Bonum Certa Men Certa

Research Into Who's Putting DRM Inside Linux

Along with other malicious 'features', such as UEFI 'secure boot'

HDCP



Summary: Back doors may be hard to detect (requires understanding a lot of underlying code), but how about malicious 'features' or antifeatures that are put in the kernel to serve Hollywood at the expense of the kernel's users?

OVER the past week or so Techrights has been 'data-mining' Linux. Many of the details about it will become public (in the form of IRC logs), but the gist of this exploratory effort will occasionally be published with key findings. Several software tools for exploring the kernel's source and patchset were considered and tested, in conjunction with some GNU tools that help gather statistics. There are also known caveats and these can be tackled over time.



"I would look for sudden changes in what's worked on or who is working on it," our member explained, "or maybe even changes in the rates of changes. It will require a lot of manual tweaking to get the author affiliations accurate."

This member prefers to remain anonymous.

"Gource was interesting in other ways though. You could see clearly when interest in ARM increased, same for documentation, and some other components. But by the turn of the century already it was too big to get anything useful out of it."

"Gource also has a custom format which might be of use."

As a first run, how about who puts Intel's HDCP (DRM) in Linux? We already know Google's role and we've seen Google promoting DRM on the World Wide Web (EME). Here's an example query:

git log --name-status -i --grep='hdcp' | \



grep -iE 'commit |Date:|Author:|Signed-Off-By:|Reviewed-By:'| \

sed -r 's/^[[:space:]]+//; s/^commit/\n&/;'


Then map those committing as well as those reviewing and signing off on the code.

"Taking into account all HDCP commits," our member explains, "there were 132 by my count. Of those, Intel and Chromium seem the big committers. I think any serious investigation would need to standardize the names first, since many use more than one e-mail address, and I have looked only for Intel.com and chromium.org domains." This yields the following:

54      Ramalingam C <ramalingam.c@intel.com>
39      Sean Paul <seanpaul@chromium.org>
17      Uma Shankar <uma.shankar@intel.com>
8       Rodrigo Vivi <rodrigo.vivi@intel.com>
3       Ville Syrjälä <ville.syrjala@linux.intel.com>
3       Tomas Winkler <tomas.winkler@intel.com>
3       Jani Nikula <jani.nikula@intel.com>
2       Imre Deak <imre.deak@intel.com>
2       Ramalingam C <ramalingm.c@intel.com>
2       Cooper Chiou <cooper.chiou@intel.com>
2       Joonas Lahtinen <joonas.lahtinen@linux.intel.com>
2       Gary Wang <gary.c.wang@intel.com>
1       Radhakrishna Sripada <radhakrishna.sripada@intel.com>
1       Daniel Kurtz <djkurtz@chromium.org>
1       Sonika Jindal <sonika.jindal@intel.com>
1       Daniel Vetter <daniel.vetter@intel.com>
1       Guenter Roeck <groeck@chromium.org>
1       Rafael J. Wysocki <rafael.j.wysocki@intel.com>
1       Anusha Srivatsa <anusha.srivatsa@intel.com>
1       Shashank Sharma <shashank.sharma@intel.com>


"Just to be clear," the member said, "the above includes reviewers and signers too."

We are going to use the tools (not just Gource but others under consideration and use) to further analyse this. We don't want to jump to any conclusions just yet, but it is widely known that Intel employees are sanitising Linux source code (with "hugs"), citing the new CoC, and there are attacks on prominent Linux developers who reject their patches. Readers probably know which Intel employees did this. We don't want to amplify their smears. We mentioned that in passing four years ago.

We have more analysis on the way; "that will do as a start," as one might put it. As our member put it, "some of the one-time commits might be more dangerous. What does this one unlock, beyond what is shown at the surface?"

commit f699f9f9ac87f0c774cbf3b9d4b8f336221f3a88
Author: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Date:   Thu Feb 28 12:55:40 2019 +0100


The Linux Foundation does not oppose DRM; look at the Board members and who funds this foundation. It does not oppose software patents either. Does it oppose anything at all? Apparently only people who are critical of it (or its collective agenda).

Recent Techrights' Posts

Windows is an Unnatural Disaster, It is Also Avoidable
there's a wide window of opportunity opening
Killing the News With Spam and Slop Benefits Those Whose Desire is an Uninformed Population
adoption of Free software depends indirectly on political activities/activism
Open Source Initiative (OSI) Privacy Fiasco in Detail: An Introduction
Perhaps tomorrow or perhaps next week we'll share more information about what happened and what was reported to the California Privacy Protection Agency
IBM's BS (Bait, Switch) Regarding Ways to Stay Onboard
PIPs, RTOs, and forced relocations are just an illusion of choice (or ability to recover)
Banned evidence: Ars Technica forums censored email predicting DebConf23 death, Abraham Raji & Debian cover-up
Reprinted with permission from Daniel Pocock
 
Links 30/03/2025: "Quantum Randomness" and "F-1 Visa Revoked" in US
Links for the day
Gemini Links 30/03/2025: US as a Threat, Returning to the WWW
Links for the day
Links 30/03/2025: Judge Blocks Dismantling Of VOA, Turkey Arrested Many Journalists
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, March 29, 2025
IRC logs for Saturday, March 29, 2025
Judges Would Never Rule for Men Who Strangle Women or Against Women Who Merely Wrote Articles About Abuse They Had Received From Men
We don't intend to do "trial by media", so we won't be disclosing claims and defences until it's over
Gemini Links 29/03/2025: Less YouTube and More Station
Links for the day
In Some Countries, Such as Thailand, Firefox is Already Measured at Less Than 2% (One Day Firefox Will Get Blocked, Not Only Lack Support)
Web consolidation around Chrom-isms will doom the Web as we know it
Links 29/03/2025: Trademarks Battles, Fires Destroy More Than 3,000 South Korean Homes
Links for the day
Links 29/03/2025: More Crackdowns on Science, "Hey Hi" Slopping is Flopping
Links for the day
Costa Rica Almost Bankrupt Because of Microsoft
the incidents in Costa Rica are Windows incidents
Gemini Links 29/03/2025: Art of Looking, Wireguard, EMacs
Links for the day
Links 29/03/2025: Attacks on Social Security and War Updates
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, March 28, 2025
IRC logs for Friday, March 28, 2025
Intimidation, Threats, and Bullying Not Tolerated by Techrights
When it comes to our reporting, safety always comes first
A World Without Rules
We're long insisted on better laws and actual enforcement of them (applicable to all, not selectively applied)
statCounter Sees Microsoft Windows Falling to New, Unprecedented Lows in Palau
Taking Android into account, Windows is now down to an all-time low of 14%
Google News Lost the Fight to LLM Slop (While Google Itself Sells Slop, Nowadays Under the Name "Gemini")
Many people say that "Google is getting worse"; that's almost an understatement
Links 28/03/2025: AirAsia Trouble Again, UMich Culls All DEI Programs
Links for the day
Gemini Links 28/03/2025: Alexa is for Gullible People, Rant About Feature Overload
Links for the day
The SLAPPs From the Microsoft Strangler (and Sidekick) No Better Than Patent Trolling
one must never settle with trolls
Something to Celebrate in Gemini Protocol
More capsules and users join in
Links 28/03/2025: Last Reminder "to Delete Your 23andMe Data", "UK's First Permanent Facial Recognition Cameras Installed"
Links for the day
Microsoft Canonical Continues Its FUD (Fear, Uncertainty, Doubt) Campaign, Reveals Google Too Sponsored It
They're paid-for lies from a Chinese company that takes GAFAM money to write puff pieces about them
Android Rises Above 76% in Mozambique, Leaving Windows in the Dust
Windows may soon be measured as smaller than Apple's iOS
IBM, Red Hat and Microsoft Probably Also Manipulate Metrics (It Helps Con the Shareholders)
Wall Street's credibility will depend on enforcement of "checks and balances"
Slopwatch: trendhunter.com and Other Pure Junk From "Google News"
The need to vet sources is hardly new; anyone can spew out anything, anywhere. There's a need for vetting.
Gemini Links 28/03/2025: Rewatching The X-Files, Slop Concerns, and NOSTR Censorship
Links for the day
Links 28/03/2025: Australia at Risk, EPO Grants Illegal Patents With Illegal Effect
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, March 27, 2025
IRC logs for Thursday, March 27, 2025