Bonum Certa Men Certa

Research Into Who's Putting DRM Inside Linux

Along with other malicious 'features', such as UEFI 'secure boot'

HDCP



Summary: Back doors may be hard to detect (requires understanding a lot of underlying code), but how about malicious 'features' or antifeatures that are put in the kernel to serve Hollywood at the expense of the kernel's users?

OVER the past week or so Techrights has been 'data-mining' Linux. Many of the details about it will become public (in the form of IRC logs), but the gist of this exploratory effort will occasionally be published with key findings. Several software tools for exploring the kernel's source and patchset were considered and tested, in conjunction with some GNU tools that help gather statistics. There are also known caveats and these can be tackled over time.



"I would look for sudden changes in what's worked on or who is working on it," our member explained, "or maybe even changes in the rates of changes. It will require a lot of manual tweaking to get the author affiliations accurate."

This member prefers to remain anonymous.

"Gource was interesting in other ways though. You could see clearly when interest in ARM increased, same for documentation, and some other components. But by the turn of the century already it was too big to get anything useful out of it."

"Gource also has a custom format which might be of use."

As a first run, how about who puts Intel's HDCP (DRM) in Linux? We already know Google's role and we've seen Google promoting DRM on the World Wide Web (EME). Here's an example query:

git log --name-status -i --grep='hdcp' | \



grep -iE 'commit |Date:|Author:|Signed-Off-By:|Reviewed-By:'| \

sed -r 's/^[[:space:]]+//; s/^commit/\n&/;'


Then map those committing as well as those reviewing and signing off on the code.

"Taking into account all HDCP commits," our member explains, "there were 132 by my count. Of those, Intel and Chromium seem the big committers. I think any serious investigation would need to standardize the names first, since many use more than one e-mail address, and I have looked only for Intel.com and chromium.org domains." This yields the following:

54      Ramalingam C <ramalingam.c@intel.com>
39      Sean Paul <seanpaul@chromium.org>
17      Uma Shankar <uma.shankar@intel.com>
8       Rodrigo Vivi <rodrigo.vivi@intel.com>
3       Ville Syrjälä <ville.syrjala@linux.intel.com>
3       Tomas Winkler <tomas.winkler@intel.com>
3       Jani Nikula <jani.nikula@intel.com>
2       Imre Deak <imre.deak@intel.com>
2       Ramalingam C <ramalingm.c@intel.com>
2       Cooper Chiou <cooper.chiou@intel.com>
2       Joonas Lahtinen <joonas.lahtinen@linux.intel.com>
2       Gary Wang <gary.c.wang@intel.com>
1       Radhakrishna Sripada <radhakrishna.sripada@intel.com>
1       Daniel Kurtz <djkurtz@chromium.org>
1       Sonika Jindal <sonika.jindal@intel.com>
1       Daniel Vetter <daniel.vetter@intel.com>
1       Guenter Roeck <groeck@chromium.org>
1       Rafael J. Wysocki <rafael.j.wysocki@intel.com>
1       Anusha Srivatsa <anusha.srivatsa@intel.com>
1       Shashank Sharma <shashank.sharma@intel.com>


"Just to be clear," the member said, "the above includes reviewers and signers too."

We are going to use the tools (not just Gource but others under consideration and use) to further analyse this. We don't want to jump to any conclusions just yet, but it is widely known that Intel employees are sanitising Linux source code (with "hugs"), citing the new CoC, and there are attacks on prominent Linux developers who reject their patches. Readers probably know which Intel employees did this. We don't want to amplify their smears. We mentioned that in passing four years ago.

We have more analysis on the way; "that will do as a start," as one might put it. As our member put it, "some of the one-time commits might be more dangerous. What does this one unlock, beyond what is shown at the surface?"

commit f699f9f9ac87f0c774cbf3b9d4b8f336221f3a88
Author: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Date:   Thu Feb 28 12:55:40 2019 +0100


The Linux Foundation does not oppose DRM; look at the Board members and who funds this foundation. It does not oppose software patents either. Does it oppose anything at all? Apparently only people who are critical of it (or its collective agenda).

Recent Techrights' Posts

Alex Oliva, the Potential 'Successor' of RMS, Has a New Web Site
More freedom for Alex Oliva
Azure is Turning 17 This Year, Still Losing Money and Staff
Hallmark of pyramid schemes, deriving "value" out of things that do not really exist?
 
Links 16/02/2025: Oligarchs "Collect Your Data and Control Your World", Global Temperatures Shoot Up
Links for the day
Promoting Microsoft Windows With LLM Slop
What is the policy at BetaNews regarding LLM slop?
Links 16/02/2025: "Microsoft Is Laying Off Employees" and Internal Dissent Brewing at Facebook Over Regime Complicity
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, February 15, 2025
IRC logs for Saturday, February 15, 2025
Links 15/02/2025: Harms to Health, Public Domain, and More
Links for the day
Gemini Links 15/02/2025: On Autistic People, AuraGem Over HTTPS
Links for the day
The Cyber Show (C|S) Speaks of the "Rise of the Nerd Reich."
This 'Valentine Episode' is quite good
Strong Momentum for the Free Software Foundation (FSF) as Winter Approaches Its End in Boston or in the Northern Hemisphere
FSF's founder, Richard Stallman, gives another talk in Italy in 9 days from now
The 'Drunken Plagiarists' Are Harming Journalism About GNU/Linux
They lessen the incentive to do real journalism abut GNU/Linux
Female Nazis and racist Swiss women
Reprinted with permission from Daniel Pocock
Richard Stallman on RISC-V and Free Hardware
Invidious is under attack by Google
Links 15/02/2025: Erasing of American Science and Tesla SLAPPing Critics
Links for the day
IDG 'Reviews' of GNU/Linux Now Contain LLM Slop
It's typically ads or commercials... or sometimes spin disguised as news
Gemini Links 15/02/2025: Spectacles and "Before Sunset", Moving Domains Out of the US
Links for the day
Microsoft Has Only $17,482 Million Left, "Cash on Hand" Sank 40 Billion Dollars in 2 Years
Microsoft runs low on money in the bank
YouTube Layoffs Mean That YouTube is Still Losing a Lot of Money (Net Income or Profit Almost Definitely Negative)
In more recent years Google defunded many vloggers
In Gopher and Gemini Protocol People Abandon Services Based in the United States
There's no resistance whatsoever
Python and Microsoft: Pandas Should Have Known OpenDocument Format (ODF) and Microsoft Excel Are Different and Competing Things
now we're meant to think that in order to open ODF files we need some functions with "Excel" in their name
Not Only Windows, Surface, and "Hey Hi" PCs; Microsoft's Hardware Ventures Are a Dumpster Fire; HoloLens Mixed Reality Hardware Now Axed Altogether and Staff is Miserable
Microsoft is in a terrible state
Certificate Authority (CA) Let's Encrypt Now Down to TEN (0.3% of the Whole) in Geminispace
The number of capsules that use Let's Encrypt is, according to Lupa, about to fall to single-digit figures
Links 15/02/2025: University Price Hikes and Copyright Action Against Slop Companies
Links for the day
Slopwatch: All Those New 'Articles' Are Fake and Crafted by Chatbots (LLM Slop)
Google News is promoting these as "Linux" news; they're not even made by humans
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, February 14, 2025
IRC logs for Friday, February 14, 2025
Gemini Links 14/02/2025: Mysterious Friend and "Eight by Eight"
Links for the day
They Will Never Leave Linus Torvalds Alone, Rust is Just Another Way to Cause Instability and Infighting in Linux
We already identified the Rust "community" as troublemakers more than 5 years ago and we wrote about the evidence
Apple: Social Justice or Social Nationalism?
Remember to buy Apple, folks
Links 14/02/2025: Mass Layoffs at Sophos, Chatbots Failing Very Badly, "DOGE as a National Cyberattack"
Links for the day
Moving Away From Certificate Authorities (CAs) Like Let's Encrypt Means Taking Away From the US Government the Power to 'Censor' Sites by Revoking Certificates
Gemini capsule is cheap to run and easy (easier than a Web site) to maintain. More people disillusioned and frustrated with social control media flock to it.
BetaNews' Managing Editor Wayne William Took Charge of GNU/Linux Articles and His Articles Are Real (He Actually Wrote Them)
We are frankly relieved to see that Wayne William recognised the problem and did something about it
Links 14/02/2025: Publicity Rights Violated (ByteDance), Bribes to Trump Passed via Social Control Media 'Settlements' Again
Links for the day
Gemini Links 14/02/2025: Constitution, Cosmic DE, and More
Links for the day
Slopwatch: Anti-Linux Articles Published by Bots, Dominating Google News
So a lot of the Web is Microsoft chatbot-generated anti-Linux FUD
Links 14/02/2025: Measles Outbreak in Texas, Zelensky Warns Russia Will Attack a NATO Country
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, February 13, 2025
IRC logs for Thursday, February 13, 2025