Why Linux HDCP Isn't the End of the World

"There is no reason for the open-source community to worry..." writes Daniel Stone, who heads the graphics team at open-source consultancy Collabora. mfilion quotes Collabora.com: Recently, Sean Paul from Google's ChromeOS team, submitted a patch series to enable HDCP support for the Intel display driver. HDCP is used to encrypt content over HDMI and DisplayPort links, which can only be decoded by trusted devices... However, if you already run your own code on a free device, HDCP is an irrelevance and does not reduce freedom in any way....

HDCP support is implemented almost entirely in the hardware. Rather than adding a mandatory encryption layer for content, the HDCP kernel support is dormant unless userspace explicitly requests an encrypted link. It then attempts to enable encryption in the hardware and informs userspace of the result. So there's the first out: if you don't want to use HDCP, then don't enable it! The kernel doesn't force anything on an unwilling userspace.... HDCP is only downstream facing: it allows your computer to trust that the device it has been plugged into is trusted by the HDCP certification authority, and nothing more. It does not reduce user freedom, or impose any additional limitations on device usage.

It affects my freedom to watch game of thrones

When Game of Thrones gets interrupted in the middle because the HDCP checks fail, it takes away my freedom!

Copy protection almost always comes at a cost to usability.

#firstworldproblems

Re: It affects my freedom to watch game of thrones

[saloomy]

It also affects your ability to trust your system. When there is unauditable code, you have no idea of its malicious or poorly written. Thatâ(TM)s the problem. There are going to be asshats on here who say no one does code review anyway, but that isnâ(TM)t the point. The point is you become no longer free to even if you wanted to. In this day and age of all the software bugs, bad implementations and massive data breaches and hacks, how on earth is closed-source client-side code or hardware still a thing?

Re: It affects my freedom to watch game of thrones

Then install Windows 10 if you don't trust Linux.

Re: It affects my freedom to watch game of thrones

For hardware, does any open source graphics hardware even exist? If not, then that's why closed source graphics hardware still exists.

For software, once you know open source software is malicious or poorly written, what then? cough...systemd...cough

Re: It affects my freedom to watch game of thrones

[DontBeAMoran]

The same way we can’t really trust Slashdot since they don’t seem to be able to fix simple character encoding problems.

Re: It affects my freedom to watch game of thrones

Unicode might send your posts to aliens on another planet. Just be glad that even people on this planet can't read your posts!

Re: It affects my freedom to watch game of thrones

Not really. Don't enable the encrypted channel and say you did.

Re: It affects my freedom to watch game of thrones

[Pseudonym]

It also uses energy. For low-power devices like iPods, DRM has a measurable effect on battery life.

Re:It affects my freedom to watch game of thrones

#firstworldproblems

if you are going to pretend to be "third world" and "needy" and not "spoiled" ... i would recommend not using an internet "hashtag", first because "The interwebz" blows your cover of being "needy", second because it is a relatively recent "Internet" thing, so it is clear you not only have "internet" but relatively new "internet"

the reality is, only "first world" people complain about "first world problems". it is "first world" to use the term "first world" -- or did you think the "third world" would voluntarily choose to be "third" and not "first" ?

you are right, but for all the wrong reasons. like some kid who finds the answer sheet to a test accidentally attached to the school newsletter.

basically, you totally fail, and clearly know nothing, even if you are half right re: "first world problems".

Re: It affects my freedom to watch game of thrones

[Computershack]

It also affects your ability to trust your system. When there is unauditable code, you have no idea of its malicious or poorly written. Thatâ(TM)s the problem. There are going to be asshats on here who say no one does code review anyway, but that isnâ(TM)t the point. The point is you become no longer free to even if you wanted to. In this day and age of all the software bugs, bad implementations and massive data breaches and hacks, how on earth is closed-source client-side code or hardware still a thing?

But you don't have any idea if it is poorly written or malicious if it is auditable. The fact that we have some absolutely mind blowing whoppers of bugs in FOSS, some of which have existed in software part of almost every distro and in some cases for several years is living proof that it doesn't matter a toss whether you can review the source code or not. Quite simply the number of people who have the competence to at a sufficient level as well as the time to do it as well is very very limited and for all intents and purposes it may as well be closed source in this respect.

Re: It affects my freedom to watch game of thrones

[ccady]

Having software it that is too complex for you too work on is VERY different from having software that you are NOT ALLOWED to work on. Those bugs you mention were found. If it was closed source, they would not have been found.

Yeah, but

How long until this implemented by default in systemd and you can't turn it off without ripping the guts out of your system?

Re:Yeah, but

I imagine Poettering is too busy implementing some other load of shit instead to get to Intel graphics drivers anytime soon, but I've been wrong before.

Re:Yeah, but

Not anytime soon. We're too busy trying to figure out how to associate bitcoin with system startup in some plausibly beneficial way, and we're not adding any new features until then.

Intel: "Trust me!"

[ITRambo]

We've seen what Intel's Management Engine did, it made systems less secure while keeping a backdoor to your system open at boot. Now, nothing to concern yourself with here either. No thanks, Intel.

Re:Intel: "Trust me!"

Well said - of course what tipped me off was the name "Secure boot" - I immediately figured it was for the opposite purpose..

Re:Intel: "Trust me!"

This is more like TPM than ME. ME was a dedicated chipset that had direct access to the north/south bridge. This is more of like an SSE or MMX style implementation in the video chipset. It must be specifically invoked and then you are filling registers with regular data to receive an HDCP encrypted response. TPM is implemented in a similar style. The idea being you don't have to implement if you don't want to.. think 386 protected mode back in the early 90s. BUT, like 386 protected mode, it became the standard that everything required moving forward. THAT IS THE PROBLEM WITH HDCP when all content or devices require HDCP, then you are effectively locked-in and must follow the requirements of HDCP which enables an ME-style situation (e.g. you must run this code on your system to utilize HDCP, don't ask questions what this binary code is)

Re:Intel: "Trust me!"

[tepples]

THAT IS THE PROBLEM WITH HDCP when all content or devices require HDCP

Works require HDCP, not displays. All displays can view unencrypted signals. Works under a Creative Commons license do not require HDCP for playback. Only viewing non-free works will ever require HDCP.

Re:Intel: "Trust me!"

[Srin+Tuar]

If its fully open source, including no secret firmware or secret code, then its fine. If we can edit, tweak, fix, compile and see all the bits, DRM all you want, no problem.

But obfuscate and secret away the code? The get out of my operating system.

Re:Intel: "Trust me!"

[AmiMoJo]

I can't see a down side to this. You want to watch something that requires HDCP, so you enable it. You are still running a free OS, HDCP itself is easy to remove, and the content is none the wiser.

Re:Intel: "Trust me!"

What a terrible thing to say!

Of course it's for securing the boot process. Specifically, securing the boot process for the company so that pesky "user" person can't tamper with it. Tech companies are beyond pesky things such as personal property, silly. Next thing you know people will object to those same companies hollowing out every right they can so that you technically have rights but in practice have virtually no realistic option to enjoy any of them if you use modern technology.

Re: Intel: "Trust me!"

The name is completely correct. What you should be asking is who it's secure for because it's isn't consumers.

Re:Intel: "Trust me!"

[TheRaven64]

Part of the problem is that it makes it less likely that people will complain about media that they can't play, which reduces the likelihood of media companies backing down on limiting what people can do with their legally purchased media. For example, under fair use rights, you are allowed to take screen captures of a film and include them in an article about the film, or use small extracts from it for a variety of purposes. With HDCP working, these are not possible.

That said, you can bet that, once this is in the kernel, there will be a virtual HDCP driver that performs the decryption in software and just requires you to provide the keys, and it won't be long before you start seeing decryption keys leaked...

I can't think of any content

I can't currently play on Linux one way or another over plain old VGA so I'm not sure why I would knowing install this patch?

Re:I can't think of any content

[KiloByte]

I can't currently play on Linux one way or another over plain old VGA so I'm not sure why I would knowing install this patch?

That's the entire point -- to make you unable to play some shit over that plain old VGA (or DVI, HDMI or that hacked 18-pin GPIO display).

You got that neat tidy tent, currently devoid of camel shit. This nose definitely shouldn't be let in, considering how many other tents that particular camel defecated into.

Benefits for the user

[sanf780]

HDCP, like any form of DRM, ends up doing more harm than good to the user. As far as I know from the Windows machines, HDCP is enabled by DVD and Bluray players - probably 4K Netflix too. I cannot think of any other reason to enable HDCP other than licensed multimedia archives. I would not enable HDCP on my computer for most of the typical usage scenarios of any personal computer.

Re:Benefits for the user

While the DRM itself doesn't give any benefit to the actual user of the computer, one side-effect of the scrambling might. Good encryption renders anything passed through its algorithm indistinguishable from noise. While HDCP may not be perfect, it still makes your video data more noise-like than it used to be. This is important if you're worried about TEMPEST attacks. By spreading the video data wider across the frequency spectrum, each individual component has less power and as such will be less detectable at range.

Re:Benefits for the user

[sanf780]

That is about the only thing I can think of HDCP: you XOR and scramble the signal you send through the link and thus reduce emissions. However, it only does encrypt the signal from GPU to monitor. The link is usually short and you better have physical restrictions here too. MitM attacks can still be done by plugging an HDMI repeater device.

Sure...

Except when Firefox, Chrome and the rest of willing hollywood goon start "requesting" that you enable hdcp, or else no html5 video? How long will it take until the shuttleworth (you know, the guy with the spine of a jellyfish in sulfuric acid) enables it by default (and ms remands the same for secure boot shif signature)?

Re: Sure...

Then someone could write a modified version of the function that accepts the hdcp request, and then does nothing but return a response saying "yep, hdcp enabled"

Do you really expect us to eat that turd sandwich?

How stupid do you think we are?

Linux should support things that work

[Wuhao]

DRM does not work. If you doubt this, name for me one piece of copyrighted material HDCP is intended protect that is not already available for piracy online. This cannot be done, therefore, anything I could watch if HDCP is supported, I can already watch without it. So if there's no value-add for the user, and no value-add for the media companies, and it contradicts the open nature which has made Linux so successful in the first place, why should it be included?

Re:Linux should support things that work

[iggymanz]

your country's police might kick in your door for downloading pirated content

Re:Linux should support things that work

[loftarasa]

So if there's no value-add (...) for the media companies

Takes a bit longer to crack, and pirating become less trivial / useful so it does deter a few users on the margin therefore the value isn't exactly zero.

Re:Linux should support things that work

[kwerle]

xbox games? Are those cracked, these days?

Re:Linux should support things that work

[fred6666]

Xbox games do not rely on HDCP to avoid piracy. HDCP encrypts the video stream. If it is used by an xbox game, then it only forbids you from recording your gaming sessions. You can't copy a game over HDMI. Unless your game is a movie.

Re: Linux should support things that work

[c6gunner]

Takes a bit longer to crack, and pirating become less trivial / useful so it does deter a few users on the margin therefore the value isn't exactly zero.

I would argue the opposite. DRM often ends up causing playback issues even with purchased media due to various glitches and incompatibilities. This causes frustration and disgust amongst consumers, which could very well drive some of them towards piracy as a solution. Assuming they didn't already pirate before, they're quickly going to learn how easy and convenient it is, making them more likely to do it again in the future.

Re: Linux should support things that work

[guruevi]

These days games are just boilerplate code that connects to the Internet for additional assets and the core gameplay even. Itâ(TM)s not DRM but it effectively limits your ability to play if you donâ(TM)t have a connection. Theyâ(TM)re also cheap and available enough that most donâ(TM)t have to bother with DRM anymore so for games the market has resolved the situation.

The same is becoming true of video, my time these days is now evenly shared between my Netflix backlog and YouTube/Twitch/... I find the content better and more engaging. I actually never had cable TV in my entire life and Iâ(TM)m not even a millennial so I think that the younger generation will completely kill the need for DRM.

So, it makes no sense these days to crack games or videos anymore. The better games have no DRM already and the market is flooded with them. If your game doesnâ(TM)t run due to a DRM issue, people will simply return the game on Steam/Amazon/Play Store etc and get another game, developers canâ(TM)t risk losing that much in the current market and video is closely following that pace.

Re: Linux should support things that work

[corychristison]

This. So much this.

I remember when Bluray was new, and the PS3 came out, and bought my first few Bluray movies. Sure enough, I couldn't actually watch the movies right away. They forced the PS3 to download and install an update in order to watch.

I've found piracy much more convenient. No updates, no waiting, no forced ads. Now with faster internet and better encoding methods, it's quicker to download 1080p content than it is to even dig the disc out and put it in a player.

Re:Linux should support things that work

Which has fuck all to do with DRM except in the convoluted belief that DRM actually works as a copy protection scheme. If it did, DRM would be everywhere and video piracy wouldn't be a thing for anything modern so your country's police would have little reason to kick in your door.

Re:Linux should support things that work

[Wuhao]

You know, the-man-will-get-you FUD used to worry me, but now it doesn't. They tried it, and it was way too expensive. So instead they did what we said they ought to do all along: release their stuff on a platform like Netflix, which is easier to use than piracy. And lo, I pay for Netflix! But I'm likely to cancel my subscription because of barriers introduced by DRM.

Re:Linux should support things that work

[Wuhao]

Maybe there's an emulator for it and maybe there's not, but I was never expecting to play the Xbox games on my Linux box, any more than I expect my phone apps to run on it. But there's no movie, TV show or music album for instance that was released, DRMed and unpiratable, unless that media was so spectacularly unpopular that no one wanted to pirate it in the first place.

Re: Linux should support things that work

[thegarbz]

This! I remember downloading a crack for the Assassin's Creed game I purchased because I became frustrated in the game kicking me out if I had intermittent internet.

Though crack is a strong word, more like a local DRM server to fool the game into thinking it has connected to whatever shitty idea Ubisoft dumped out at the morning meeting of the retard convention.

Re: Linux should support things that work

[Ayanami_R]

" how easy and convenient it is"

hahahahaha! No one in my family pirates because it's "too hard" and they're not dumb people at all, mostly professionals and all with college degrees.

You underestimate how tech unsavvy most are, by a large margin.

Re: Linux should support things that work

These days games are just boilerplate code that connects to the Internet for additional assets and the core gameplay even.

Nope. That's just wrong. The studios tried that, and guess what? OnLive was the broken mess that resulted. Too much lag caused the games to be unplayable. This failure was caused by bandwidth issues, and given the "future" that the FCC and it's owners (Comcast, Verizon, AT&T, etc.) have brought us, it's not about to be tried again anytime soon.

Also, if you were referring to SimCity, guess what? you didn't need an internet connection there either.

About the only game type that you need an internet connection to play is an MMO. But even then, that requirement can be circumvented, assuming you have a private server for the game's client running locally. (Not that you'd really want to do that, given that the main draws for MMOs are interactions between players. Don't believe me? Go run a mangos server to play WoW by yourself.)

Finally, the publishers wouldn't do that anyway without some form of subscription or recurring payment in some shape or form. It costs money to run the servers used by players in that instance. Managing a world within an MMO is easier and cheaper to do computationally, than running every player's client session on top of that. (Or worse, running one completely isolated world per client as would be the requirement for a single player game.) Then you'd have the issue of needing to render the results and encode them into a video stream.... So basicly you'd need to have the computational power and bandwidth to run YouTube, in addition to the combined computational power of what would amount to a game console for every single player, all contained within a physical server farm somewhere, and the cooling power needed to keep it from frying itself to do this. Never mind keeping the hardware up to date to keep pace with developers. And you expect a one time payment of $60.00 per player to be sufficient? HA! A $20.00 monthly fee would be stretching it, never mind that's on top of the ridiculous prices for bandwidth ISPs want to charge for. And before you say: "Well people won't be paying for individual games anymore..." You do know what other media format did that don't you? What was the result of that move? Oh yeah, they release the shittest crap they can put together on a minimal budget, then claim it's the next great thing, and people hate it, because it's the same unimaginative crap as before just with a different coat of paint on it.

Can't wait for the next issue of Call of Paint Job! /sarcasm

So, it makes no sense these days to crack games or videos anymore.

Go tell that to the guys who cracked Denuvo on a repeated basis.

Re:Linux should support things that work

[Aighearach]

Naw, linux should support all the things. Even the sucky things. Let people choose.

Re: Linux should support things that work

[c6gunner]

Except it's not. For one thing, I try not to confuse the words "professional" and "college degree" with "smart". They do not mean the same thing.

Also I know dozens of people (some with college degrees, some without) who have an android based Kodi box by their TV, and use it to stream movies from ice films and similar Kodi channels. While that may not be what you typically think of when someone says the word "piracy", it does certainly fall into that category, and it's about as simple as using Netflix.

The more tech-savy people I know tend to use pirate bay, and then stream with Plex or Kodi.

Re:Linux should support things that work

[davecb]

... If it is used by an xbox game, then it only forbids you from recording your gaming sessions.

This makes it hard to prove you won when you're playing in a for-money tournament. Better have your phone on a tripod, recording the match as you play

My old employer, https://worldgaming.com/ sponsors just such tournaments and asks for evidence in case of two people claiming to have won.

--dave

Re:Linux should support things that work

[iggymanz]

last I looked several countries have recently made laws with severe punishments for piracy. They tried it and got lawmakers on board so it's not as expensive now to bring the hammer down.

Re:Linux should support things that work

It has to do with the fact that the media industry makes the laws and our governments enforce them. Entire countries have changed their long-standing, more liberal laws on copyright under the pressure of media giants. This is real power. And you worry a simple interface?

Re:Linux should support things that work

It has to do with the fact that the media industry makes the laws and our governments enforce them.

Which only tangently relates to DRM. Well, not entirely true. It does mean more companies are being busted for selling "piracy" devices. But it's incredibly ineffectual due to the ability to trivially buy from China through Amazon, Ebay, Alibaba, etc.

Entire countries have changed their long-standing, more liberal laws on copyright under the pressure of media giants.

What countries? Copyright has been constantly going up in terms and with harsher punishment. From a privilege granted to creators for a limited time to a perceived right to profit, it's a perfect example of how capital snowballs.

This is real power. And you worry a simple interface?

The point isn't the interface. DRM can be broken. The point is to fight back against the interface and the copyright holders who push like it like one should push back every other abuse they encode in law. It's not that I believe "we" can win. It's to delay the inevitable point where "the blood of patriots" will have to be spilled to revert the law to a more sane place. Certainly, at a minimal all attempts should be made to avoid the impression that we accept the normalcy of what DRM represents precisely because it makes it harder to motivate people against the next wave of abuse.

PS - Do you know of instances where police have actually kicked in doors? Large scale commercial piracy, perhaps? China, perhaps? Other than that, it's most enforced with police pretty casually walking in with a warrant and confiscating materials pending a trial. Business suffers, no doubt, but DRM bypassing lives on.

Re:Linux should support things that work

[fred6666]

because you couldn't record a fake game against your friend and upload that instead?

Re:Linux should support things that work

[davecb]

HDCP has nothing to do with that: you can forge fake games with any tecnology.

Re:Linux should support things that work

[fred6666]

Of course. Like I said, HDCP isn't meant to protect games from being pirated.

Re: Linux should support things that work

[Ayanami_R]

College to me means, ability to learn, not necessarily "smart."

Your example is what I include in piracy, and I only know techies with those setups. "regular users" I encounter, which is a LOT as I own a growing MSP, don't even know about any of that.

Does not...

"It does not reduce user freedom, or impose any additional limitations on device usage."

Yeah, it just allows others to do so, and doesn't even provide any beneficial functionality in return. Go figure.

Re:Does not...

[jmccue]

"It does not reduce user freedom, or impose any additional limitations on device usage."

Sound familiar, I heard something like that before ? Wait, I remember last Thursday Dec 14. These days I am convinced a statement like that made by any large agency, either Gov or Private really means the exact opposite.

Re:Does not...

[Aighearach]

and doesn't even provide any beneficial functionality

Well, at a minimum you can use it to test used monitors and determine if they support the feature. So recyclers might have a use case.

The real issues...

The are many problems with this, in no particular order:

1) HDCP imposes restrictions on what users can do with content they've legally purchased. I should be able to record content that I'm sending over an HDMI cable to my TV, but HDCP prevents this.

2) It's an inconvenience to users, while not actually impeding piracy. HDCP encryption has been broken, so it's not secure. There are also some HDMI splitters that can remove HDCP encryption.

3) If HDCP is supported by more systems, it does provide convenience to users. However, many of those users are likely to tolerate HDCP, further allowing DRM to become entrenched.

HDCP stops me from recording the HDMI signal that comes out of my cable box. Most of the channels are protected by setting the CCI flag to copy once, which prevents me from recording them on any software other than Windows Media Center. Were it not for the DRM, it would be completely legal for me to record content through either of those means. If I can easily record the content myself, it takes away the incentive to pirate that content from the internet. I might share the content with friends by giving them copies on flash drives, but small scale piracy has been around at least since the days of VHS. However, it reduces the incentive to participate in large scale piracy like obtaining the content from torrents. I hypothesize that DRM like HDCP actually encourages piracy.

Re:The real issues...

The are many problems with this, in no particular order:

1) HDCP imposes restrictions on what users can do with content they've legally purchased. I should be able to record content that I'm sending over an HDMI cable to my TV, but HDCP prevents this.

IANAL, but: a condition of the sale / use (could be?) is the use of approved equipment. If you won't want to agree to the terms of the sale, don't go through with it.

If you want to run RHEL with support, you need to run it on certified hardware:

* https://access.redhat.com/support/offerings/hwcert

I understand what you're saying, but at the end of the day, the creator of the work is the owner through through copyright law, and they get to dictate how the work is sold. When you buy media, there is a (social) contract about it. If you don't like the terms don't enter into the contract.

if the summary is accurate

If the summary is accurate, all you have to do is modify the kernel to tell user space that the encryption is on and not enable it. Then everyone is happy.

Redundancy is redundant!

Redundancy is redundant!

Re:Redundancy is redundant!

This message brought to you by the Department of Redundancy Department.

I say this is proof

Proof that DRM rots the brain.

Modify the source

So, can the HDCP source be modified, to say lie to the application, telling it the downstream device is trusty, even if it isn't? If the encryption is in hardware, then there's some driver or shim that mediates between user-land and the hardware; modify this to be a no-op, while reporting back success?

Re:Modify the source

If you can edit and compile the source, then yes, you can lie to the application and tell it all is good and encrypted while it in reality isn't.

It is not

[redmid17]

Why would it be?

Re: Most "purists" are hypocrites

DeCSS is a crack. You can't compare DeCSS to HDCP. You couldn't avoid CSS at all without a crack. HDCP allows you to not use it, CSS did not.

Re:Most "purists" are hypocrites

You're being disingenuous here.

However, one was "good" because it wasn't authorized by THE MAN (DeCSS) but the other one is evil because it doesn't let the purists roleplay in their basements about being the good rebels against the "evil" empire.

The difference is that using DeCSS was the act of removing an onerous, pointless restriction by the media companies, while using HDCP is complying with those restrictions.

"This Churchill guy is a hypocrite. He wants to fight the Germans, but gets so angry when you suggest we appease them instead. I mean, fighting the Germans means we don't get destroyed by them, and appeasement also means we don't get destroyed by them."

But it validates the crime known as "I.P."!

It makes it look like it is in any way acceptable, to support the bought laws that enable the organized crime to keep not working, yet rake in money to finance their massive cocaine addictions on the backs of creative people and their fans!

If it wasn't a crime to take the *result* (information/data) of the work of some creative people, pay them *once*, make countless copies of that result, and demand actual real money that we have to actually work for, in return for a mere *copy*,
then it wouldn't be a crime either, to take the *result* (money) of the work of some fans, do some creative work for them *once*, make countless copies of that result, and demand real actual work that people actually had expenses and took time for, in return for mere *copies*.

The former is just as much criminal as the latter, no matter what any laws say, and for exactly the same reasons.

(They are both in the same category as theft and robbbery.)

Errrrr....

[JustAnotherOldGuy]

Every single time I've heard the phrase, "...does not reduce freedom in any way...." it ALWAYS turns out to be a lie. The context is almost irrelevant.

It's a red flag- if they're telling you they're "not doing XYZ" or that "XYZ won't affect you", you can usually bet your ass that they are in fact doing "XYZ" and/or it does indeed affect you in some way.

Much like net neutrality- Comcast would never ever throttle your connection or block certain sites, they just want the ability to do so, even though they would never ever do that. But they want to be able to anyway. Hmmm.

Re:Errrrr....

Good point. Talk all you like about Van Eck phreaking... it's still obvious that the people who are trying to implement this are doing so for the sole purpose of enabling stricter DRM systems. If this really had no impact on user freedom, there would be no motivation to do it in the first place.

Re:Errrrr....

[Dagger2]

Much like net neutrality- Comcast would never ever throttle your connection or block certain sites, they just want the ability to do so, even though they would never ever do that. But they want to be able to anyway. Hmmm.

three seconds later "Hey, here's how to pay us to remove this throttle we just added."

Re:Errrrr....

At the moment you have less freedom as their is a whole range of content you cannot play. adding the functionality has to come with pointing out that they are not reducing freedom as their are a lot of tinfoil hat wearers like yourself that can't imagine that people just want shit to work and aren't willing to sacrifise functionality just so they can have their purity.

Re:Errrrr....

They won't admit they artificially throttled you. It'll be more like "Your connection is slow because of network congestion in your area. But here's how to pay us for a faster connection."

Re:Errrrr....

[JustAnotherOldGuy]

three seconds later "Hey, here's how to pay us to remove this throttle we just added."

Exactly. "Pay us more for this new service, which is basically restoring the old service you had."

Re:Most "purists" are hypocrites

[Hal_Porter]

"This Churchill guy is a hypocrite. He wants to fight the Germans, but gets so angry when you suggest we appease them instead. I mean, fighting the Germans means we don't get destroyed by them, and appeasement also means we don't get destroyed by them."

I'm sorry, Sir, but I'm going to have to issue you with a $50 Fixed Penalty Internet Ticket for Godwinning.

AMD AMD AMD! intel better not force this to be mov

[Joe_Dragon]

AMD AMD AMD! intel better not force this to be moved to on all the time

Non-Hollywood video will still exist

[tepples]

Except when Firefox, Chrome and the rest of willing hollywood goon start "requesting" that you enable hdcp, or else no html5 video?

Then I will view non-Hollywood video. And even if the ISPs throttle it, 1.5 Mbps is enough to stream at 480p.

How long will it take until the shuttleworth (you know, the guy with the spine of a jellyfish in sulfuric acid) enables it by default

I don't know how long it will take, but I can guess the result: more adoption of Linux Mint Debian Edition.

Publishers who DMCA gameplay videos

[tepples]

If [HDCP] is used by an xbox game, then it only forbids you from recording your gaming sessions.

Which is exactly what the game publishers want, especially if they have a policy of asserting copyright against players who upload videos of their game session to video hosts.

Re:Publishers who DMCA gameplay videos

If [HDCP] is used by an xbox game, then it only forbids you from recording your gaming sessions.

Which is exactly what the game publishers want, especially if they have a policy of asserting copyright against players who upload videos of their game session to video hosts.

Too bad then since it's well known there are HDMI splitters that strip HDCP. I personally got one because my PSTV wasn't working with my HDMI->VGA adapter. Ended up getting both an HDMI->VGA adapter that works with the HDCP and a splitter. Either way, that's an obvious loss.

Incredible the amount of shit people accept.

[blind+biker]

People have replaced perfectly working video connectors/standards (VGA and DVI) with DRM-laden, controlled up the wazoo stuff like HDMI and DisplayPort. People have replaced perfectly working, and safe, boot firmware - BIOS - with shit that is controlled not by the user but by a third party, and it is not safe, and it can be altered from userland (UEFI). People are in the process of replacing a decent if closed-source OS (Windows 7) with an ad-laden, telemetry-laden OS that reboots when uncle Microsoft says so - Windows 10.

It is amazing that people are OK with taking all this crap up the ass and after a while, actually feel happy about it. I am glad there are exceptions, but we are a tiny, insignificant minority.

Re:Incredible the amount of shit people accept.

[DRJlaw]

People have replaced perfectly working video connectors/standards (VGA and DVI) with DRM-laden, controlled up the wazoo stuff like HDMI and DisplayPort.

You do realize that HDCP over DVI has been a thing since forever. It's HDMI without the audio/networking links.

Re:Incredible the amount of shit people accept.

DVI has audio. Most graphics cards with DVI support it. Most monitors do not. But if you get a DVI to HDMI converter cable, and plug it into a TV, it will work just fine.

Re:Incredible the amount of shit people accept.

> People have replaced perfectly working video connectors/standards (VGA and DVI) with ... HDMI and Displayport.

a) DVI is identical to HDMI. That is to say that HDMI is DVI over a different shaped plug. This means that DVI supports HDCP, too..

b) Just _try_ to get "4k" at 60Hz over "VGA" cabling and connectors. _If_ you could find a video card (and graphics card) with the internal hardware to _handle_ that signal, I bet you _could_ make it work, but I bet you _couldn't_ do it over cables longer than a foot or so. Hell, I'd be pretty surprised if you could get it to work without resorting to transceivers that multiplex the signals on to coax. Pushing that much data over a traditional "VGA" cable with its bundle of wires and signalling design would be... difficult.

You're free to splash out for a thousand dollar video cable to route your signals to and from your analog receptacles with their absurdly beefy aftermarket encode/decode hardware, but the rest of us are happy to use something that was designed for transmitting signals with high pixel densities and refresh rates over medium distances.

> ...and [UEFI] is not safe, and it can be altered from userland...

BIOS is no less alterable from userspace than UEFI.

Re:Incredible the amount of shit people accept.

[thegarbz]

perfectly working

Define perfectly working. You're comparing a standard that can't display 1920x1080 without fuzzy edges (VGA) to perfect 8K 60fps 30bit content (DisplayPort)
VGA has been far from "working" for a long time now.

While you're at it you're also comparing a current OS to one that is out of mainstream support and already has shown support issues with various pieces of hardware on the market.

If that's your idea of "perfect" then its no wonder that the actions of people come as a surprise to you.

Re:Incredible the amount of shit people accept.

[AmiMoJo]

DisplayPort doesn't do DRM natively, only in legacy HDMI mode. It's useful because it's packet based, so should be flexible enough to serve us for the foreseeable future.

UEFI is a useful upgrade over the old BIOS. It ditched a lot of legacy crap like running x86 code directly from PCI ROMs and then having the OS reconfigure them anyway. It's much more secure, not tied to x86 and not full of crappy hacks.

Sometimes change is good. Not always, and in the absence of central planning this is how the market decides what is good.

Re:Incredible the amount of shit people accept.

[blind+biker]

People have replaced perfectly working video connectors/standards (VGA and DVI) with DRM-laden, controlled up the wazoo stuff like HDMI and DisplayPort.

You do realize that HDCP over DVI has been a thing since forever. It's HDMI without the audio/networking links.

Donofadiddley, you're right! I was wrong about DVI, it's no better than DisplayPort in that regard.

Re:Incredible the amount of shit people accept.

[antdude]

That is why I still use old stuff like VGA, DVI, coax, W7, Linux, analog, etc.

Re:Incredible the amount of shit people accept.

Yes, DisplayPort...

Re:Incredible the amount of shit people accept.

[Mal-2]

Sorry, DVI is electrically and signal-compatible with HDMI, and supports HDCP. You'll have to dump that too.

"On a free device"

[Trax3001BBS]

That leaves out anything running UEFI, of which one of it's features is root kiting.

Re:"On a free device"

[DCFusor]

It writes bad roots? Who pays the overdraft fee?

Re:"On a free device"

There's no fee - the overdraft is only there to keep the root kite in the air.

Re:"On a free device"

[Trax3001BBS]

It writes bad roots? Who pays the overdraft fee?

https://blogs.technet.microsof...

Windows 10 hides directories, and maintains permissions on files. It keeps me from deleting many temp directories an example, temp files in the directory Windows/WinSxS

Ummm,

why do I feel there is a knife behind my back?

We can use it

We can use ME to get the keys to our displays and unlock HDCP.

As long as it can be lied to

If HDCP requests can be set up to always return "success" then I'm all for it.

Re:Most "purists" are hypocrites

[edittard]

"This Churchill guy is a hypocrite. He wants to fight the Germans, but gets so angry when you suggest we appease them instead. I mean, fighting the Germans means we don't get destroyed by them, and appeasement also means we don't get destroyed by them."

I don't know where you studied history and logic, but you should ask for a refund.

Fighting the Germans doesn't mean you won't get destroyed by them. Beating them does.

dullard

This dude is missing a basic point: He's saying if YOU don't want it, YOU don't enable it - but YOU might be a consumer using some kind of box that outputs this encrypted HDCP signal with no ability to recompile the fucking kernel or whatever hoops you have to jump through to "not enable it". It's possible to use it, so now it enables the creation of an entire class of systems with this bit flipped on and this unwanted functionality permanently on with no option to disable it. Of course whether it's "wanted" comes down to a war of "should we enable companies to create products using this tech that we think is evil?"

Re: dullard

And if you try to play media that requires HDCP today on a system without this feature it also won't work so the issue is not with the HDCP support in the kernel but that there exists media that requires it.

Re: dullard

There's no such thing as "media that requires HDCP."

Re: dullard

[Aighearach]

Yet.

It does not reduce user freedom, or impose any ..

[lkcl]

Please select from one of the following options:
(1) Never Requires Encryption
(2) Accept Encryption / Unencryption
(3) Does not accept Unencrypted Data

the linux kernel - used in the majority of TVs, PVRs, STBs and Android devices - used to be at level (1). it's now moved to level (2). this is the "Green Light" for manufacturers to start producing HDMI devices at level (3). so tell me: in what way does this decision NOT reduce user freedom?

Not news

As long as it can be compiled out, this isn't a problem. There's support for all sorts of questionable shit in Linux, and most of it's written by companies so they can piggyback off of the public's work to get income.

Compile it out if you don't want it. That's what I already do. This isn't news to anyone except the illiterate.

captcha: autocrat; how fitting. :)

Re:Most "purists" are hypocrites

[WorBlux]

DeCSS let you reclaim the format of DVD. You no longer had to watch DVD content on devices "approved" by the coalition. It broke the power of the distributor to limit the way you or I can consume content.

HDCP is precisely the opposite, handing over control of how and where you watch media to the middleman. Like CSS, HDCP in this case is useless without the specter of the DMCA and other "anti-circumvention" legislation, as you could easily create a side channel in the driver to dump video streams to disk. Unless upstream providers only intend to enable content on devices already locked down with a RIAA rootkit, in which (highly likely) case the code is useless to anyone not already in a strong middleman position with their own custom devices (Google, Verizon, Amazon...)

And you can like the content of the artists, writers, and performers without liking the methods the distributors and investors use to squeeze out every cent of profit they possibly can out of a work, especially when they reduce the average person's control over their own devices.

Re: Intel: "Trust me!"... Again!

[sonamchauhan]

Well, isn't HDCP really someone else's computer *fully* determining what you see? If it encrypts the monitor's image stream, can't it modify it?

What if you've got an HDCP-protected YouTube stream playing in the background as you're logged on to Net-banking and then happen to click the browser's address bar? Could HDCP *hardware* insert a fake 're-enter your banking credentials' message and image-capture your password as it appears in the address bar? Remember "Reflections on trusting trust" and the Intel management engine vulnerability.

Encryption will be used anyway

This will just make enabling encryption a little bit easier for vendors who make locked down media devices running Linux.
But they would enable the encryption anyway and no one needs to buy these kind of devices.

HDCP toothless without anti-teeing measures

[tepples]

If the studio requiring HDCP on the output of a PC running a free operating system expects HDCP to be effective, the video will need to be decoded by a non-free executable on the video card in order to keep free software from seeing (and teeing) the cleartext decoded RGB or YCbCr output of the decoder. This is acceptable to some operating system distributors (Debian, Fedora, and the like), because all the non-free stuff happens out of the CPU's address space, but not in any distribution recommended by the GNU project.

Re:HDCP toothless without anti-teeing measures

[AmiMoJo]

Sure, but even so it doesn't affect anyone who doesn't enable it. They can't play that stuff now, they won't be able to play it in future if they don't want non-free binaries.

Re:HDCP toothless without anti-teeing measures

[Aighearach]

I still buy/rent DVDs for these sorts of reasons.

Re: Intel: "Trust me!"... Again!

[wolrahnaes]

The HDCP hardware is part of hardware you already have to trust not to do things like that.

Can I read the frame buffer?

[rrohbeck]

Asking for a friend.

Re:Can I read the frame buffer?

[Mal-2]

In theory, no, but in practice -- sort of.

Would an analog VGA signal at full resolution be close enough? You can sometimes escape through the analog hole still. I have an HDMI-to-VGA dongle that reports itself HDMI-compliant. Since it's pushing analog out the other end, it obviously is not compliant, but all that matters is that it says it is. It cost me less than $10 and is not marketed as having this ability.

HDCP Master Key

6692d179032205 b4116a96425a7f ecc2ef51af1740 959d3b6d07bce4 fa9f2af29814d9
82592e77a204a8 146a6970e3c4a1 f43a81dc36eff7 568b44f60c79f5 bb606d7fe87dd6
1b91b9b73c68f9 f31c6aeef81de6 9a9cc14469a037 a480bc978970a6 997f729d0a1a39
b3b9accda43860 f9d45a5bf64a1d 180a1013ba5023 42b73df2d33112 851f2c4d21b05e
2901308bbd685c 9fde452d3328f5 4cc518f97414a8 8fca1f7e2a0a14 dc8bdbb12e2378
672f11cedf36c5 f45a2a00da1c1d 5a3e82c124129a 084a707eadd972 cb45c81b64808d
07ebd2779e3e71 9663e2beeee6e5 25078568d83de8 28027d5c0c4e65 ec3f0fc32c7e63
1d6b501ae0f003 f5a8fcecb28092 854349337aa99e 9c669367e08bf1 d9c23474e09f70

3c901d46bada9a 40981ffcfa376f a4b686ca8fb039 63f2ce16b91863 1bade89cc52ca2
4552921af8efd2 fe8ac96a02a6f9 9248b8894b23bd 17535dbff93d56 94bdc32a095df2
cd247c6d30286e d2212f9d8ce80a dc55bdc2a6962c bcabf9b5fcbe6f c2cfc78f5fdafa
80e32223b9feab f1fa23f5b0bf0d ab6bf4b5b698ae d960315753d36f 424701e5a944ed
10f61245ebe788 f57a17fc53a314 00e22e88911d9e 76575e18c7956e c1ef4eee022e38
f5459f177591d9 08748f861098ef 287d2c63bd809e e6a28a6f5d000c 7ae5964a663c1b
0f15f7167f56c6 d6c05b2bbe8800 544a49be026410 d9f3f08602517f 74878dc02827f7
d72ef3ea24b7c8 717c7afc0b55a5 0be2a582516d08 202ded173a5428 9b71e35e45943f

9e7cd2c8789c99 1b590a91f1cffd 903dca7c36d298 52ad58ddcc1861 56dd3acba0d9c5
c76254c1be9ed1 06ecb6ae8ff373 cfcc1afcbc80a4 30eba7ac19308c d6e20ae760c986
c0d1e59db1075f 8933d5d8284b92 9280d9a3faa716 8386984f92bfd6 be56cd7c4bfa59
16593d2aa598a6 d62534326a40ee 0c1f1919936667 acbaf0eefdd395 36dbfdbf9e1439
0bd7c7e683d280 54759e16cfd9ea cac9029104bd51 436d1dca1371d3 ca2f808654cdb2
7d6923e47f97b5 70e256b741910c 7dd466ed5fff2e 26bec4a28e8cc4 5754ea7219d4eb
75270aa4d3cc8d e0ae1d1897b7f4 4fe5663e8cb342 05a80e4a1a950d 66b4eb6ed4c99e
3d7e9d469c6165 81677af04a2e15 ada4be60bc348d dfdfbbad739248 98ad5986f3ca1f

971d02ada31b46 2adab96f7b15da 9855f01b9b7b94 6cef0f65663fbf eb328e8a3c6c5d
e29f0f0b1ef2bf e4a30b29047d31 52250e7ae3a4ac fe3efc3b8c2df1 8c997d15d6078b
49da8b4611ff9f b1e061bc9be995 31fd68c4ad6dc6 fd8974f0c506dd 90421c1cd2b26c
53eec84c91ed17 5159ba3711173b 25e318ddceea6a 98a14125755955 2bb97fd341cea2
3f8404769a0a8e bce5c7a45fb5d4 9608307b43f785 2a98e5856afe75 b4dbead4815cac
d1118af62c964a 3142667a5b0d14 6c6f90933acd3d 6b14a0052e2be4 1b1811fda0f554
12300aa7f10405 1919ca0bff56ea d3e2f3aad5250c 4aeeea5101d2ec 377fc499c07057
6cb1a90cdb7b11 3c839d47a4b814 25c5ac14b5ec28 4ef18646d5b9c2 95a98cc51ebd3b

310e98028e24de 092ffc76b79f44 0740a1ca2d4737 b9f38966257c99 a75afc7454abe4
a6dd815be8ccbf ec2cac2df0c675 41f7636aa4080f 30e87b712520fd d5dfdc6d3266ac
ee28f5479f836f 0bf8ee2112173f 43ae802fa8d52d 4e0dffd36c1eac 3cbda974bb7585
fb60a4700470e3 d9f6b6083ef13d 4a5840f02d0130 6c20ef5e35e2bf dad2f85c745b5b
61c5ddc65d3fc9 7f6ec395d4ae22 2b8906fb3996e2 e4110f59eb92ac 1cb212b44128bb
545afda80a4fd1 b1ffea547eab6b fac3d9166afce8 3fe35fe17586f2 9d082667026a4c
17ffaf1cb50145 24f27b316acfff b6bb758ec4ad60 995e8726359ef7 c44952cb424035
5ec53461dbd248 40a1586f04aee7 49ea3fa4474e52 c13e8f52c51562 30a1a70162cfb8

ccbada27b91c33 33661064d05759 3388bb6315b036 0380a6b43851fb 0228dadb44ad3d
b732565bc37841 993c0d383cfaae 0bea49476758ac accc69dbfcde8b f416ab0474f022
2b7dbcc3002502 20dc4e67289e50 0068424fde9515 64806d59eb0c18 9cf08fb2abc362
8d0ee78a6cace9 b6781bd504d105 af65fab8ee6252 64a8f8dd8e2d14 cb9d3354e06b5b
53082840d3c011 8e080bedab3c4c e30d722a455843 24955a20397c17 82495c1c5114e8
656e71c31d813d 1f0a6d291823a1 6327f9534353fa b89529c2f034fb 70e9b12205c7b3
a06c87969407a2 520bfa2fe80f90 da1efc3d345c65 313936ec023811 a8cc87128be2fa
4cd0e8645ee141 be7975519e2b63 9543d23113c2a8 3d87b0da033f22 df0464c704e9d4

7e1a30947e867e 014ae464b37935 5c4babf689fa4e c4aec0cb01cc35 328c0e4a0230e4
fdacb93b419594 26deefc8a553e6 6e75a2d790cb55 2c4554518f7396 94b77184cb145d
95f883f620a8bb edff42866a2783 7b4ee6304b711d ed56e077a4b9fb c4e60e687ff6c3
0cbf144b8f64d5 023dd10a35eddd beaa3323e999c6 d2e016b31c38c4 8d2917a888f799
18c3abd28e736b 8d38

Inaccurate summary...

[TemporalBeing]

it has been plugged into is trusted by the HDCP certification authority, and nothing more. It does not reduce user freedom, or impose any additional limitations on device usage.

HDCP requires that the entire chain - from source through display device - support HDCP. Therefore by allowing it, one then ends up needing devices (e.g video sources, video cards, monitors, etc) that *all* support HDCP. If any one of those does not, then the video will be refused. Therefore "additional limitations on device usage" are imposed by definition.

Re: It affects my freedom to watch game of throne

And yet millions of people still bought it.
Your point?

Then make it easy to manipulate it

[edgedmurasame]

If they think it's easy to manipulate it, make it very easy to disable or subvert.

Agreed, it's not the end of the world.

But it ends other things... or it does make a step in this direction.

- is Linux my ally or the content industry's ally?
- it marginalizes those who can't watch encumbered content even more

No, I want as little as possible of this crap near to me. And if I can't watch Netflix or Disney... too bad.

Re: It affects my freedom to watch game of throne

[DivineKnight]

The Flynn Effect is a myth.

Re: It does not reduce user freedom, or impose any

(3) already happened years ago. I had a display that would not work with Raspberry Pi because the Pi's display drivers do not support HDCP.

Re:Most "purists" are hypocrites

[Computershack]

DeCSS let you reclaim the format of DVD. You no longer had to watch DVD content on devices "approved" by the coalition. It broke the power of the distributor to limit the way you or I can consume content.

Ah the altruistic bollocks excuses pouring out of the mouths of those who actually only want such software so they can get free shit. Be honest with yourself it is nothing to do about limiting the way you can consume content and everything to do with getting paid stuff for free. If it were about limiting content then nothing that is available on Netflix, Amazon or any other legitimate streaming service or any music available on Amazon or Itunes which is DRM free would be available on pirate websites. But it is, all of it. So you can shove your claim up your arse because that is where it belongs because it stinks of bullshit that much.

Why should HDCP support be upstreamed?

[peppepz]

This functionality cannot be used by an open source kernel. This functionality cannot be used by an open source userspace. Why should it be maintained by the open source community? It doesn't belong on kernel.org; it should stay within Google together with the rest of the binary nonsense that they develop and keep in order to fulfill their contractual obligations with Disney. Nobody said that DRM in the kernel was "the end of the world". The point is that asking the open source developers, that is the very people whom this functionality is designed to mistrust and block, to maintain its code forever, is immoral.

Who Cares?

Who gives a shit? Just find the function IsHDCP() and make it return 1. I think these sort of code changes were done back in the 1980's to bypass assinine digital resstriction scheme's.

Of course unless you live in a free country (China, Burma, Russia, Canada) rather than a fascist state (USA, UK, Australia) you will probably get hanged for modifying the code.

Re:Most "purists" are hypocrites

> ...bollocks excuses...

USians have a federally-recognised right to engage in copyright infringement for the purpose of format-shifting a work for which they have a license. DeCSS is a tool to exercise that right.

> If it were about limiting content then nothing that is available on [paysites] ... would be available on pirate websites.

Talk about terrible arguments... Some of the users of "pirate" websites are there to format-shift what they already have a license to. Most aren't. So what?

this/modparentinsightful

Every single time I've heard the phrase, "...does not reduce freedom in any way...." it ALWAYS turns out to be a lie. The context is almost irrelevant.

It's a red flag- if they're telling you they're "not doing XYZ" or that "XYZ won't affect you", you can usually bet your ass that they are in fact doing "XYZ" and/or it does indeed affect you in some way.

Much like net neutrality- Comcast would never ever throttle your connection or block certain sites, they just want the ability to do so, even though they would never ever do that. But they want to be able to anyway. Hmmm.

Re: It does not reduce user freedom, or impose any

2). this is the "Green Light" for manufacturers to start producing HDMI devices at level (3). so tell me: in what way does this decision NOT reduce user freedom?

Every choice every human makes reduces the 'freedom' of others to live in alternate worlds where that human made a different choice.

In the situation you describe- YOU ARE STILL FREE to manufacture HDMI devices at the pre-3 level. Enjoy what freedom you have. Realize that not all freedoms are worth dying for.

Re: Intel: "Trust me!"... Again!

[sonamchauhan]

That's right. :( The same way I must trust Intel's management engine.

But can we trust Intel to not let _others_ take control and do such things? The more such independent 'hardware engines' a computer has, the less we can trust it.

Ajit Pai

[sad_]

Makes him sound like Ajit Pai - nothing will change, you will still be able to do everything you are doing now. nothing is being taken away.

Re:Most "purists" are hypocrites

[WorBlux]

All DRM schemes are inherently flawed. They are all based on trying to simultaneously keep and tell a secret. And streaming services generally aren't DRM-free, though they often are a convenient way to access a wide array or rotating content. Because all DRM schemes are necessarily flawed as piracy protection, the only logical assumption is they they are not really about limiting piracy at all and are actually intended to serve some other purpose. (Distributor lock-in and format freezing)

Additionally there's little evidence that piracy displaces sales. The bigger danger for an artist is a lack of visibility in the market.

Re:Most "purists" are hypocrites

And if your "protection" scheme requires that you have root access to a device I purchased.... Fuck you.