EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

03.02.13

UEFI Restricted Boot: Torvalds Asks Developers Not to “Please Microsoft by Doing Idiotic Crap Approach”, Petition Set Up to Nail Microsoft for This Antitrust Abuse

Posted in Antitrust, FSF, GNU/Linux, Kernel, Microsoft at 6:03 am by Dr. Roy Schestowitz

Photo by Alex Dawson, 2002

Linus

Summary: “Because it really shouldn’t be about MS blessings, it should be about the *user* blessing kernel modules,” Torvalds explains

THE MAN who habitually dismisses some Microsoft critics proves his older statements to be somewhat hypocritical. He too treats Microsoft exceptionally.

Torvalds recently made headlines by using strong language and addressing a controversial subject. It is about UEFI with restricted boot and here is some more relevant coverage he generated, helping to raise awareness of the issue:

  • Torvalds blasts Howells, Garrett over secure boot

    A push by Red Hat kernel developer David Howells and ex-Red Hat developer Matthew Garrett to get code supporting secure boot merged into the mainline kernel to meet some of Microsoft’s requirements has led to a sharp rebuke from Linux creator Linus Torvalds.

    Howell made a request for a patchset to be pulled into the mainline kernel last Thursday, writing, “It (the patchset) provides a facility by which keys can be added dynamically to a kernel that is running in secure-boot mode.

  • Linus Torvalds blasts Microsoft in sweary tirade

    Linux guru Linus Torvalds is at it again. After telling Nvidia to go forth and multiply, the outspoken Torvalds has decided to share some of his thoughts on Microsoft’s signing techniques in a heated online argument with fellow Linux developers.

    The developers were discussing ways of improving the Linux kernel with a bit of code that makes it easier to boot on Windows 8 PCs. The process of booting Linux on PCs shipped with Windows 8 has been complicated due to the widespread use of UEFI firmware with Secure Boot feature enabled. Red Hat developers emailed Torvalds to discuss the addition of new keys to the Linux kernel, which should get around the issue.

  • No Microsoft certificate support in Linux kernel says Torvalds

    Red Hat’s Secure Boot support is a case of the company wanting to “deep-throat Microsoft”, according to a forthright posting from Linus Torvalds on the Linux kernel developer mailing list. Torvald’s comments were made in response to plans by a Red Hat developer to extend Linux support for Secure Boot. The comments have given rise to an ongoing discussion, during which several prominent kernel developers have shared their thoughts on Secure Boot support in Linux.

Moreover, as it turns out, US citizens can now sign this petition calling for the White House to get involved to tackle the antitrust abuse (reports suggest that Microsoft’s fine for antitrust abuses in Europe is only weeks away).

James Bottomley wrote about this in his blog, but being former Novell staff who had worked on Microsoft projects, we expect no strong opposition from him. Steven J. Vaughan-Nichols, a Novell-sympathetic writer, wrote this followup:

No one, but no one, in the Linux community likes Microsoft’s mandated deployment of the Unified Extensible Firmware Interface (UEFI) Secure Boot option in Windows 8 certified PCs. But, how Linux should handle the fixes required to deal with this problem remains a hot-button issue. Now, as the debate continues hot and heavy, Linus Torvalds, Linux’s founder and de facto leader, spells out how he thinks Linux should deal with Secure Boot keys.

Swapnil Bhartiya, not a strong critic of Novell because he likes SUSE, sure isn’t a fan of what Microsoft is doing here. He is in good company when he writes along the same lines of Torvalds, whom he interviewed last year:

There is a heated (heat is a bit colder word) debate going on within the Linux community over how should Linux handle the Microsoft’s secure boot keys.

In an ongoing discussing Linus Torvalds has made some suggestions which he believes put users in control of their system and not Microsoft.

Torvalds was sarcastic when saying, “let’s please Microsoft by doing idiotic crap approach.”

This attitude is not exactly news (Torvalds alleges that so-called Secure Boot has nothing to do with security). “Because it really shouldn’t be about MS blessings, it should be about the *user* blessing kernel modules,” Linus Torvalds believes. He basically agrees with Richard Stallman and the FSF then.

Dr. Garrett, on the other hand, continues to push for the agenda that Microsoft hoped for, facilitating its control over Linux, Here is part of this whole long discussion where Torvalds says:

So instead of pleasing microsoft, try to see how we can add real security:

- a distro should sign its own modules AND NOTHING ELSE by default. And it damn well shouldn’t allow any other modules to be loaded at all by default, because why the f*ck should it? And what the hell should a Microsoft signature have to do with *anything*?

- before loading any third-party module, you’d better make sure you ask the user for permission. On the console. Not using keys. Nothing like that. Keys will be compromised. Try to limit the damage, but more importantly, let the user be in control.

– encourage things like per-host random keys – with the stupid UEFI checks disabled entirely if required. They are almost certainly going to be *more* secure than depending on some crazy root of trust based on a big company, with key signing authorities that trust anybody with a credit card. Try to teach people about things like that instead. Encourage people to do their own (random) keys, and adding those to their UEFI setups (or not: the whole UEFI thing is more about control than security), and strive to do things like one-time signing with the private key thrown out entirely. IOW try to encourage *that* kind of “we made sure to ask the user very explicitly with big warnings and create his own key for that particular module” security. Real security, not “we control the user” security.

Sure, users will screw that up too. They’ll want to load crazy nvidia binary modules etc crap. But make it *their* decision, and under
*their* control, instead of trying to tell the world about how this should be blessed by Microsoft.

Because it really shouldn’t be about MS blessings, it should be about the *user* blessing kernel modules.

Quite frankly, *you* are what he key-hating crazies were afraid of. You peddle the “control, not security” crap-ware. The whole “MS owns your machine” is *exactly* the wrong way to use keys.

Sam Varghese, consistently an opposer of restricted boot, says that it would put “Linux is at Microsoft’s mercy”:

Linux companies or organisations that have paid for, and obtained, keys from Microsoft to ensure that their distributions can be booted on secure boot-enabled devices, have to abide by the terms of a contract or else may have their keys revoked.

Whatever some Linux developers with past in Novell may say, at least we know Torvalds’ approach is perhaps more similar to the FSF’s than his employer’s.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New

  1. Some US Patents' Quality is So Low That There's a Garden Clearance/Fire Sale

    Rather than shoot worthless patents into orbit where they belong the Allied Security Trust (AST), collector of dubious patents, will try to sell them to gullible opportunists and patent trolls (even if the said patents would likely perish in courts)

  2. When Amplifying the Message of 'Global Innovation Index 2018' IP Watch Sounds Like WIPO and IP Watchdog (Watchtroll)

    In addition to senatorial efforts and misleading debates about patents, we now contend with something called “Global Innovation Index 2018," whose purpose appears to be similar to the debunked Chamber of Commerce's rankings (quantifying everything in terms of patents)

  3. Erosion of Patent Justice in Europe With Kangaroo Courts and Low-Quality European Patents

    The problematic combination of plaintiff-friendly courts (favouring the accuser, just like in Eastern Texas) and low-quality patents that should never have been granted

  4. Mafia Tactics in Team UPC and Battistelli's Circle

    Mafia-like behaviour at the EPO and the team responsible for the Unified Patent Court (UPC); appointments of loyal friends and family members have become common (nepotism and exchange of favours), as have threats made towards critics, authorities, and the press

  5. Australia Says No to Software Patents

    Rokt is now fighting the Australian patent office over its decision to reject software patents; Shelston IP, an Australian patent law firm (originally from Melbourne), already meddles a great deal in such policies/decisions, hoping to overturn them

  6. Links 19/7/2018: Krita 4.1.1, Qt Creator 4.7.0, and Microsoft-Led Lobby Against Android in EU

    Links for the day

  7. IAM is Pushing SEPs/FRAND Agenda for Patent Trolls and Monopolists That Fund IAM

    The front group of patent trolls, IAM, sets up an echo chamber-type event, preceded by all the usual pro-FRAND propaganda

  8. “Trade Secrets” Litigation Rising in the Wake of TC Heartland, Alice, Oil States and Other Patent-Minimising Decisions

    Litigation strategies are evolving in the wake of top-level decisions that rule out software patents, restrict venue shifting, and facilitate invalidation of patents even outside the courtroom

  9. The EPO -- Like the Unified Patent Court (UPC) and Unitary Patent System -- is an Untenable Mess

    The António Campinos-led EPO, nearly three weeks under his leadership, still fails to commit to justice (court rulings not obeyed), undo union-busting efforts and assure independence of judges; this, among other factors, is why the Office/Organisation and the UPC it wants to manage appear more or less doomed

  10. Links 18/7/2018: System76's Manufacturing Facility, Microsoft-Led Lobby for Antitrust Against Android

    Links for the day

  11. What Patent Lawyers Aren't Saying: Most Patent Litigation Has Become Too Risky to be Worth It

    The lawyers' key to the castle is lost or misplaced; they can't quite find/obtain leverage in courts, but they don't want their clients to know that

  12. Software Patents Royalty (Tax) Campaign by IBM, a Serial Patent Bully, and the EPO's Participation in All This

    The agenda of US-based patent maximalists, including patent trolls and notorious bullies from the United States, is still being served by the 'European' Patent Office, which has already outsourced some of its work (e.g. translations, PR, surveillance) to the US

  13. The European Council Needs to Check Battistelli's Back Room Deals/Back Door/Backchannel With Respect to Christian Archambeau

    Worries persist that Archambeau is about to become an unworthy beneficiary (nepotism) after a Battistelli setup that put Campinos in power, supported by the Belgian delegation which is connected to Archambeau, a national/citizen of Belgium

  14. PTAB and § 101 (Section 101) Have Locked the Patent Parasites Out of the Patent System

    Patent Trial and Appeal Board (PTAB) inter partes reviews (IPRs) have contributed a great deal to patent quality and have reduced the number of frivolous patent lawsuits; this means that firms which profit from patent applications and litigation hate it with a passion and still lobby to weaken if not scuttle PTAB

  15. Patents on Computer Software and Plants in the United States Indicative of Systemic Error

    The never-ending expansion of patent scope has meant that patent law firms generally got their way at the patent office; can the courts react fast enough (before confidence in patents and/or public support for patents is altogether shattered)?

  16. Yesterday's Misleading News From Team UPC and Its Aspiring Management of the Unified Patent Court (UPC)

    The Unified Patent Court (UPC) enthusiasts — i.e. those looking to financially gain from it — continue to wrestle with logic, manipulate words and misrepresent the law; yesterday we saw many law firms trying to make it sound as though the UPC is coming to the UK even though this isn’t possible and UPC as a whole is likely already dead

  17. Time for the European Commission to Investigate EPO Corruption Because It May be Partly or Indirectly Connected to EU-IPO, an EU Agency

    The passage of the top role at the EU-IPO from António Campinos to Christian Archambeau would damage confidence in the moral integrity of the European Council; back room deals are alleged to have occurred, implicating corrupt Battistelli

  18. Links 17/7/2018: Catfish 1.4.6 Released, ReactOS 0.4.9, Red Hat's GPL Compliance Group Grows

    Links for the day

  19. Links 16/7/2018: Linux 4.18 RC5, Latte Dock v0.8, Windows Back Doors Resurface

    Links for the day

  20. Alliance for US Startups and Inventors for Jobs (USIJ) Misleads the US Government, Pretending to Speak for Startups While Spreading Lies for the Patent Microcosm

    In the United States, which nowadays strives to raise the patent bar, the House Small Business Committee heard from technology firms but it also heard from some questionable front groups which claim to support "startups" and "jobs" (but in reality support just patents on the face of it)

  21. 'Blockchain', 'Cloud' and Whatever Else Gets Exploited to Work Around 35 U.S.C. § 101 (or the EPC) and Patent Algorithms/Software

    Looking for a quick buck or some low-quality patents (which courts would almost certainly reject), opportunists carry on with their gold rush, aided by buzzwords and hype over pretty meaningless things

  22. PTAB Defended by the EFF, the R Street Institute and CCIA as the Number of Petitions (IPRs) Continues to Grow

    Patent Trial and Appeal Board (PTAB) inter partes reviews (IPRs) come to the rescue when patently-bogus patents are used, covering totally abstract concepts (like software patents do); IPRs continue to increase in number and opponents of PTAB, who conveniently cherry-pick Supreme Court (SCOTUS) decisions, can't quite stop that

  23. IAM/Joff Wild May Have Become a de Facto Media Partner of the Patent Troll iPEL

    Invitation to trolls in China, courtesy of the patent trolls' lobby called "IAM"; this shows no signs of stopping and has become rather blatant

  24. Cautionary Tale: ILO Administrative Tribunal Cases (Appeals) 'Intercepted' Under António Campinos

    The ILO Administrative Tribunal (ILO-AT) is advertised by the EPO's management as access to justice, but it's still being undermined quite severely to the detriment of aggrieved staff

  25. Asking the USPTO to Comply With 35 U.S.C. § 101 is Like Asking Pentagon Officials to Pursue Real, Persistent Peace

    Some profit from selling weapons, whereas others profit from patent grants and litigation; what's really needed right now is patent sanity and adherence to the public interest as well as the law itself, e.g. Supreme Court (SCOTUS) decisions

  26. BT and Sonos Are Still Patent Bullies, Seeing Patents as a Backup Plan

    The companies seeking to complement their business (or make up for their demise) using patents are still suing rivals while calling that litigation "research and development" (the same old euphemism)

  27. Jim Skippen, a Longtime Patent Troll, Admits That the Trolling Sector is Collapsing

    Canada's biggest patent troll (WiLAN) bar BlackBerry doesn't seem to be doing too well as its CEO leaves the domain altogether

  28. From East Asia to the Eastern District of Texas: XYZ Printing, Maxell, and X2Y Attenuators

    The patent aggression, which relies on improper litigation venues, harms innocent parties a great deal; only their lawyers benefit from all this mess

  29. Links 14/7/2018: Mesa 18.1.4, Elisa 0.2.1, More on Python's Guido van Rossum

    Links for the day

  30. Number of Oppositions to Grants/Awards of European Patents at the EPO Has Skyrocketed, Based on Internal Data

    The number of challenged patents continues to soar and staff of the EPO (examiners already over-encumbered by far too much work, due to unrealistic targets) would struggle to cope or simply be compelled to not properly deal with oppositions

CoPilotCo

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

CoPilotCo

Recent Posts