Bonum Certa Men Certa

Research Into Who's Putting DRM Inside Linux

Along with other malicious 'features', such as UEFI 'secure boot'

HDCP



Summary: Back doors may be hard to detect (requires understanding a lot of underlying code), but how about malicious 'features' or antifeatures that are put in the kernel to serve Hollywood at the expense of the kernel's users?

OVER the past week or so Techrights has been 'data-mining' Linux. Many of the details about it will become public (in the form of IRC logs), but the gist of this exploratory effort will occasionally be published with key findings. Several software tools for exploring the kernel's source and patchset were considered and tested, in conjunction with some GNU tools that help gather statistics. There are also known caveats and these can be tackled over time.



"I would look for sudden changes in what's worked on or who is working on it," our member explained, "or maybe even changes in the rates of changes. It will require a lot of manual tweaking to get the author affiliations accurate."

This member prefers to remain anonymous.

"Gource was interesting in other ways though. You could see clearly when interest in ARM increased, same for documentation, and some other components. But by the turn of the century already it was too big to get anything useful out of it."

"Gource also has a custom format which might be of use."

As a first run, how about who puts Intel's HDCP (DRM) in Linux? We already know Google's role and we've seen Google promoting DRM on the World Wide Web (EME). Here's an example query:

git log --name-status -i --grep='hdcp' | \



grep -iE 'commit |Date:|Author:|Signed-Off-By:|Reviewed-By:'| \

sed -r 's/^[[:space:]]+//; s/^commit/\n&/;'


Then map those committing as well as those reviewing and signing off on the code.

"Taking into account all HDCP commits," our member explains, "there were 132 by my count. Of those, Intel and Chromium seem the big committers. I think any serious investigation would need to standardize the names first, since many use more than one e-mail address, and I have looked only for Intel.com and chromium.org domains." This yields the following:

54      Ramalingam C <ramalingam.c@intel.com>
39      Sean Paul <seanpaul@chromium.org>
17      Uma Shankar <uma.shankar@intel.com>
8       Rodrigo Vivi <rodrigo.vivi@intel.com>
3       Ville Syrjälä <ville.syrjala@linux.intel.com>
3       Tomas Winkler <tomas.winkler@intel.com>
3       Jani Nikula <jani.nikula@intel.com>
2       Imre Deak <imre.deak@intel.com>
2       Ramalingam C <ramalingm.c@intel.com>
2       Cooper Chiou <cooper.chiou@intel.com>
2       Joonas Lahtinen <joonas.lahtinen@linux.intel.com>
2       Gary Wang <gary.c.wang@intel.com>
1       Radhakrishna Sripada <radhakrishna.sripada@intel.com>
1       Daniel Kurtz <djkurtz@chromium.org>
1       Sonika Jindal <sonika.jindal@intel.com>
1       Daniel Vetter <daniel.vetter@intel.com>
1       Guenter Roeck <groeck@chromium.org>
1       Rafael J. Wysocki <rafael.j.wysocki@intel.com>
1       Anusha Srivatsa <anusha.srivatsa@intel.com>
1       Shashank Sharma <shashank.sharma@intel.com>


"Just to be clear," the member said, "the above includes reviewers and signers too."

We are going to use the tools (not just Gource but others under consideration and use) to further analyse this. We don't want to jump to any conclusions just yet, but it is widely known that Intel employees are sanitising Linux source code (with "hugs"), citing the new CoC, and there are attacks on prominent Linux developers who reject their patches. Readers probably know which Intel employees did this. We don't want to amplify their smears. We mentioned that in passing four years ago.

We have more analysis on the way; "that will do as a start," as one might put it. As our member put it, "some of the one-time commits might be more dangerous. What does this one unlock, beyond what is shown at the surface?"

commit f699f9f9ac87f0c774cbf3b9d4b8f336221f3a88
Author: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Date:   Thu Feb 28 12:55:40 2019 +0100


The Linux Foundation does not oppose DRM; look at the Board members and who funds this foundation. It does not oppose software patents either. Does it oppose anything at all? Apparently only people who are critical of it (or its collective agenda).

Recent Techrights' Posts

Hiring for Tech Roles Based on Perceived Loyalty is No Better Than Hiring to Meet Diversity Quotas
What we're seeing right now is a national security disaster and it is almost purely about technology
S.E.O. SPAM by Serial Sloppers With L.L.M. Garbage is Hurting Linux
We continue to run Slopwatch
IBM Says That Half of Its "Assets" is Basically Pure Fiction ("Goodwill")
It times get tough, IBM can sell "Goodwill" at the local pawn shop and pay back the lenders, right?
 
Links 01/02/2025: Chinese and American Censorship, Cloud-[sic]Native Targeted by Software Patents
Links for the day
Links 01/02/2025: Belated Happy New Year 2025 and Gabbro 0.1.2
Links for the day
Links 01/02/2025: Administrative Chaos and Aviation Disasters Persist
Links for the day
Arrested: Albanian Outreachy whistleblowers, Sonny Piers GNOME & Debian connections
Reprinted with permission from Daniel Pocock
Links 1/2/2025: LLM Hype Revisited, Linuxwashing by Oumi
Links for the day
Growing Evidence That the Patent Industry Has Become a Major Scam
Seeing that the patent "industry" has turned to serious crimes (sometimes to cover up corruption) and seeing that the net negative is clearer for all to see, people who argue for abolition of all patents will have a field day
Planet Ubuntu Overrun by LLM Slop? Faizul "Piju" 9M2PJU Seems to be Publishing Fake Articles About "Linux"...
Maybe it is "assisted" by LLM slop, but slop is slop and it introduces many problems
Gemini Links 01/02/2025: LLMs, Analog Computer, and BorgBackup
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, January 31, 2025
IRC logs for Friday, January 31, 2025
Links 31/01/2025: Mass Layoffs at Amazon and Microsoft, Sweden Again Fails to Protect Critics of Violence
Links for the day
Slopwatch: Fake Articles About "Linux" and More (Latest Roundup Featuring BetaNews, Janus Atienza, and Brittany Day From Guardian Digital, Inc)
LLM slop season
Microsoft Staff Explains How Microsoft Swindled Employees and Avoided Paying Out Severance Pay (Microsoft Hasn't Much Money Left in the Bank)
This is a classic way to avoid paying workers
"Not one of us" by Dr. Andy Farnell
Elon Musk has brought embarrassment to nerds and technologists
Gemini Links 31/01/2025: "Bulletin Buble" and "Why Blog?"
Links for the day
Static Site Generators (SSGs) Pay Off: Vastly Faster Sites, Much Smaller Hosting Bills
success story for SSGs
Of Note: Linux Foundation Has Already Let Linux.com Rot for About 4 Months (No Activity)
there's no campaign aside from marketing spam there
Techrights Should be Even Faster Now
We're now better off
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, January 30, 2025
IRC logs for Thursday, January 30, 2025
Richard Stallman (RMS) Gave 3 Talks in India in Less Than a Week
In India this month we've not seen a single negative comment about RMS
Indian Data Biases statCounter For or Against "Linux"
In statCounter, the GNU/Linux increases and decreases are deeply tied to what it does with data collected in India
The Corporate Media Pretends That Facebook ("Meta") Has Performed Well, But Its Debt Doubles Every 2 Years Despite Mass Layoffs
That same media also helps parrot misleading financial claims
Microsoft's Debt Surged by More Than 6,000,000,000 Dollars in Just 3 Months
numbers released hours ago
The Sheer Irony of Microsoft Proxy Accusing Others of 'Stealing'
Wherever DeepSick's data came from, Microsoft (or its proxy) is in no position to issue criticism.
The Difference a Decade (and GAFAM Money) Makes
Credibility cannot be purchased
[Meme] The Free Software Foundation (FSF) Has Critics Because Its Message is Effective
Applying to others the same standards one is willing to violate?
The Free Software Foundation (FSF) Raised $422,000 (Another $22k in the Two Weeks After Campaign Ended), Proving That Truth and Justice Tend to Find a Way
10,000+ dollars a week even without campaigning for more funds
Faking Revenue Increase by Buying Your Own Products and Services (Through Scams and Scammers Like Scam Altman)
Is this what society deserves? Media that instead of exposing corruption has chosen to participate in it and profit from it?
Microsoft Mass Layoffs Without Severance Pay Reported Hours After Microsoft Reported Weak Numbers and Microsoft Stock Fell
Microsoft has a bloodbath this month
Links 30/01/2025: Fentanylware (TikTok) Causes Deaths, FBI Seizes Domains
Links for the day
Gemini Links 30/01/2025: Action vs Inaction, Gopherholes, and More
Links for the day
Another Slew of Fake Articles About 'Linux' and 'Security' From Brittany Day at linuxsecurity.com (Spamfarm/Slopfarm)
linuxsecurity.com is basically a pariah and parasite. It lessens the incentive to write real articles about "Linux" by generating fake ones to outrank the originals.
Links 30/01/2025: Microsoft Wants Convicted Felon to Give Fentanylware (TikTok) to It (After Making a Phonecall Asking for That in 2019), "Moving Away From Google's Ecosystem"
Links for the day
Jack M. Germain (LinuxInsider) Seems to Have Turned to LLM Slop, Graphics Slop, and B2B SPAM
LinuxInsider is barely active anymore
Links 30/01/2025: Amazon Layoffs and DeepSeek Panic
Links for the day
Gemini Links 30/01/2025: Chaos Reigns, E-mail, Searching
Links for the day
IBM: Many Thousands of Layoffs in 2025
If 2025 is expected to be the same, then perhaps about 20,000 IBM workers will no longer be there
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, January 29, 2025
IRC logs for Wednesday, January 29, 2025