I’ve been keeping an eye on the stats of the distribution of my Xen and Kernel-Xen packages now for around 12 months. I find it interesting that they just keep getting more and more popular. First, some stats:
How did I get these stats? Thats a little more complex. This is the count of requests for the file kernel-xen-release-6-4.noarch.rpm from a single mirror. This package is only installed once – and not redownloaded after initial installation. The mirror is referenced in most of the install guides that are found around the internet. What it doesn’t take into account is the other five mirror sites, local copies etc etc. I think this figure may well be accurate, however there is a good possibility that it is greatly underestimating the real number of servers out there referencing my repos.
This consists of approx 22 security vulnerabilities of Xen across the now non-maintained v4.1 branch as well as the current 4.2 branch. I have not counted kernel vulnerabilities as these are fixed normally within the standard release cycle – and not as seperate patches.
So how does this turn into finances?
Well, I’ve asked for donations for a while to help offset the costs in producing and developing these packages. Since starting in 2011, I have received exactly $80AUD in donations. This means that given the number of hours working on these packages, I effectively work for about $0.12c per hour. This also excludes any expenses in hosting, equipment or server expenses.
How does this affect the projects?
This is easy. If a server dies, I can’t replace it. If I suffer a hardware failure, I can’t replace it. If hosting costs increase, I can’t pay them.
So – this makes me wonder… How do people survive doing open source development? Sure there are companies like Citrix, RedHat etc that employ people to contribute to FOSS – however what about everyone else? Comments welcome below!