04.26.19

Gemini version available ♊︎

Research Into Who’s Putting DRM Inside Linux

Posted in DRM, GNU/Linux at 1:48 am by Dr. Roy Schestowitz

Along with other malicious ‘features’, such as UEFI ‘secure boot’

HDCP

Summary: Back doors may be hard to detect (requires understanding a lot of underlying code), but how about malicious ‘features’ or antifeatures that are put in the kernel to serve Hollywood at the expense of the kernel’s users?

OVER the past week or so Techrights has been ‘data-mining’ Linux. Many of the details about it will become public (in the form of IRC logs), but the gist of this exploratory effort will occasionally be published with key findings. Several software tools for exploring the kernel’s source and patchset were considered and tested, in conjunction with some GNU tools that help gather statistics. There are also known caveats and these can be tackled over time.

“I would look for sudden changes in what’s worked on or who is working on it,” our member explained, “or maybe even changes in the rates of changes. It will require a lot of manual tweaking to get the author affiliations accurate.”

This member prefers to remain anonymous.

“Gource was interesting in other ways though. You could see clearly when interest in ARM increased, same for documentation, and some other components. But by the turn of the century already it was too big to get anything useful out of it.”

“Gource also has a custom format which might be of use.”

As a first run, how about who puts Intel’s HDCP (DRM) in Linux? We already know Google’s role and we’ve seen Google promoting DRM on the World Wide Web (EME). Here’s an example query:

git log --name-status -i --grep='hdcp' | \

grep -iE 'commit |Date:|Author:|Signed-Off-By:|Reviewed-By:'| \

sed -r 's/^[[:space:]]+//; s/^commit/\n&/;'

Then map those committing as well as those reviewing and signing off on the code.

“Taking into account all HDCP commits,” our member explains, “there were 132 by my count. Of those, Intel and Chromium seem the big committers. I think any serious investigation would need to standardize the names first, since many use more than one e-mail address, and I have looked only for Intel.com and chromium.org domains.” This yields the following:

54      Ramalingam C <ramalingam.c@intel.com>
39      Sean Paul <seanpaul@chromium.org>
17      Uma Shankar <uma.shankar@intel.com>
8       Rodrigo Vivi <rodrigo.vivi@intel.com>
3       Ville Syrjälä <ville.syrjala@linux.intel.com>
3       Tomas Winkler <tomas.winkler@intel.com>
3       Jani Nikula <jani.nikula@intel.com>
2       Imre Deak <imre.deak@intel.com>
2       Ramalingam C <ramalingm.c@intel.com>
2       Cooper Chiou <cooper.chiou@intel.com>
2       Joonas Lahtinen <joonas.lahtinen@linux.intel.com>
2       Gary Wang <gary.c.wang@intel.com>
1       Radhakrishna Sripada <radhakrishna.sripada@intel.com>
1       Daniel Kurtz <djkurtz@chromium.org>
1       Sonika Jindal <sonika.jindal@intel.com>
1       Daniel Vetter <daniel.vetter@intel.com>
1       Guenter Roeck <groeck@chromium.org>
1       Rafael J. Wysocki <rafael.j.wysocki@intel.com>
1       Anusha Srivatsa <anusha.srivatsa@intel.com>
1       Shashank Sharma <shashank.sharma@intel.com>

“Just to be clear,” the member said, “the above includes reviewers and signers too.”

We are going to use the tools (not just Gource but others under consideration and use) to further analyse this. We don’t want to jump to any conclusions just yet, but it is widely known that Intel employees are sanitising Linux source code (with “hugs”), citing the new CoC, and there are attacks on prominent Linux developers who reject their patches. Readers probably know which Intel employees did this. We don’t want to amplify their smears. We mentioned that in passing four years ago.

We have more analysis on the way; “that will do as a start,” as one might put it. As our member put it, “some of the one-time commits might be more dangerous. What does this one unlock, beyond what is shown at the surface?”

commit f699f9f9ac87f0c774cbf3b9d4b8f336221f3a88
Author: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Date:   Thu Feb 28 12:55:40 2019 +0100

The Linux Foundation does not oppose DRM; look at the Board members and who funds this foundation. It does not oppose software patents either. Does it oppose anything at all? Apparently only people who are critical of it (or its collective agenda).

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

DecorWhat Else is New


  1. Links 06/12/2022: LibreOffice 7.5 Alpha and digiKam 7.9.0

    Links for the day



  2. Rumour: Very Large Microsoft Layoffs (Another Round) Next Month, Lists Already Being Prepared





  3. Benoît Battistelli in 2015: EPO is Ready to Start Unified Patent Court (UPC), Expect UPC in 2016

    We’re almost in 2023 and UPC is being delayed again; this is what EPO President Benoît Battistelli said way back in 2015 (official video from the EPO; 3:45-4:34 cropped apart)



  4. IRC Proceedings: Monday, December 05, 2022

    IRC logs for Monday, December 05, 2022



  5. Links 06/12/2022: FreeBSD 12.4 and Inkscape 1.2.2

    Links for the day



  6. Sirius Not-So-‘Open Source’: Cannot Talk to Colleagues, Cannot Speak About Work

    Cover-up and lies became a corporate pattern at the company where I had worked since 2011; it was time to go in order to avoid cooperation in unethical activities



  7. [Meme] Guilt by Association

    Sirius ‘Open Source’ has a history of hostility towards people with disabilities; the company got sued over this, but kept the lawsuit secret



  8. That Time Sirius 'Open Source' Fired a Blind Lady While Gagging Sympathetic Staff

    Sirius 'Open Source' was taken to court after it had wrongly fired a couple of employees, one of whom was blind; this was accompanied by lies about why the staff's communication server was shut down



  9. Links 05/12/2022: Gnoppix Linux 22.12 and Armbian 22.11

    Links for the day



  10. Unified Patent Court (UPC) is “Real Soon Now!” Since 2014

    The Unified Patent Court (UPC) lobby is once again forced to admit issues and delays; we've seen this time and time again for nearly a decade already



  11. Unified Patent Court (UPC) 'Delayed' Again, As Usual, as Unitary Patent Boosters Caught Up in Lies and Scandals

    “UPC [is] delayed by 2 months,” a source has told us, dubbing it “good news” and reaffirming what we’ve said this past year; this litigation lobby's 'wishlist' system isn’t legal, it’s not ready, there are yet more scandals, and journalists have been catching up with these scandals



  12. Links 05/12/2022: GStreamer 1.21.3

    Links for the day



  13. IRC Proceedings: Sunday, December 04, 2022

    IRC logs for Sunday, December 04, 2022



  14. Links 04/12/2022: Status of the 15-Minute Bug Initiative

    Links for the day



  15. When a Company Simply Refuses to Talk to Technical and Exerienced Staff Through Internal Avenues

    When companies behave like monarchies where staff has no role at all in decision-making and decisions are made in violation of those companies’ tenets (or mission statements) it is inevitable that staff will issue concerns, first internally and — failing that — in other channels



  16. [Meme] Kings Instead of Open Consultation Among Peers

    In Sirius there’s no room for debate, even among half a dozen or so technical colleagues; decisions are made in the dark by a tightly-knit cabal (with rather childish superhero cartoons as their avatars) and then imposed on everybody else (hardly democratic, not sane)



  17. Sirius Open Source: The Home of Stress and Bullying by Management

    Part 3 of a report regarding Sirius Open Source, which is imploding after bad judgement and misuse of power against employees



  18. Links 04/12/2022: Fosshost Shudown and OpenIndiana Hipster 2022.10

    Links for the day



  19. Links 03/12/2022: pgAdmin 4 Version 6.17

    Links for the day



  20. IRC Proceedings: Saturday, December 03, 2022

    IRC logs for Saturday, December 03, 2022



  21. Office Manager in Company Without an Office

    Imagine having an “Office Manager” in a company that does not even have an office. Welcome to corporate posturing.



  22. Dishonest Companies Disguised as 'Open Source' (After Abandoning It)

    A deeper look at the way Sirius Open Source presents itself to the public (including prospective and existing clients); This is clearly not the company that I joined nearly 12 years ago



  23. When the Founder of Your Company Supports Donald Trump the Company Ends up Active in Fascist Platforms

    Politics weren’t allowed in Sirius ‘Open Source’, but there were exceptions for some people (close to management) and it didn’t look good



  24. [Meme] Sirius Actually Used to Promote Free/Libre and Open Source Software

    Before people who reject Free/Libre and Open Source software were put in charge of Sirius ‘Open Source’ concrete steps had been taken to support the wider community (or the suppliers, who were mostly volunteers)



  25. Sirius 'Open Source' When It Actually Understood and Respected Software Freedom

    The company my wife and I joined was (at the time) still Free software-centric and reasonably friendly towards staff; today we examine Sirius of a decade ago



  26. Links 03/12/2022: 4MLinux 41, GNOME E-mail System Melting Down

    Links for the day



  27. Links 03/12/2022: KDE Report and Canonical Lying to Staff

    Links for the day



  28. Sirius 'Open Source' Lists 49 Firms/Organisations as Clients But Only 4 of Them Currently Are

    Sirius Open Source is nowhere as popular as it wants people to think



  29. Sirius 'Open Source' Lists 15 People as Staff, But Only 6 Work in the Company

    Sirius Open Source is nowhere as big as it wants people to believe (like it is a trans-Atlantic thriving firm, the “Sirius Group”)



  30. Storm Brewing Over the Future and Nature of the Internet

    Subsidies for Web giants (and shareholders of such giants) will run out; what will happen to the Internet when this inevitably happens?


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts