Bonum Certa Men Certa

Research Into Who's Putting DRM Inside Linux

Along with other malicious 'features', such as UEFI 'secure boot'

HDCP



Summary: Back doors may be hard to detect (requires understanding a lot of underlying code), but how about malicious 'features' or antifeatures that are put in the kernel to serve Hollywood at the expense of the kernel's users?

OVER the past week or so Techrights has been 'data-mining' Linux. Many of the details about it will become public (in the form of IRC logs), but the gist of this exploratory effort will occasionally be published with key findings. Several software tools for exploring the kernel's source and patchset were considered and tested, in conjunction with some GNU tools that help gather statistics. There are also known caveats and these can be tackled over time.



"I would look for sudden changes in what's worked on or who is working on it," our member explained, "or maybe even changes in the rates of changes. It will require a lot of manual tweaking to get the author affiliations accurate."

This member prefers to remain anonymous.

"Gource was interesting in other ways though. You could see clearly when interest in ARM increased, same for documentation, and some other components. But by the turn of the century already it was too big to get anything useful out of it."

"Gource also has a custom format which might be of use."

As a first run, how about who puts Intel's HDCP (DRM) in Linux? We already know Google's role and we've seen Google promoting DRM on the World Wide Web (EME). Here's an example query:

git log --name-status -i --grep='hdcp' | \



grep -iE 'commit |Date:|Author:|Signed-Off-By:|Reviewed-By:'| \

sed -r 's/^[[:space:]]+//; s/^commit/\n&/;'


Then map those committing as well as those reviewing and signing off on the code.

"Taking into account all HDCP commits," our member explains, "there were 132 by my count. Of those, Intel and Chromium seem the big committers. I think any serious investigation would need to standardize the names first, since many use more than one e-mail address, and I have looked only for Intel.com and chromium.org domains." This yields the following:

54      Ramalingam C <ramalingam.c@intel.com>
39      Sean Paul <seanpaul@chromium.org>
17      Uma Shankar <uma.shankar@intel.com>
8       Rodrigo Vivi <rodrigo.vivi@intel.com>
3       Ville Syrjälä <ville.syrjala@linux.intel.com>
3       Tomas Winkler <tomas.winkler@intel.com>
3       Jani Nikula <jani.nikula@intel.com>
2       Imre Deak <imre.deak@intel.com>
2       Ramalingam C <ramalingm.c@intel.com>
2       Cooper Chiou <cooper.chiou@intel.com>
2       Joonas Lahtinen <joonas.lahtinen@linux.intel.com>
2       Gary Wang <gary.c.wang@intel.com>
1       Radhakrishna Sripada <radhakrishna.sripada@intel.com>
1       Daniel Kurtz <djkurtz@chromium.org>
1       Sonika Jindal <sonika.jindal@intel.com>
1       Daniel Vetter <daniel.vetter@intel.com>
1       Guenter Roeck <groeck@chromium.org>
1       Rafael J. Wysocki <rafael.j.wysocki@intel.com>
1       Anusha Srivatsa <anusha.srivatsa@intel.com>
1       Shashank Sharma <shashank.sharma@intel.com>


"Just to be clear," the member said, "the above includes reviewers and signers too."

We are going to use the tools (not just Gource but others under consideration and use) to further analyse this. We don't want to jump to any conclusions just yet, but it is widely known that Intel employees are sanitising Linux source code (with "hugs"), citing the new CoC, and there are attacks on prominent Linux developers who reject their patches. Readers probably know which Intel employees did this. We don't want to amplify their smears. We mentioned that in passing four years ago.

We have more analysis on the way; "that will do as a start," as one might put it. As our member put it, "some of the one-time commits might be more dangerous. What does this one unlock, beyond what is shown at the surface?"

commit f699f9f9ac87f0c774cbf3b9d4b8f336221f3a88
Author: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Date:   Thu Feb 28 12:55:40 2019 +0100


The Linux Foundation does not oppose DRM; look at the Board members and who funds this foundation. It does not oppose software patents either. Does it oppose anything at all? Apparently only people who are critical of it (or its collective agenda).

Recent Techrights' Posts

Morale at Microsoft Sinking, More Layoffs Expected, Stock Buybacks Blasted
controversial because they should really be illegal
 
When Microsoft Pays a Lot of Money to Reddit, 'Linux' Foundation, and Countless Other Entities
As does Google
A CoC Will Destroy Your Free Software Community and Help Imposers of CoC (Like Microsoft)
Abusers like to disguise censorship (of their abuse) as "manners" or good "conduct"
IBM Likely Breaking Several Laws With Latest 'Secret' Mass Layoffs
Never sign an NDA
Gemini Links 19/09/2024: Emacs Wiki and China, IRC Chatting
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, September 18, 2024
IRC logs for Wednesday, September 18, 2024
Links 18/09/2024: Web Server Survey Shows Microsoft Down Again, Omkhar Arasaratnam Leaves Microsoft-connected OpenSSF
Links for the day
Links 18/09/2024: Gaming Layoffs and New Openwashing by Linux Foundation
Links for the day
Gemini Links 18/09/2024: Home, Ashram, and Markdoc
Links for the day
[Meme] Think. Positive. Saturate the Media.
IBM: Layoffs? What layoffs?
The Kubecost Acquisition Does Not Show IBM is Rich, It Shows It Wants to Distract From Mass Layoffs Happening This Week (Thousands Laid Off in the Dark)
So-called "news deserts" have become a national and international phenomenon (not local/regional)
IBM Has Been Lobbying for Software Patents, It's Not the Free Software Community's Ally
The ancient company has been lobbying for these patents for decades already
Over Half a Day Later the Media Still Doesn't Cover Thousands of Layoffs at IBM
Not even a single news site bothered to investigate and report this? Not even one?
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, September 17, 2024
IRC logs for Tuesday, September 17, 2024
IBM Befriends and Exploits the Biggest Enemy of Software Freedom (Software Patents)
Software Patents and IBM in Today's News
Many Workers Quietly Leave Microsoft, the Company is Running Out of Money (Too Much Debt and Now Massive Buybacks to Keep the Shares From Collapsing While Hiding Humongous Losses)
I've heard of people who just decided to quit Microsoft. They could not handle the anxiety.
Links 17/09/2024: Volkswagen Layoffs May Exceed 15,000, Sean ‘Diddy’ Combs Arrested
Links for the day
Gemini Links 17/09/2024: Re-framing of Priorities and Journalists
Links for the day
The Linux Foundation is Associating Linux With Scams and With Scam Sites Right Now (Like the Wife of Jim Zemlin Did)
they profit from the sellouts
Mass Layoffs at IBM Today, Just Like Prominent Rumours Said Upfront
past couple of hours
Google's YouTube Already Blocking People Who Block Ads
YouTube feels like it's dying
Links 17/09/2024: More on Microsoft Cuts and XBox Backward Compatibility Issues
Links for the day
IBM is Acting No Better Than Patent Trolls, Preying on Smaller Companies by Suing Them With Software Patents
No Red Hat employee should tolerate this aggression by the employer
Something Has Gone Very Wrong at iTWire
"iTWire has descended into marketing spam"
The Hallmark of a Dying Company Running Low on Money (But Still Trying to Hide That)
Microsoft should look into selling red markers
UEFI 'Secure' Boot Has Put Security at Risk, Suggests New Report
We're vindicated once again
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, September 16, 2024
IRC logs for Monday, September 16, 2024
Links 17/09/2024: China Sanctions and Breadth of Latest Microsoft Layoffs Elaborated Upon
Links for the day
Gemini Links 17/09/2024: Small Improvements in Carbon Capture and Pseudo-Productivity In Java
Links for the day