Hypervisors Can Defeat GPLv3's Anti-Tivoization

DeviceGuru writes "A hypervisor can be used to isolate from each other software works released under incompatible licenses, while allowing them to run simultaneously on the same hardware. For example, Linux and Windows CE can run on separate virtual machines on one device, without violating either OS's license. Due to the isolation between multiple VMs running atop a hypervisor, it seems like this architecture could allow companies to build Linux-based devices, such as mobile phones or set-top boxes (think TiVo), that can't be upgraded by their users without authorization, thereby circumventing the GPLv3's 'anti-tivoization' clauses." Here's a white paper with more details from a commercial hypervisor company.

Bogus!

[MMC Monster]

Frankly, I'm not sure what the article is trying to state.

If the code is released under GPLv3, then modifications of the code must be able to run on the same hardware. It doesn't matter if the key to run the code is a checksum or a password to give the hypervisor. Either way, if modification of the client cannot be dropped into the place of the original client (either to run on the same hardware or the same hypervisor), it's in abuse of the GPLv3.

Re:Bogus!

[Orange Crush]

I get the same impression. If TIVO for instance wishes to use the method to satisfy both their (eventual) GPLv3 obligations *and* content-owner obligations at the same time, then I don't see it violating either the letter or the spirit of GPLv3. An end-user is free to modify the Linux client as they see fit, or to replace the hypervisor alltogether with a bare-metal Linux installation.

Re:

[secolactico]

They may very well just stick with their current kernel. This is actually what I see happening, a lot of the world will be stuck on old GPL v2 modules, while some will choose to make "clean room" implementations of GPL v3 code and release it under v2

Or maybe they will simply port their apps to BSD and use that on the tivo boxes. Or maybe they will license some other OS that will allow them to keep everything closed source.

Or do they have a specific reason for sticking with Linux?

Re:Bogus!

[orzetto]

Or maybe they will simply port their apps to BSD and use that on the tivo boxes. Or maybe they will license some other OS that will allow them to keep everything closed source.

Or maybe they could start playing by the rules of the community they took Linux from, saving millions in development cost and time-to-market. Or maybe the could purchase a closed-source license for another OS. Or maybe they could write their own code instead of taking someone else's, so they can do what they want with it.

Re:Bogus!

[mmacdona86]

Note that the hypervisor doesn't prevent you from updating the GPL code (the Linux kernel, for example)--
it just prevents you from getting extra access to the machine by updating the code. Thus it allows "tivoization" without violating the letter (or arguably the spirit) of GPL v3. The GPL code you can hack and modify to your heart's content; the hypervisor just makes sure that said hacking doesn't compromise the machine.

Seems fair to me

[marcosdumay]

Really, your new version of the kernel will have the same privileges as the old version. I see no problem with that.

I only fail to understand why they plan to put a kernel above that hypervisor. For it to be of any use, the hypervisor must controll all I/O operations anyway, what they get from Linux?

Re:Seems fair to me

[Sique]

Moreso: What the Hypervisor is thought to achieve in an attempt to circumvent the GPL is actually something that was designed into the GPL from the very beginning: It was never forbidden to run proprietary code and GPLed code on the same machine. It was only forbidden to make a derivative work from GPLed code and distribute this with a license that is incompatible with the GPL. The FSF stated from the very beginning: If the proprietary code and the GPLed code don't share GPLed libraries or run in the same segment, everything is fine.
(See http://www.gnu.org/licenses/gpl-faq.html#GPLAndNon freeOnSameMachine [gnu.org])

The hypervisor is just another method to achieve exactly this behaviour that was built into the GPL from the very beginning: Make a clear distinction where the proprietary code runs, and where the GPLed code resides. So no: The hypervisor is not a "circumvention device against the GPL3".

Re:

[runderwo]

At this rate, I'm not sure what they want GPL'd software for

They want it because the price is unbeatable.

It's just that it has an annoying license that they have to work around, in order to be able to sufficiently hamstring their users.

Re:This FUD makes no sense.

[Ian Alexander]

They want it because the price is unbeatable. It's just that it has an annoying license that they have to work around, in order to be able to sufficiently hamstring their users.

See, that's never made much sense to me. Why don't they just pick up a gratis operating system with a more permissive license, like one of the BSD's, and stop worrying about tivoizing GPL'ed code?

Or are they actually just evil and want to lock down GPL'ed code because it fills their weekly evil quota or something?

Re:

[cp.tar]

Even more so, while this can be used to isolate two operating systems from each other, some software is obviously going to run under the operating system. I fail to understand how you can isolate the software from the OS, as well as the usefulness of such a feat. I mean, what's the purpose of the OS then?

Somehow, I don't think the GPL 3 was so poorly written that it could be circumvented so easily.

Re:Bogus!

[Kazoo the Clown]

Somehow, I don't think the GPL 3 was so poorly written that it could be circumvented so easily.

Why not? It's just another form of DRM-- and we all know how easy that is to crack...

Re:Bogus!

[cp.tar]

Bull.

The GPL does not restrict usage. It restricts distribution - and in a manner completely opposite to DRM.

Re:Bogus!

[ajs]

> I think it's a good analogy

Nope. [DRM] tries to maximize revenue of corporations by intrusive means discussed at length here on /. while the [GPLv3] establishes a legal framework for public use of material.

Nope.

DRM has nothing to do with revenue. Of course, it's a tool which is most often used with respect to increasing revenue, but there is no fundamental connection between the two. I might, for example, use DRM to release a movie which I wish to re-release occasionally in order to switch which of two characters shoots the other first (not mentioning any names, here). I might charge nothing for these releases, I just want to make sure that everyone is forced to watch the version that I've decided is "current". DRM can do that.

The GPL is a tool which allows me to restrict the use of my source code such that only people willing to grant other people my pet set of rights can distribute it. Everyone else must ask for my permission first, or they get nothing (and likely will get nothing, even if they ask).

Now, I'm a fan of the GPL. I'm a fan of the clever hack which it embodies for using copyright law to control the distribution of additional, non-copyright rights. Very cool. I'm also a fan of the basic idea of offering users who want to share the right to do so.

However, it's completely unreasonable to draw an imaginary line in the sand between one set of restrictions (you can share, but only if you play by my rules) and another (you can use, but only if you play by my rules) on the basis that one doesn't comprise a restriction because the intent is different.

Re:

[everphilski]

Hardware | hypervisor | GPLv3 code

GPLv3 code can do whatever it wants, but the hypervisor can feel free to say "I'm sorry, there is no spiffy network card", "I'm sorry, there is no TV channel like that" ... think of the hypervisor as a virtual machine if you must. Programs can work fine in the virtual machine, but that doesn't mean the virtual machine will look precisely like the actual hardware. Check and mate, RMS!

Re:Bogus!

[Knuckles]

Check and mate, RMS!

You must have a huge stake in proprietary software to cheer about this. Note that if this is the way of the future, it's not only "Check and mate, RMS!", but also "Check and mate, general-purpose personal computer!". Well, I guess you will still be able to import one from China, provided you won't get caught. Hurray indeed.

Re:Bogus!

[everphilski]

No stake whatsoever, except opposing anti-tivoization and GPLv3. I still don't believe 'freedom' can be obtained by imposing restrictions in a software license. If you want free, make it free!

Check and mate, general-purpose personal computer!". Well, I guess you will still be able to import one from China, provided you won't get caught.

Homebrew it. Engineers shall rule the world :) They did it 20 years ago, why not today? Plenty of people build their own (amateur) radios, many from scratch and approaching the complexity of a modern computer. It might bring about a new renaissance ... go with the flow man, RMS is no Jesus, and the FSF is no means of salvation. They have their own ambitions and agendas, just like any other organization.

Re:

[nelsonal]

When you leverage off the work of others and don't abide by the terms of their license to use their work.

Re:

[huckamania]

Sounds like they would be abiding by the license. It certainly doesn't promote the 4 software freedoms, but then freedom to circumvent hardware was always a bit dicey as a software freedom.

Re:

[Knuckles]

I didn't mean to, I just stated it without trying to attach a valuation. You have to note, though, that there are more people who have no stake in proprietary software, than those who do.

Re:

[Knuckles]

Sorry, I forgot the main point. I suggested his stake must be so big that it is more important to him to see free software fail than to see the general-purpose personal computer survive. There are indeed not many people like that.

Re:

[Knuckles]

If the general purpose computer in the future no longer serves a market need then why should it not perish?

"If the notion of human rights in the future no longer serves a market need then why should it not perish?"

That being said even if open source software did not exist I don't see the general purpose computer going anywhere.

You misunderstood me. The very same hypervisor tech that is described to circumvent the GPL3 can be used to deny you all unsupervised access to your computer whatsoever. Thus the OP s

Re:

[Knuckles]

Anyone who works in the software industry, other than those who get to work on FOSS thanks to charity handouts, has a stake in proprietary software.

Um, no, you just fell for MS's propaganda. First of all, more than 80% of software is written for other purposes than shrink-wrapped sale. People who write this stuff have less need for restrictive licenses in any case.

Second, it may be hard to live off free software right now, in a proprietary software world. I have no doubt whatsoever that it would work just

Re:

[WilliamSChips]

But then all the code Tivo doesn't want touched will just be in the Hypervisor, and it will have to not be under GPLv3. In other words, we also changed the pages of the real Death Note he's using right now!

Re:

[SanityInAnarchy]

FOr example, "Yes, there is a spiffy network card. It is an alias for the Loopback Adapter!"
or
"There is a TV channel like that. Oops it is all static."

...So what?

Once again, I don't think it defeats the purpose here, which is to prevent them from distributing a GPL'd binary in such a way that I can't upload my own, nearly-identical GPL'd binary and expect it to work.

To be GPLv3 compliant, I expect they'd have to have that channel exist, and provide exactly the same data to the GPL'd program, no matter

Re:

[B'Trey]

Essentially, you have a GPL3 and a non-GPL3 working hand in hand, passing data back and forth. The GPL3 software (say Linux, if and when it moves from v2 to v3 of the GPL) handles all of the network code, user interface, etc. However, over the network, it receives encrypted data. It passes that data, still encrypted, to the non-GPL OS. The non-GPL software decrypts it and sends it via a DRM'd, trusted interface to the video display, which displays the data. At no point does Linux ever see the unencrypt

Re:

[jellomizer]

Use Windows CE for the user interface. Have an internal connection to the Linux Virtual Machine. Linux does all the hard work, Windows CE works mostly like a User Interface Firewall. There are ways around it. Linux doesn't try to do any DRM it is all Windows who is doing the job. But windows is giving Linux the information to do the real work.

You are not breaking GPL 3 you are getting DRM. HA HA! Sorry play again.

Re:

[romiz]

The author claims that manufacturers can ensure that while the Linux part respects the GPLv3 constraints, and can be modified by the user as required by the license, it is possible for the manufacturer to protect their own part that lives in another VM on the hypervisor, and thus is not a derivative from the GPL code.

For an embedded manufacturer, it is interesting because it protects what the manufacturer considers to be important, or even simply some code it bought from a third party, while it allows ski

Re:

[glindsey]

My interpretation of the article is that a device manufacturer could use a hypervisor to isolate the entire "trusted path" from Linux completely, by running the application responsible for decrypting video data and outputting it in a separate VM. This application could be totally closed-source. Linux, running in its own VM, could communicate to this locked-down, non-GPLed application via a shared memory region.

Whether this is in violation of the GPLv3, I don't know; I haven't read it. But it seems like a

Re:

[samkass]

Whether this is in violation of the GPLv3, I don't know; I haven't read it.

Since the GPLv3 is essentially a form of DRM, there's almost certainly a way around it. This approach seems reasonable.

What I don't understand is why the GPLv3 didn't have a clause stating, unequivocally, that software released under it cannot implement (encode or decode) Digital Rights Management schemes in any way, shape, or form. If they're going to be against user-hostile software, why not take a stand?

That would be ironic, sinc

Re:

[QuoteMstr]

The GPL is telling you, the user, what you can do with my software. DRM is telling you, the user, what you can do with your own data.

Re:

[WilliamSChips]

The definition of DRM is attempting to use software to provide the user a service while restricting that same service from the user.
GPLv3 does not fall under this definition because:

• It is voluntary on the part of the software writer(or at least, exactly as voluntary as GPLv2)
• It still has no restrictions on the user's part
• It's a license, not a software program

Re:

[homer_ca]

There's just one problem with the closed source application running in its own VM. The VM is a virtual machine not a virtual application environment. That means the closed source software has to include a kernel with scheduler, memory management and device drivers for the hypervisor's virtual devices, in other words an entire OS. If you wrote an entire OS to run in the non-Free VM, why even bother having a Linux VM?

Re:

[also-rr]

Frankly, I'm not sure what the article is trying to state.

This is because the closed source hypervisor in your head is preventing you from accessing the appropriate parts of device memory ;)

Frankly this is an interesting legal hack. It certainly seems to comply with the letter of the license, and possibly even the spirit. The freedom to modify GPL 3 software is preserved in the proposal.

What it is analogous to is building (say) a hardware DVDCSS decoder that acts as a black box. Data in, video out. E

Re:

[cp.tar]

Ah-HA! So that's what it's all about!

Ah, well... then it'll just be cracked - like any other copy protection.

Re:

[everphilski]

So far Sony's hypervisor on the PS3 hasn't been cracked. You can joke about a lack of uptake of PS3's but the lack of a crack is not for a lack of trying.

Re:

[Omnifarious]

IMHO, that violates neither the letter nor the spirit of the GPLv3. It's still evil, but it's not that kind of evil. I also strongly suspect that it will be much more subject to being hacked than something that disallows any software changes at a hardware level.

I would be disappointed if the GPL tried to address this issue in a future version because I do not believe that it's within the scope of things it ought to address.

I disagree with Linus in that I think the GPLv3's anti-tivoization clause really

Re:

[mattpalmer1086]

I agree with your take on this. The whole point of the GPL3 anti-tivoization was to ensure that if a company used the goodness of open source in a particular environment, you were also free to modify and run the code in the same environment. This is still the case. You are still free to modify the GPL3 code and do anything you like - even things the manufacturer didn't enable - within the limits of the environment it runs in.

Re:

[WilliamSChips]

It's like Death Note. Of course, that begs the question: is Light the FSF or Tivo?

Re:

[shaitand]

'The question is, does this new system violate the leter or the spirit of GPL3? (I'm asking honestly here--I can't quite wrap my head around it.)'

It depends on how broadly you interpret the spirit of the GPL. Under this scheme you'd run Linux in a VM. Therefore, you could modify the GPL'd code and update it in the VM. Now, if you believe that is the whole of the SPIRIT of the GPL then there is no problem.

However, this is being done for the sole purpose of bypassing a clause in the GPLv3 that would require t

hmmm

[wizardforce]

I can't help but think this kind of tivoization will be horribly broken by the end of the year. there's likely a way that someone somewhere will figure out a way to wipe the whole mess and do away with this nonsense.

GPLv3 is like DRM in that respect.

[LWATCDR]

You are trying to use the law to stop people from using technology. You make rules that say you can not make a hard to modify device that runs Linux like a Tivo. They make it hard to copy a DVD. Both groups will find a technical way around the problem. The sad thing is that GPLv3 treats "professional" systems differently than "consumer" systems! May both sides have fun trying to write around technology.

Re:

[WilliamSChips]

No, the GPLv3 is trying to use the law to ensure people can use the technology they, the consumer, wants to.

Re:

[LWATCDR]

Get past the religion of FOSS for a second. GPLv3 is telling a group of users aka the developers how they can use GPLv3 software. So some developers have found a loophole.
My post doesn't have anything to do with if FSF is right or wrong. It has everything to do with the futility of trying to write some agreement that limits the use of digital technology.

For example if I really wanted to make a closed device all I would need to do is create my own CPU. I then make my own code generator for GCC.
I then compile

Can it really?

[realdodgeman]

GPLv3 states that you have to be able to use modified versions of the code on consumer devices. How can you circumvent that? Even if it runs in a hypervisor, you are still violating the license.

Re:

[iburrell]

The GPLv3 states that you have to be able to use modified versions of the GPLv3 code. It doesn't say that the proprietary code has to work with modified versions of the GPLv3 program. Think of a Tivo which has an open-source kernel, userspace, and proprietary video program. If the video program refuses to work with anything other than a Tivo-provided kernel, then you may be able to upgrade the kernel but it won't be a Tivo just a hackable DVR.

This can't be achieved when the kernel is running on the bare

Then the Installation Information is insufficient

[tepples]

Let's see, the hypervisor let's signed code do anything it wants, yet limits unsigned code to let say 1 meg of memory. I guess now you can recompile and run any code you want, it just won't work the same way that the signed code will.

If the signed executable is larger than 1 meg, and any executable that can be derived from its source code and performs a comparable function is also larger than 1 meg, then the redistributor is not providing sufficient Installation Information.

Re:

[tepples]

That's not quite what I am saying. Basically the hypervisor could limit resources to unsigned code, such that the code will still install and "run", but have such limited resources that it will not function properly.

From the GPLv3: "The information must suffice to ensure that the continued functioning of the modified object code is in no case prevented or interfered with solely because modification has been made." So if I add a tiny "hello world" style modification and break the digital signature, it had better run and not just "run", or the distributor is in violation of copyright on the GPLv3 covered software he distributes.

Backfire in responce.

[jellomizer]

the Anti-Tivoization clause is one the sore points in my book about the GPL 3. Because of the hippocraticy worded in it,
For TiVo being a consumer product is Bad, IBM Being corporate product it is good.
Free Software has a lot of advantages but if you try to get too academic with it it gets to a point where adoption of such products are impractical.
Take the TiVo, what GPLv3 wanted to do was force TiVo to release their DRM so the community has access to their product. What actually happends is TiVo
finds a backdoor to the license and uses it, or drops using open source and any stop to any shared contributions from TiVo and a move to a different
platform.
The License for free software is the cost of using the software. (Except for trading money (and rules) for rights to use, you agree to follow these rules for
rights to use) as more rules you add to the license the more expensive the free software becomes. So if you make FreeSoftware to strict on its use
people won't use it. Academically Free as in speech software sounds like a good plan but real life realizes there is information that you want to keep
private.

Re:Backfire in responce.

[QuoteMstr]

The goal of the GPL is to keep software free; the goal of BSD-style licenses is to ensure that high-quality software is used as widely as possible. They're conflicting goals, to an extent, though there's a big overlap.

The GPLv3's anti-tivoization clause is true to the GPL's goal. When putting software under the GPL license, one accepts that it might not get as much use as BSD-licensed (or, as an intermediate, GPLv2-licensed) software, and that's the price for the code itself remaining free.

Re:

[Rakishi]

Yet if you sell your drm restricted product to a corporation or business there is no problem. You can restrict updatability as much has you want. Interesting definition of free you seem to have there. Free as long as one of our major supporters (IBM) isn't hurt by it, eh? Great moral based design you have there.

Re:

[QuoteMstr]

I don't like that part of the GPLv3 either, but you should understand the other side of the argument: it makes it possible to create a certified device using GPLv3 software. Imagine a voting machine using GPLv3d software, for example.

Re:

[ivan256]

The more restrictions you put on the use of code the less free it is.

Period.

Re:

[WilliamSChips]

GPL does not put restrictions on use of code. It puts restrictions on distribution of code, created to ensure the lack of restrictions on use of code.

Re:

[Timothy Brownawell]

GPL does not put restrictions on use of code. It puts restrictions on distribution of code, created to ensure the lack of restrictions on use of code.

There are many ways to use code which involve distributing it. Such as using it as a component of some other system you produce. This form of use is very much restricted by GPLv3.

Re:

[ivan256]

Is distribution no longer a form of use?

Since they love to use Tivo as an example, let's run with that. Isn't Tivo's (the company, not the device) use of Linux simply distributing single-purpose boxes that are run by it?

Preventing a company like Tivo from distributing GPLv3 software on a closed device doesn't increase the freedom of the software. It doesn't even have anything to do with the freedom of the software. It's an attempt to impose openness on the hardware irregardless of whether the code itself is

Re:

[Mr. Slippery]

The fanboys forget that GPL is not end-all of software, and that it's really only practical in certain situations.

Free software advocates beleive that freedom is always practical, indeed is the only practical choice in the long run. I'm sorry if you don't value freedom.

There's not any "circumvention" going on, any more than it's circumvention that I can processes running both GPL and non-GPL applications on my PC. Just some hypervisor hype from - surprise! - a hypervisor vendor.

Re:

[fistfullast33l]

What?

Re:

[vux984]

Take the TiVo, what GPLv3 wanted to do was force TiVo to release their DRM so the community has access to their product.

No, that is the fundamental error that so many people make.

That is NEVER what they wanted to do at all.

What they wanted to do was to stop TiVo from redistributing GPL code that couldn't be modified and run on the purchased hardware it came with.

This was never to 'force' TiVo to do anything except make a choice:
Use the free (as in liberty) code covered by the GPL and extend those freedoms t

Re:

[DVega]

Take the TiVo, what GPLv3 wanted to do was force TiVo to release their DRM so the community has access to their product.

Wrong. What they want is to be able to use their hardware. If Tivo uses other-people software it seems fair for others to use their hardware.

What actually happends is TiVo finds a backdoor to the license and uses it, or drops using open source and any stop to any shared contributions from TiVo and a move to a different platform.

Fine with me. Can you tell me which are the contributions

Re:Backfire in responce.

[morgan_greywolf]

hippocraticy? If big words give you problems, use a dictionary to learn how to spell hypocrisy. I mean, you're barely in the ball-park, the first and last letters match, and there's a "p" in the middle somewhere.

No, no. I think he really meant hippocraticy -- a government for, of and by the hippos.

Re:

[CopaceticOpus]

Sigh... I was so enamored with my fanciful formations that I didn't notice I wrote the wrong write. Ah well.

No, they can't.

[strredwolf]

Simply put, if any part of the firmware is GPL 3'ed, even if it's running under a VM, it still requires the ability to replace it by the user w/o authorization from the factory. If I remember the license and discussion about it, it's "if it's in there, it's there for all."

Re:

[everphilski]

Sure, go ahead and swap out whats in the VM. The VM is just handling the boring bits. The proprietary shit is behind the hypervisor.

Don't you love it when

[Rosco P. Coltrane]

Legalese dictates engineering choices?

Do they really think software these days isn't slow and bloated enough without the additional burden of context-switching, just to circumvent the licensing problems?

I equally despise Microsoft and RMS these days...

Re:

[JeremyGNJ]

Yes. When people use legalese to try to lock down software into "freedom" (GPL 3), then people use legalese to get around it.

Re:

[jellomizer]

Clap! Clap! Well put. For most people we liked Open Source because we didn't need to reinvent the wheel just tweek what was working and just as long as we gave the code back to the community and let the community to do the same with your code is one thing. But it is a game where we cant use Open Source any more because there are to many restrictions to prevent "Evil" Use so unless you think like exactly like RMS and has his exact values of good and evil, Open Source is too restrictive... Conversely Micros

Re:

[QuoteMstr]

What are you talking about? If you don't like the GPLv3's restrictions, use the GPLv2 for your code. Or the BSD license.

I happen to think that the GPLv3 is appropriate for many projects, but it's ultimately up to the creator to choose the license, not you.

Re:

[fsmunoz]

You are describing your own interpretation of "Open Source" and attacking the FSF because apparently the GPLv3 doesn't conform to it.

Not even considering that the FSF as never used the term "Open Source" - and as actively distanced itself from it - you're description fails to cover BSD/X11/ISC type licenses, that don't require giving the source back to the community. You shouldn't narrow the world of free software to only GPL'ed covered code IMO.

As for being too restrictive, well, if you do find it tha

Whine, whine whine.

[SanityInAnarchy]

Do they really think software these days isn't slow and bloated enough without the additional burden of context-switching, just to circumvent the licensing problems?

Y'know, you could just choose not to circumvent the licensing problems. You could just use code which you can get under a license that lets you do what you want with it. Or you could *gasp* write your own code! What a concept!

And at the risk of sounding petty, they started it. The root of this problem is not the GPLv3, it's DRM and Tivoization

Tivoization (n)

[the_skywise]

To help slashdotters not have to RTFA!
(from the whitepaper link)
"Device vendors are also required to provide access to the source code of the GPL programs (see PLv2 ï½3, GPLv3 ï½6), including "the scripts used to control compilation and installation of the executable" [Footnotes 4, 6]. However, the GPLv2 does not require that installed executables must work, which enables a mechanism the Free Software Foundation calls "Tivoization."

"Tivoization," according to LinuxInfo.org, "refers to the configuring (by the manufacturer or vendor) of a digital electronic product that uses free software, so that the product will operate only with a specific version of such software." Technically, this means that a vendor of a product that uses GPL v2 programs could provide access to the source code, thus being compliant with the software license, but the product would be prevented from working if a modified version is installed, through the checking of the software image's signature."

Re:

[Todd Knarr]

Not quite. It means a vendor doing that and allowing itself the ability to update and change the software while at the same time preventing the user from doing the same. If the vendor simply made it impossible to change the software, for either the user or the vendor, then that'd be acceptable under the GPL. The GPLv3 is explicit about this: it's not a violation to put the software in ROM or the like that can't be changed, but if the software can be changed then the recipient must be able to change it. TiVo

It's a simple legal matter

[iamacat]

Either Tivo is considered a derivative work of Linux or it's not. In the former case, the company is required to release the source code to both hypervisor and Windows CE or else cease shipping the device. In the later case, Linux developers have no business telling Tivo what to do with their own hardware and software. Neither should Microsoft have any legal say in people running Vista basic in a VM.

Going the other way...

[JeremyGNJ]

Seems like the whole GPL 3 thing is "going the other way" if you step back and look at it.

It used to be that the restrictions on proprietary code caused people to want other options, and jump through hoops to get around the restrictions.

Now people will be doing the same to deal with the restrictions of GPL 3.

Seems that the "spirit" of open software is being compromised by people trying to nail it down in legal terms.

Re:

[Anonymous Coward]

Everyone seems to forget just exactly what the GPL is, and what a License is. It is a restriction that the PROGRAMMER decided to put on the product, not RMS. All RMS does is write the license, there are hundreds of licenses out there. It just happens that programmers liked the GPL because the like the idea that someone else wouldn't make money off of their work. Later on corporations latched onto the same idea. By rolling out a GPL and a closed source version of code they could essentially acheive the equiv

Re:

[fsmunoz]

Good post. Your characterization of the different value of the GPL and BSD license's for companies matches mine exactely: BSD great to take code from, GPL great to release closed source software to the public.

The rest of the post is also to the point. It's a shme moderators seem to have something against modding AC's.

Re:

[DaleGlass]

Seems like the whole GPL 3 thing is "going the other way" if you step back and look at it.

But that was precisely the intention. To take copyright and turn it against itself. Where there was "you may not redistribute or modify without the copyright holder's permission" there's now "you may not forbid redistristibution or modification without the copyright holder's permission"

Re:

[Jeff DeMaagd]

I think the stability of a product using this system. Not only do you have the resources of two different operating systems on one piece of hardware to contend with, if one OS fails, then the device will probably fail. It's probably done well enough on expensive server hardware, but when you do that on a consumer product, I just don't think the costs can be kept down as easily.

VM hype

[QuoteMstr]

Running a GPLv3d executable under a modified BSD kernel that prevented that GPLv3ed program from violating its constraints would be the moral equivalent of what this company is suggesting, but without all the virtual machine crap. I'll let other posters deal with that issue (though I suspect that what they're doing doesn't really violate the letter or spirit of the GPL.)

What I'm complaining about is the buzz about virtualization. What is the point? How many levels of abstraction do we need before we realize

Bingo!

[Curmudgeonlyoldbloke]

We WERE playing Buzzword Bingo, weren't we? I thought that "Anti-Tivoization" was never going to come up.

Re:

[everphilski]

anticountertivoestablishmentarianism!

Damn! Doesn't fit on the scrabble board!

Not a defeat, a different way of doing things

[romiz]

The resulting product is fundamentally different from a TiVo.

While on TiVo, there is no way to change any part of the code without the signing key, in the proposed solution it is possible for the user to change the whole open-source system with an other one, as required by the GPLv3 license. As such, there is much more freedom for the user to tinker with its own system.

But for the manufacturer, it has the distinct advantages that some parts of the system can be isolated from the open subsystem, in a much more stable way, both legally and technically, than in a closed-source driver. Thus, it is possible to implement DRM, software subject to type conformance, or safety-critical tasks without risking corruption from the open system, whatever this system does. And contrary to the current solution, this does not require additional hardware.

Why are we Doing This?

[Nom du Keyboard]

Why are we doing this? Why are we trying to break GPL3, when it's the type of license that benefits the user the most of all?

Re:

[fotbr]

Because "good for the user" isn't always the same as "good for the company".

Surprise, surprise, companies are in business to make money.

Re:

[fsmunoz]

"We" aren't doing this. Some companies are probably eager to do it, and then there are those around here whose major joy is bitching about the GPL, the FSF, RMS and his dog. For them everything that is unsavory to the FSF is a great joy, even if it affects everyone else - even free software developers using other licenses. They generally describe themselves as "open source" advocates but in reality they are the mirror image of the "anti-M$" crowd.

Sounds like SELinux

[Kjella]

This sounds like SELinux or AppArmor, you get to modify the code but if the security context is the same, you can't access any more. Maybe a bit more fancy than that since virtualization will allow you to share devices without sharing content. In short, you have a hypervisor that can run two VMs, e.g. one Linux and one Palladium/TC/TXT DRM-up-your-ass Blu-Ray/HD-DVD player and yet they live in separate world. This may actually be the easiest way to get HD content playing on your Linux machine, but technical

Why would Tivo be interested in this?

[Bill_the_Engineer]

Maybe I misunderstood the intended market, but why would Tivo be interested in this? A better solution would to have another CPU running the "secure" functions and have it service the needs of a larger CPU that runs the GPL code (this aux CPU behaves as an ASIC). Keep in mind, I am talking about low power CPU like the smaller PowerPC or ARM.

It would be cheaper per unit since it would eliminate any run time license fees from the hypervisor provider.

It could be more power efficient since the hardware desig

A pretty obvious workaround

[DrXym]

I thought virtualization was an pretty obvious [slashdot.org] workaround to the GPL3. To be honest they should have put language into the licence to prevent using virtualization to circumvent the DRM clauses

Re:

[QuoteMstr]

You can't do that. Where would you draw the line?

"This software cannot run on the same CPU as software that implements DRM"

The DRMer will just use a separate coprocessor.

"This software cannot be distributed with software that implements DRM"

Oops. You can't distribute a Windows machine with a GPLed program on it.

"This software cannot communicate with software that implements DRM"

It can't connect to the internet?

You're asking for the legal equivalent of an evil bit.

Circumventing?

[11223]

I may be confused, but isn't this actually a way of complying with the GPL3? Using a hypervisor allows users to upgrade the kernel of their device without running into the (theoretical) security problems that companies who lock down their devices are afraid of.

Re:

[Chandon Seldon]

Sure, but it violates what the FSF was working towards...

The single and only purpose of the anti-tivoizaton clause is to allow every user to modify any GPLv3 software they receive and then actually use their modification. It isn't intended to do anything else. Anti-DRM text was considered for GPLv3 and later dropped.

An attempt at an explanation

[bitspotter]

Start with two machines: a "Tivo" with proprietary firmware, connected via LAN to a PC with a Trusted Computing TPM and a GPLv3 OS image signed by the "Tivo"'s vendor.

The OS can be altered and recompiled on the PC at will, staying well within the provisions of the hardware/software definitions as used in the GPLv3 license.

But when streaming video from the PC to the Tivo, remote attestation is used to verify the signature of the OS image booted on the PC. If the bootstrap signature is not provided, or doesn't match, the Tivo refuses to play the provided stream.

Got it? Good. Now all you need to do is re-imagine the PC in this model as a virtual machine run inside the Tivo itself, and you get the idea.

There might be a problem with this end-run, however. It all depends on whether the GPLv3 has to say specifically about what functionality is locked out without a bootstrap signature from the VM. If there's some language about insuring "complete", "full", or "all" functionality to modified versions, then it may not matter whether there's a hypervisor in the way or not (although the original network example I gave above is still legit).

I'm intersted to hear what the lawyers have to say.

The dumbest topic on /.

[7-Vodka]

I am amazed that the ratio of junk idiotic posts vs. informed posts in this discussion is astronomical.

1. GPL3 is not designed to stop encryption of data (DRM - Digital Restrictions Management).
2. GPL3 is designed to stop preventing a user of GPL3 software from using it to the full extent (right to modify and still use the device).
3. What this white paper proposes is a way to implement DRM and comply with the GPL3.

So where's the beef?
The GPL3 doesn't stop DRM. Woot stop the presses! I could have told you that months ago during the drafting process because it's not designed to stop DRM.

Re:

[DaleGlass]

The GPL3 is perfectly in effect under this scheme.

If I release source under the GPL3 and you use it in a Tivo-style box using this scheme, you still must release the modifications to that source, and you still must allow replacing it. Thus the GPL3 does exactly what it intended to do.

All you get with this is the ability to stuff your chunk of proprietary code into the device in such a way that it's protected, while still satisfying the requirements of the GPL3 part. Big deal. You can only do that if you dev

Re:

[everphilski]

So, please, tell me, why did we go through the development of GPLv3 then? I thought this was one of the major tenents of GPLv3?

Re:

[DaleGlass]

I don't understand what do you mean. Please explain.

Re:

[everphilski]

one of the major bullet points of GPLv3 was anti-tivoization. What else is left? just the patent protection loophole? How long till that's broke?

Also note this effectively provides a DRM work-around: as you can't GPLv3 your DRMing code, you most certainly can interop with DRM via the hypervisor. Probably also fucks over trusted computing... the code can run, but the hypervisor can shut down access to stuff it doesn't want access, or give a null driver, or reduced capabilities (see: PS3)

Re:

[DaleGlass]

No, it works just fine as far as anti-tivoization is concerned.

The important thing here is that the GPL3 is a license that dicates terms only about the thing to which is applied. By that I mean, Samba is now under the GPL3, which means you can't tivoize Samba, but that doesn't say anything about whatever else you happen to include in the box.

GPL2: You can take Samba, modify it, release the patches, but make the hardware refuse to load any other version. So for instance if those patches were needed to run on

Re:

[fsmunoz]

Well, if any slippage occurs (which in this case I doubt) there is always GPLv4 to deal with it. People that like to attribute everything to RMS apparently forget that the spirit of the GPL is attractive to a large number of developers, the FSF is made and supported by a large number of people and that just because one disagrees with something doesn't mean that it is a one-man conspirancy devoided of any actual support.

Re:

[WilliamSChips]

Have you actually read the new GPL, or are you just basing your predictions off of what Linus("I don't care about where the missiles go down", said Von Braun) and Microsoft are saying?

Re:

[QuoteMstr]

Bullshit. Say I wrote an IDE that integrates with gcc, and gcc only, that generates command line options for gcc and parses its output, that front end is not a derivative work of gcc. It incorporates no code, only an interface.

You can claim that any program that interacts with any other program (and contains code specifically for that program) is a derivative work of that program, and I don't believe we live in a world like that.

Otherwise every plugin, every extension, every tuning tool and every backup pro