
`Debian GNU/Linux 12.1.0 _Bookworm_ - Official amd64 DVD Binary-{X} with
firmware 20230722-10:49`, where X is the DVD number.
Correct.
Post by Birzhan Amirov
---
`Debian GNU/Linux 11.6.0 _Bullseye_ - Official amd64 DVD Binary-{X}
20221217-10:40`, where X is the DVD number.
Notice how there is no string "with firmware" in these labels.
For 11.* and earlier, we had two versions of the images. An image containing
only free firmware and an "unofficial" image containing firmware.

After the GR, it was resolved that we could provide non-free firmware on
the installer in order to install Debian. Especially important when
newer laptops don't have other than WiFi interfaces, for example.
Post by Birzhan Amirov
At the same time, when looking at a community version of 11.6.0 DVD, which
`Debian GNU/Linux 11.6.0 _Bullseye_ - Unofficial amd64 DVD Binary-1 with
firmware 20221217-10:46`.
Notice that the string "with firmware" is present in the label of the DVD
with non-free firmware.
Images produced by the same team within Debian, yes.
Post by Birzhan Amirov
---
I'm still trying to understand what that's supposed to mean.
Are you `Officially` non-free software now, or is it some insider attack
trying to compromise your integrity?
We include non-free firmware on the install medium. We keep that in a separate
archive. If you install only main and non free firmware, you are not
installing any more non-free software than necessary to install the operating
system.
Post by Birzhan Amirov
Do you have an `Official` way to de-poison your release, and if so, is it
published as a document?
You can pass various parameters to the installer: you can also uninstall the
non-free firmware after installation - a record of what is installed is recorded

All the best

Andy Cater
Post by Birzhan Amirov
Regards, John.
Post by Birzhan Amirov
Hello Debian CD Images team.
I decided to switch to the latest version (12.1.0), and encountered the
https://cdimage.debian.org/debian-cd/current/amd64/iso-dvd/
https://cdimage.debian.org/debian-cd/current/amd64/iso-dvd/debian-12.1.0-amd64-DVD-1.iso
which is supposed to be Free Software only, actually contains 3rd party
non-free firmware.
The way I discovered it was that my 6th gen Lenovo ThinkPad x1 carbon wifi
card started working, while with 11.6 and prior it didn't have the firmware
and was disabled because of that.
This image is labeled as
"Debian GNU/Linux 12.1.0 _Bookworm_ - Official amd64 DVD Binary-1 with
firmware 20230722-10:49".
Was there some kind of mistake when publishing the images?
2) Also, when I tried to download this disk [DVD-1] using jigdo, I ended
up getting an image of the first disk that wasn't bootable.
Thanks and Regards, John Amirov.
Philip Hands
2023-08-28 14:20:01 UTC
Permalink
...
Post by Andrew M.A. Cater
Post by Birzhan Amirov
Do you have an `Official` way to de-poison your release, and if so, is it
published as a document?
You can pass various parameters to the installer: you can also uninstall the
non-free firmware after installation - a record of what is installed is recorded
Andy seems to have given you something of a politician's answer there,
so I'll try giving a more direct one:

No, not as far as I know (if by "de-poison" you mean get to the point
where the resulting image file has no trace of the firmware on it).

However, it is possible to instruct the installer to not take any notice
of the firmware, nor even try to detect if it might be needed:

https://wiki.debian.org/Firmware#How_to_disable_detection_and_use_of_non-free_firmware

which will provide you with exactly the same experience as would have
been achieved by using media that did not include the firmware in the
first place.

I suppose that we could provide a tool that would be able produce an
image with no non-free data on it (by replacing relevant portions of the
images with NUL characters, say) but the effort required to build and
test such a tool would have to be diverted from other tasks (e.g.
getting the media to work at all, on currently unsupported hardware).

If you feel that such a tool should be written, and have the skills to
contribute to such an effort, then I'm sure the Debian-CD team will be
glad to explain what would be involved.

Cheers, Phil.
--
Philip Hands -- https://hands.com/~phil
Birzhan Amirov
2023-08-28 17:20:01 UTC
Permalink
Hello,

Thank you for your quick and detailed reply.
Post by Philip Hands
I suppose that we could provide a tool that would be able produce an
image with no non-free data on it ... but the effort required to build and
test such a tool would have to be diverted from other tasks.
Post by Philip Hands
... to contribute to such an effort, then I'm sure the Debian-CD team
will be
glad to explain what would be involved.

Just curious, is my understanding correct, that you had such a tool at the
time of 11.6.0, but not anymore?

Regards, John.
Post by Philip Hands
...
Post by Andrew M.A. Cater
Post by Birzhan Amirov
Do you have an `Official` way to de-poison your release, and if so, is
it
Post by Andrew M.A. Cater
Post by Birzhan Amirov
published as a document?
You can pass various parameters to the installer: you can also uninstall
the
Post by Andrew M.A. Cater
non-free firmware after installation - a record of what is installed is
recorded
Andy seems to have given you something of a politician's answer there,
No, not as far as I know (if by "de-poison" you mean get to the point
where the resulting image file has no trace of the firmware on it).
However, it is possible to instruct the installer to not take any notice
https://wiki.debian.org/Firmware#How_to_disable_detection_and_use_of_non-free_firmware
which will provide you with exactly the same experience as would have
been achieved by using media that did not include the firmware in the
first place.
I suppose that we could provide a tool that would be able produce an
image with no non-free data on it (by replacing relevant portions of the
images with NUL characters, say) but the effort required to build and
test such a tool would have to be diverted from other tasks (e.g.
getting the media to work at all, on currently unsupported hardware).
If you feel that such a tool should be written, and have the skills to
contribute to such an effort, then I'm sure the Debian-CD team will be
glad to explain what would be involved.
Cheers, Phil.
--
Philip Hands -- https://hands.com/~phil
Birzhan Amirov
2023-08-28 18:50:01 UTC
Permalink
Also, should this wikipedia article be updated?
https://en.wikipedia.org/wiki/Debian_Free_Software_Guidelines
Post by Birzhan Amirov
Hello,
Thank you for your quick and detailed reply.
Post by Philip Hands
I suppose that we could provide a tool that would be able produce an
image with no non-free data on it ... but the effort required to build and
test such a tool would have to be diverted from other tasks.
Post by Philip Hands
... to contribute to such an effort, then I'm sure the Debian-CD team
will be
glad to explain what would be involved.
Just curious, is my understanding correct, that you had such a tool at the
time of 11.6.0, but not anymore?
Regards, John.
Post by Philip Hands
...
Post by Andrew M.A. Cater
Post by Birzhan Amirov
Do you have an `Official` way to de-poison your release, and if so, is
it
Post by Andrew M.A. Cater
Post by Birzhan Amirov
published as a document?
You can pass various parameters to the installer: you can also
uninstall the
Post by Andrew M.A. Cater
non-free firmware after installation - a record of what is installed is
recorded
Andy seems to have given you something of a politician's answer there,
No, not as far as I know (if by "de-poison" you mean get to the point
where the resulting image file has no trace of the firmware on it).
However, it is possible to instruct the installer to not take any notice
https://wiki.debian.org/Firmware#How_to_disable_detection_and_use_of_non-free_firmware
which will provide you with exactly the same experience as would have
been achieved by using media that did not include the firmware in the
first place.
I suppose that we could provide a tool that would be able produce an
image with no non-free data on it (by replacing relevant portions of the
images with NUL characters, say) but the effort required to build and
test such a tool would have to be diverted from other tasks (e.g.
getting the media to work at all, on currently unsupported hardware).
If you feel that such a tool should be written, and have the skills to
contribute to such an effort, then I'm sure the Debian-CD team will be
glad to explain what would be involved.
Cheers, Phil.
--
Philip Hands -- https://hands.com/~phil
Philip Hands
2023-08-28 20:20:01 UTC
Permalink
Post by Birzhan Amirov
Hello,
Thank you for your quick and detailed reply.
Post by Philip Hands
I suppose that we could provide a tool that would be able produce an
image with no non-free data on it ... but the effort required to build and
test such a tool would have to be diverted from other tasks.
Post by Philip Hands
... to contribute to such an effort, then I'm sure the Debian-CD team
will be
glad to explain what would be involved.
Just curious, is my understanding correct, that you had such a tool at the
time of 11.6.0, but not anymore?
No - it used to be that 2 sets of images were produced, and which then
had to be independently tested, thus expending a lot of overlapping
effort.

It is also the case that many people would download the "Official"
images, and discover that they could not actually achieve an install on
the hardware that they had to hand, and then would either abandon Debian
never to return, or would be forced to learn arcane facts about how we
do things before then downloading the non-free unofficial image.

That may seem like it's not too bad if one is on cheap high-bandwidth
link, but if one is in one of the less well connected bits of the world,
it might be a significant cost to do that wasted download.

Also, we're a volunteer organisation, and those lost users could well be
people who would have become active contributors if they'd not fallen at
the first fence, which is bad for the future health of the project.

One could blame the users for getting hold of the wrong hardware, and
tell them to go and buy themselves some RYF-certified hardware instead,
but again that is rather descriminatory, as one might be talking to
someone for whom the only computer they can afford is the one that was
donated to them, and they had no say in the nature of the WiFi chipset
(even if they'd known enough to have an opinion)

=-=-=

To answer the question in the other mail about DFSG: No.

The non-free firmware is still not part of Debian proper, we just happen
to distribute it alongside Debian as a service to those users who would
otherwise be deprived of the chance to run Debian if we did not.

We've had a non-free section on our mirror network for decades for the
same reason. See points 4 & 5 of the Debian Social Contract:

https://www.debian.org/social_contract

It is of course possible to argue this the other way, and we do have
downstream derivatives that ensure that no non-free software gets
anywhere near their distribution, so if that's more to your taste you
might want to consider one of them.

On the other hand, there are real security issues that have been dealt
with in updates to the (non-free) microcode for the CPUs that run the
vast majority of machines, so many consider it rather unwise to shun
every last scrap of non-free software, even if we find that distasteful.

Cheers, Phil.
--
Philip Hands -- https://hands.com/~phil
Birzhan Amirov
2023-08-29 00:50:01 UTC
Permalink
I just want to use this chance to thank the entire Debian Images Team for
many years of releasing DVDs that actually had 0 bytes of closed-source
code.
I have been following the project since "Jessie", and always admired your
strict and puristic approach.
Allow me to wish you the best of luck growing your user base.

Regards, John.
Post by Philip Hands
Post by Birzhan Amirov
Hello,
Thank you for your quick and detailed reply.
Post by Philip Hands
I suppose that we could provide a tool that would be able produce an
image with no non-free data on it ... but the effort required to build
and
Post by Birzhan Amirov
test such a tool would have to be diverted from other tasks.
Post by Philip Hands
... to contribute to such an effort, then I'm sure the Debian-CD team
will be
glad to explain what would be involved.
Just curious, is my understanding correct, that you had such a tool at
the
Post by Birzhan Amirov
time of 11.6.0, but not anymore?
No - it used to be that 2 sets of images were produced, and which then
had to be independently tested, thus expending a lot of overlapping
effort.
It is also the case that many people would download the "Official"
images, and discover that they could not actually achieve an install on
the hardware that they had to hand, and then would either abandon Debian
never to return, or would be forced to learn arcane facts about how we
do things before then downloading the non-free unofficial image.
That may seem like it's not too bad if one is on cheap high-bandwidth
link, but if one is in one of the less well connected bits of the world,
it might be a significant cost to do that wasted download.
Also, we're a volunteer organisation, and those lost users could well be
people who would have become active contributors if they'd not fallen at
the first fence, which is bad for the future health of the project.
One could blame the users for getting hold of the wrong hardware, and
tell them to go and buy themselves some RYF-certified hardware instead,
but again that is rather descriminatory, as one might be talking to
someone for whom the only computer they can afford is the one that was
donated to them, and they had no say in the nature of the WiFi chipset
(even if they'd known enough to have an opinion)
=-=-=
To answer the question in the other mail about DFSG: No.
The non-free firmware is still not part of Debian proper, we just happen
to distribute it alongside Debian as a service to those users who would
otherwise be deprived of the chance to run Debian if we did not.
We've had a non-free section on our mirror network for decades for the
https://www.debian.org/social_contract
It is of course possible to argue this the other way, and we do have
downstream derivatives that ensure that no non-free software gets
anywhere near their distribution, so if that's more to your taste you
might want to consider one of them.
On the other hand, there are real security issues that have been dealt
with in updates to the (non-free) microcode for the CPUs that run the
vast majority of machines, so many consider it rather unwise to shun
every last scrap of non-free software, even if we find that distasteful.
Cheers, Phil.
--
Philip Hands -- https://hands.com/~phil
Philip Hands
2023-08-29 08:10:01 UTC
Permalink
Post by Birzhan Amirov
I just want to use this chance to thank the entire Debian Images Team for
many years of releasing DVDs that actually had 0 bytes of closed-source
code.
I have been following the project since "Jessie", and always admired your
strict and puristic approach.
Allow me to wish you the best of luck growing your user base.
If you actually want the level of purity-over-practicality that your
mail suggests, people have been providing it long before you took an
interest in Debian -- the FSF keeps a list of candidates:

https://www.gnu.org/distros/free-distros.html

[ Oh, I see gNewSense is dead :-/ , and Trisquel is now (... erm, since
2007 ... obviously wasn't paying attention) based on Ubuntu, which
doesn't seem like the most obvious way of doing that, but whatever. ]

and while the FSF now criticises Debian primarily on the basis of
this (IMO rather minor) change in installer policy:

https://www.gnu.org/distros/common-distros.html#Debian

they've always been critical of Debian, for pretty-much exactly the same
reason as this policy change occurred -- a willingness to let users
obtain a working Debian system by providing them with the chance to get
hold of non-free software as well as Debian, if that's their only choice:

https://web.archive.org/web/20220211101539/https://www.gnu.org/distros/common-distros.html#Debian

so if you were expecting FSF levels of purity[1], then you probably haven't
been paying close enough attention from the start.

While looking at the FSF site, I noticed this somewhat amusing method
for reconciling these two stances:

https://www.gnu.org/philosophy/install-fest-devil.html

but I'm afraid I've no idea how one could implement something equivalent
in the medium of downloadable images.

I'm sure if we had a tool for converting "+firmware" to "pure" images,
we'd be publishing the checksums to the "pure" result, and making them
easy to get for those that prefer them, but nobody's yet produced such a
tool.

It really just needs someone to care enough to maintain it (or pay
someone else to do so).

I don't think we'd go back to the situation where we somehow hide the
"+firmware" images though, because we've acknowledged that that is
effectively an abuse of our users, so I would expect the FSF to be
almost exactly as grumpy even if "pure" images were easily available.

Cheers, Phil.

[1] of course, the FSF distributes documentation that is non-free by
Debian's definition (in the form of GFDL-with-immutable-sections), so
other forms of purity are also available :-)
--
Philip Hands -- https://hands.com/~phil
Thomas Schmitt
2023-08-29 11:30:01 UTC
Permalink
Hi,
Post by Philip Hands
While looking at the FSF site, I noticed this somewhat amusing method
https://www.gnu.org/philosophy/install-fest-devil.html
Typically Stallman:

"My new idea is that the install fest could allow the devil to hang
around, off in a corner of the hall, or the next room. (Actually, a
human being wearing sign saying 'The Devil,' and maybe a toy mask or
horns.) The devil would offer to install nonfree drivers [...]"
Post by Philip Hands
but I'm afraid I've no idea how one could implement something equivalent
in the medium of downloadable images.
Post by Andrew M.A. Cater
You can pass various parameters to the installer: you can also uninstall
the non-free firmware after installation -
So one could explain and advertise to organizers of install fests how
to instruct the installer to ignore non-free firmware.
Or an imposter of archangel Michael could offer to eradicate any impurity
as last step of the installation (possibly after making a first backup).
Post by Philip Hands
I'm sure if we had a tool for converting "+firmware" to "pure" images,
As GNU maintainer of xorriso i am probably obliged to help with the
purification of Debian ISOs, if there is real interest.
The main open problem which i see in this regard is the list of develish
packages which shall be removed.

Would /firmware/Contents-firmware with the third word in each line tell
what is non-free ? In debian-12.0.0-amd64-netinst.iso i see lines like:
/lib/firmware/ath9k_htc/htc_9271-1.4.0.fw firmware-ath9k-htc_1.4.0-108-gd856466+dfsg1-1.3_all.deb main
/lib/firmware/amd/amd_sev_fam17h_model0xh.sbin amd64-microcode_3.20230414.1_amd64.deb non-free-firmware

Is all non-free firmware under /pool confined in /pool/non-free-firmware ?
(Is all firmware under /firmare mirrored under /pool ?)

If so, then one could remove the develish files from the various content
lists and re-pack the ISO with updated content lists and removed files.
This is probably not more complicated than merging debian-cd ISOs by
https://dev.lovelyhq.com/libburnia/libisoburn/raw/master/test/merge_debian_isos
as described in
https://wiki.debian.org/MergeDebianIsos

(It seems that /firmware/Contents-firmware should be merged, too.
Now i wonder why this did not hamper the use of the resulting amd64 ISOs.
Is it not used by any program ?)
Post by Philip Hands
I would expect the FSF to be
almost exactly as grumpy even if "pure" images were easily available.
A do-it-yourself purifier program would not bring Debian on the FSF list
of free distros. But it would help with posing as install fest devil.

People who want to organize such a fest are entitled to ask me for
support.


Have a nice day :)

Thomas
Birzhan Amirov
2023-08-29 17:10:01 UTC
Permalink
If you actually want the level of purity-over-practicality that your mail
suggests ... that is effectively an abuse of our users
**Just pointing out the fact that at the time of 11.6.0 you didn't have a
problem releasing both free and non-free version.**
Important part ^

Also, it feels like in your reply you're trying to hide or obfuscate this
fact, probably because if this fact is not mentioned, your reasoning starts
to work (e.g. I quote: "that is
effectively an abuse of our users").

You've provided more questionable reasoning in your previous emails,
responding to which I find grossly counterproductive.

Just for the record, let me explain you what I mean exactly, because it
might not have penetrated.
What I did - is read the DFSG, and IMO it follows from this document that
you should have at least one official release that doesn't have
closed-source, just as you did at the time of 11.6.0.
And let me break it down for you, the way I'm reading it:

1. Debian <https://en.wikipedia.org/wiki/Debian> Project uses *Debian Free
Software Guidelines* (*DFSG*) to determine whether a software license is a free
software license <https://en.wikipedia.org/wiki/Free_software_license>;
2. This, in turn is used to determine whether a piece of software can be
included in Debian.
3. and guideline #2 is: Inclusion of source code.
IMO a natural conclusion from this guideline is that if you get a release
of Debian, it should be all open source software.

Your reply to that was: "The non-free firmware is still not part of Debian
proper, we just happen to distribute it alongside Debian".
And that's fine if you happen to distribute anything alongside whatever you
want, and you're not called Official Debian.
The only problem with that is for some reason now you still call those
releases "Official distributions" and don't provide pure free software
releases anymore.
(Memo: earlier releases with non-free software were called "Unofficial").
But honestly, call them what you want, as long as you provide a pure free
software release, just like you should, judging from your own manifesto.

You might have stronger reasons than those you've officially acknowledged
to compromise your releases with code that you can't vouch for and you can
deny knowledge of what it does exactly; but the way I see it - that's your
issue and I'm not going to speculate or blame.
Maybe at some point somebody more responsible will restart proper releases
in accordance with DFSG, I'll keep my hope for that.
And given the quality of your demonstrated argument and reasoning I intend
to discontinue my participation in this thread, for the purpose of saving
my time for more productive activities.

Again, thank you for 11.6.0 and earlier releases.

Regards, John.
Post by Birzhan Amirov
I just want to use this chance to thank the entire Debian Images Team for
many years of releasing DVDs that actually had 0 bytes of closed-source
code.
I have been following the project since "Jessie", and always admired your
strict and puristic approach.
Allow me to wish you the best of luck growing your user base.
If you actually want the level of purity-over-practicality that your
mail suggests, people have been providing it long before you took an
https://www.gnu.org/distros/free-distros.html
[ Oh, I see gNewSense is dead :-/ , and Trisquel is now (... erm, since
2007 ... obviously wasn't paying attention) based on Ubuntu, which
doesn't seem like the most obvious way of doing that, but whatever. ]
and while the FSF now criticises Debian primarily on the basis of
https://www.gnu.org/distros/common-distros.html#Debian
they've always been critical of Debian, for pretty-much exactly the same
reason as this policy change occurred -- a willingness to let users
obtain a working Debian system by providing them with the chance to get
https://web.archive.org/web/20220211101539/https://www.gnu.org/distros/common-distros.html#Debian
so if you were expecting FSF levels of purity[1], then you probably haven't
been paying close enough attention from the start.
While looking at the FSF site, I noticed this somewhat amusing method
https://www.gnu.org/philosophy/install-fest-devil.html
but I'm afraid I've no idea how one could implement something equivalent
in the medium of downloadable images.
I'm sure if we had a tool for converting "+firmware" to "pure" images,
we'd be publishing the checksums to the "pure" result, and making them
easy to get for those that prefer them, but nobody's yet produced such a
tool.
It really just needs someone to care enough to maintain it (or pay
someone else to do so).
I don't think we'd go back to the situation where we somehow hide the
"+firmware" images though, because we've acknowledged that that is
effectively an abuse of our users, so I would expect the FSF to be
almost exactly as grumpy even if "pure" images were easily available.
Cheers, Phil.
[1] of course, the FSF distributes documentation that is non-free by
Debian's definition (in the form of GFDL-with-immutable-sections), so
other forms of purity are also available :-)
--
Philip Hands -- https://hands.com/~phil
Andrew M.A. Cater
2023-08-29 18:10:02 UTC
Permalink
Post by Birzhan Amirov
If you actually want the level of purity-over-practicality that your mail
suggests ... that is effectively an abuse of our users
**Just pointing out the fact that at the time of 11.6.0 you didn't have a
problem releasing both free and non-free version.**
Important part ^
Can I remind you that Debian has an open process for this and for any changes.

We *did* have a problem: people couldn't install Debian straightforwardly
without firmware. It is definitely true that this adversely affected some
visually impaired users who were entirely unable to use the speech installer
without Intel sound firmware.

That is one of the justifications for the full GR last year which also changed
the Debian Social contract, accordingly.
Post by Birzhan Amirov
Also, it feels like in your reply you're trying to hide or obfuscate this
fact, probably because if this fact is not mentioned, your reasoning starts
to work (e.g. I quote: "that is
effectively an abuse of our users").
Can I respectfully suggest that you acquaint yourself with more of the
history around these changes: debian-vote lists for August and September 2022
are probably good places to start and corresponding debian-devel discussions.
Post by Birzhan Amirov
You've provided more questionable reasoning in your previous emails,
responding to which I find grossly counterproductive.
Can I request you to be constructive rather than critical: the Code of Conduct
applies here as elsewhere.
Post by Birzhan Amirov
Just for the record, let me explain you what I mean exactly, because it
might not have penetrated.
What I did - is read the DFSG, and IMO it follows from this document that
you should have at least one official release that doesn't have
closed-source, just as you did at the time of 11.6.0.
The Project as a whole chose to change the process: the code still exists
to generate fully free images. For practical reasons, the release team
chooses not to: that would involve reverting to double the amount of testing
for questionable benefit overall, amongst other things.
Post by Birzhan Amirov
1. Debian <https://en.wikipedia.org/wiki/Debian> Project uses *Debian Free
Software Guidelines* (*DFSG*) to determine whether a software license is a free
software license <https://en.wikipedia.org/wiki/Free_software_license>;
2. This, in turn is used to determine whether a piece of software can be
included in Debian.
3. and guideline #2 is: Inclusion of source code.
IMO a natural conclusion from this guideline is that if you get a release
of Debian, it should be all open source software.
Your reply to that was: "The non-free firmware is still not part of Debian
proper, we just happen to distribute it alongside Debian".
I refer you to the comprehensive discussions above around these issues: Phil
is correct here and the Social Contract modification makes this clear.
Post by Birzhan Amirov
And that's fine if you happen to distribute anything alongside whatever you
want, and you're not called Official Debian.
The only problem with that is for some reason now you still call those
releases "Official distributions" and don't provide pure free software
releases anymore.
(Memo: earlier releases with non-free software were called "Unofficial").
But honestly, call them what you want, as long as you provide a pure free
software release, just like you should, judging from your own manifesto.
You might have stronger reasons than those you've officially acknowledged
to compromise your releases with code that you can't vouch for and you can
deny knowledge of what it does exactly; but the way I see it - that's your
issue and I'm not going to speculate or blame.
The tone you employ suggests that you're "blaming" the Project as a whole
for doing something you disagree with.
Post by Birzhan Amirov
Maybe at some point somebody more responsible will restart proper releases
in accordance with DFSG, I'll keep my hope for that.
As one of those closely involved in the Debian images release process, I would
strongly suggest that the team is not irresponsible - but I would say that
wouldn't I.

This issue was also fully discussed at the Debconf in Kossovo,
for example.
https://meetings-archive.debian.net/pub/debian-meetings/2022/DebConf22/debconf22-199-fixing-the-firmware-mess.webm
https://meetings-archive.debian.net/pub/debian-meetings/2022/DebConf22/debconf22-294-debian-installer-and-images-team-bof.webm

Given that the sponsor of the GR has been involved with image releases
almost from the beginning of the Project, you might also wish to
reconsider your statement from a position of greater factual knowledge after
due consideration.
Post by Birzhan Amirov
And given the quality of your demonstrated argument and reasoning I intend
to discontinue my participation in this thread, for the purpose of saving
my time for more productive activities.
Again, thank you for 11.6.0 and earlier releases.
Regards, John.
With every good wish, as ever,

Andy Cater
Post by Birzhan Amirov
Post by Birzhan Amirov
I just want to use this chance to thank the entire Debian Images Team for
many years of releasing DVDs that actually had 0 bytes of closed-source
code.
I have been following the project since "Jessie", and always admired your
strict and puristic approach.
Allow me to wish you the best of luck growing your user base.
If you actually want the level of purity-over-practicality that your
mail suggests, people have been providing it long before you took an
https://www.gnu.org/distros/free-distros.html
[ Oh, I see gNewSense is dead :-/ , and Trisquel is now (... erm, since
2007 ... obviously wasn't paying attention) based on Ubuntu, which
doesn't seem like the most obvious way of doing that, but whatever. ]
and while the FSF now criticises Debian primarily on the basis of
https://www.gnu.org/distros/common-distros.html#Debian
they've always been critical of Debian, for pretty-much exactly the same
reason as this policy change occurred -- a willingness to let users
obtain a working Debian system by providing them with the chance to get
https://web.archive.org/web/20220211101539/https://www.gnu.org/distros/common-distros.html#Debian
so if you were expecting FSF levels of purity[1], then you probably haven't
been paying close enough attention from the start.
While looking at the FSF site, I noticed this somewhat amusing method
https://www.gnu.org/philosophy/install-fest-devil.html
but I'm afraid I've no idea how one could implement something equivalent
in the medium of downloadable images.
I'm sure if we had a tool for converting "+firmware" to "pure" images,
we'd be publishing the checksums to the "pure" result, and making them
easy to get for those that prefer them, but nobody's yet produced such a
tool.
It really just needs someone to care enough to maintain it (or pay
someone else to do so).
I don't think we'd go back to the situation where we somehow hide the
"+firmware" images though, because we've acknowledged that that is
effectively an abuse of our users, so I would expect the FSF to be
almost exactly as grumpy even if "pure" images were easily available.
Cheers, Phil.
[1] of course, the FSF distributes documentation that is non-free by
Debian's definition (in the form of GFDL-with-immutable-sections), so
other forms of purity are also available :-)
--
Philip Hands -- https://hands.com/~phil
Martin
2023-08-31 06:40:01 UTC
Permalink
Hi Birzhan,
Unfortunately it's all legal, the debian social contract was even
officially changed to make this degradation real - justifying once again
the reason why GNU community is not supporting debian project:
https://www.debian.org/releases/stable/amd64/ch06s04

Cheers!
Martin
Post by Birzhan Amirov
Additionally,
I've just checked the DVDs of 12.1.0 and 11.6.0, and it looks like all
`Debian GNU/Linux 12.1.0 _Bookworm_ - Official amd64 DVD Binary-{X} with
firmware 20230722-10:49`, where X is the DVD number.
---
`Debian GNU/Linux 11.6.0 _Bullseye_ - Official amd64 DVD Binary-{X}
20221217-10:40`, where X is the DVD number.
Notice how there is no string "with firmware" in these labels.
At the same time, when looking at a community version of 11.6.0 DVD,
`Debian GNU/Linux 11.6.0 _Bullseye_ - Unofficial amd64 DVD Binary-1 with
firmware 20221217-10:46`.
Notice that the string "with firmware" is present in the label of the
DVD with non-free firmware.
---
I'm still trying to understand what that's supposed to mean.
Are you `Officially` non-free software now, or is it some insider attack
trying to compromise your integrity?
Do you have an `Official` way to de-poison your release, and if so, is
it published as a document?
Regards, John.
Hello Debian CD Images team.
I decided to switch to the latest version (12.1.0), and encountered
https://cdimage.debian.org/debian-cd/current/amd64/iso-dvd/
<https://cdimage.debian.org/debian-cd/current/amd64/iso-dvd/>
https://cdimage.debian.org/debian-cd/current/amd64/iso-dvd/debian-12.1.0-amd64-DVD-1.iso <https://cdimage.debian.org/debian-cd/current/amd64/iso-dvd/debian-12.1.0-amd64-DVD-1.iso>
which is supposed to be Free Software only, actually contains 3rd
party non-free firmware.
The way I discovered it was that my 6th gen Lenovo ThinkPad x1
carbon wifi card started working, while with 11.6 and prior it
didn't have the firmware and was disabled because of that.
This image is labeled as
"Debian GNU/Linux 12.1.0 _Bookworm_ - Official amd64 DVD Binary-1
with firmware 20230722-10:49".
Was there some kind of mistake when publishing the images?
2) Also, when I tried to download this disk [DVD-1] using jigdo, I
ended up getting an image of the first disk that wasn't bootable.
Thanks and Regards, John Amirov.
Loading...