Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hifn Restricts Crypto Docs, OpenBSD Opens Fire

Posted by ryuzaki0 on from the don't-tread-on-me dept.

Mhrmnhrm writes "After totally closing off public access to documentation for their chips roughly five years ago, Hifn is again offering them, but with an invasive registration requirement. Needless to say, Theo de Raadt and the rest of the OpenBSD team were not amused, and following a Hifn manager's missive, the gauntlet has been thrown. Either open the docs fully, or be removed from the system. This wouldn't be the first time... the same thing happened to both Adaptec and Intel following similar spats."

10 of 304 comments (clear)

  1. Theo by dirtyhippie · · Score: 4, Insightful

    Oi, Theo! I agree with you 100%, but please, tone down the virtiol just a smidge! From TFA:

    Jason and I spent a lot of time writing that code in the past, but because your policies are privacy invasive towards us, and thus completely thankless for the sales that we have given you in the past -- we will not spend any more time on your crummy products.

    And if you continue baiting me, I will delete the driver from our source tree.

    Calling their products "crummy" and threatening them with driver deletion if they don't stop "baiting" you is not a way to get what you want. Now it means some egomaniacal manager has to eat crow for the driver to go public. I was in 100% agreement with your post until I got to this point.

    Sometimes, I wish someone would just slip some sort of tranquilizer in the water supply near Alberta...

    1. Re:Theo by flumps · · Score: 4, Insightful

      In fairness you do not know what has gone before. Theo mentions "personal emails" and "previous discussions".

      Some people just do not listen unless you threaten them like this. It must've been the last straw..

      --
      "So there he is, risen from the dead. Like that fella, E. T." - Father Ted Crilly
  2. Re:By my math... by Deliberate_Bastard · · Score: 5, Insightful

    >I count 12 required fields where you have to enter data.

    >Is this worth throwing a hissy fit over?

    And I count one (1) principle at stake.

    Which is *always* worth throwing a fit over.

    --
    NOTICE: This notice will appear at the bottom of all my slashdot posts.
  3. Well, theres a surprise. by gowen · · Score: 5, Insightful

    That's a typical OpenBSD discussion, in which Theo DeRaadt
    i) is basically right
    ii) still manages to sound like spoiled whiny tosser in the process.

    --
    Athletic Scholarships to universities make as much sense as academic scholarships to sports teams.
  4. How does this sort of exaggerated response help? by rsidd · · Score: 4, Insightful
    Theo repeatedly claims that the site wants "approximately 50 personal questions". I looked, and there are only 11 questions with required answers, of which I can only construe two (office phone number, and office address) as invasive of Theo's privacy. (I assume everyone knows Theo's name and email address, from the mailing lists.)

    If he objects to providing that information, he can say so, but this sort of easily-refuted hyperbole doesn't help.

  5. Re:By my math... by bhima · · Score: 5, Insightful

    Yes.

    You have to sign an NDA to get the documents. So you would be violating the NDA to redistribute them.

    There isn't a business advantage to this sort of secrecy because your competitors can easily obtain this same information through a blind. So it comes down to policy motivated by irrational fear & greed. Who needs to really deal with company with these qualities?

    This topic is of primary interest to me because I am shopping for a crypto accelerator card right now, for use in the fall. Given the success and ease I have had using OpenBSD, and given the great support I have from the mailing lists, this is a reasonable criterion to use when purchasing hardware. In fact at some point of the decision making process for all of my hardware I have done a search on the OpenBSD mailing lists. This sort of information makes installation and maintenance a simple thing.

    So it really does boil down to unless the OpenBSD group recommends a certain piece of hardware I won't buy it...

    --
    Nothing in the world is more dangerous than sincere ignorance and conscientious stupidity.
  6. Abusive much? by thePowerOfGrayskull · · Score: 4, Insightful

    While I whole-heartedly agree with the point Theo was making in his article, I can't help but think that engaging in hyperbole (50 questions? ~25 is accurate) and verbally abusing and threatening the vendor is going to help in any way.

  7. Can hifn comply with OpenBSD's demands? by mwvdlee · · Score: 4, Insightful

    Everybody seems to be sidestepping the main issue.

    The real question that should be answered is whether hifn are indeed required by law to ask personal information of the people downloading documentation, as hifn claims they are.

    If they are, than hifn simply cannot comply with OpenBSD's demands without breaking U.S. law.

    --
    Slashdot social media options: AIM, ICQ, Yahoo, Jabber and Mobile Text. Why no MySpace?
  8. Thanks, but no. by Just+Some+Guy · · Score: 5, Insightful
    From the email:
    Hifn reserves the right to keep our source code proprietary.

    Fair enough, Hank. But I reserve the right to not use proprietary crypto code in sensitive applications - which are the only ones that I'd actually buy hardware acceleration for in the first place.

    Let's get this straight: there's a world of difference between closed video card drivers and closed crypto drivers. Many of us are squeamish about about the former, so why would you think we'd cheerfully accept the latter? A closed source video driver could potentially crash my non-networked game machine. A closed source encryption accelerator cold potentially open my VPN server to the whole world.

    I hope you can appreciate the community's position here, but whether you agree with it or not is immaterial. Should you change your opinion to better mesh with that of your would-be customers, please let us know. Many of us would like to buy your products if they become usable for our applications.

    --
    Dewey, what part of this looks like authorities should be involved?
  9. Re:Theo's behavior doesn't help the cause... by shis-ka-bob · · Score: 4, Insightful
    Each time I install OpenBSD, it just works. They support a wide range of hardware, but they insist on coding it correctly. You cannot be sure that you are coding 'by the spec' if you have to reverse engineer. You might be pretty sure you have it right, but you can't be certain. The OpenBSD team is limited in size and they don't have the resources to fool around with hardware becuase some prick in management doesn't see that giving the data freely to the OpenBSD team will only lead to better support for their hardware. The 'worst case' for the manager would be if the OpenBSD folks find that the hardware doesn't meet its own specifications. In the long run, finding this is a good thing - nobody stopped buying Intel becuase of the Pentium division error. Finding and fixing it improves the hardware but it is costly in the short run, so it will harm the manager's bonus this quarter. Theo seems to be taking the long view and sticking to principle, not convenience.

    If I have the choice, I run OpenBSD on servers because when it fits, it fits like a glove. If Theo acts like everyone else and just rolls over when a suit tells him no, OpenBSD would be just like every other Linux/BSD distro. This sort of attention to details (in both software and licenses) makes OpenBSD distictive. In marketing-speak, this is called 'developing a niche'. Within its niche, OpenBSD has no equal. If it looses its niche, then it will loose its market share. So I think the best thing Theo can do is to be Theo.

    --
    Think global, act loco