"Linux IDE Guy" 希望提供禁用 CPRM 的选项
发布于 2001 年 1 月 2 日
Linux 已经禁用了英特尔 CPU 上的处理器序列号,以防止应用程序读取它, Hedrick 的提议将使类似的限制策略对 CPRM 成为可能。
在对 Linux Journal 的采访中, Hedrick 解释说,CPRM 作为一种拷贝限制功能,会给诸如制作备份等重要功能带来问题。Alan Cox 说 CPRM 将使磁盘碎片整理工具无法使用。
以下是 Hedrick 发给 T13 委员会的邮件。 关于 T13 委员会官员的联系信息以及之前 T13 会议的会议记录可以在 T13 主页上找到。
主席先生,
我请求一个提案编号,以便在二月份的会议上展示以下内容。当然,我知道我需要在唱名表决中获得 2/3 的支持才能允许将其纳入 ATA-6;但是,只有在二月份的会议上以同样的方式和规则通过“e00148rX”时,这才是有必要的。
收到编号后,我将提交该文件供所有人审查。
这个攻击性交叉功能集的目的,是为了防止有效的 JAVA 类型 CPRM 工具在 HOST 首先发出最终用户认证过程的通知之前尝试执行 CPRM 操作。
通过应用此方法,T13 可能会通过强制客户选择允许在其 HOST 上执行 CPRM 操作来防止可能被起诉的问题。 他们必须发布密码来解锁功能块,以允许执行 CPRM HOST 操作。
将此约束应用于“e00148rX”,并使其成为一项可以根据需要禁用和锁定的功能,那么您将会看到更好的接受度。 这将为 MPAA 人员提供一种方法来阻止 CPRM 内容进入不允许启用 CPRM 功能的设备。每个人都赢了。
最后,如果 CPRM 提案从可能的采纳中移除,我将因为缺乏共生需求而撤回此提案。 此外,如果可以将其修改为“e00148rX”,则不需要新文档。
引用的来自另一个 T13 成员的材料已删除 - Ed.
我全力以赴地成功阻止/推迟了该提案在上一次欧文的会议上被采纳。 如果您查看这个提案的原始未净化的版本 e00148r0(请注意,10 月份完全被拒绝)与几乎是技术性的 e00148r2 的简化版本,您就明白了真相。
现在,如果你们想让我不再谈论这个话题,你们就为戴尔在 2 月份举行的会议制作包含此添加内容的 e00148r3/4。
New Command Pair:
Set Features CPRM Lock. 0x4C and 0xAC
(Yes I cleverly picked the pair to reflect their true nature)
----------------------------------------------------
These commands SHALL be included in all devices that support/enable the
CPRM "e00148rX", which is now defined as OPTIONAL. Regardless if the CPRM
key locks are supported, CPRM Enable:Disable SHALL be supported.
----------------------------------------------------
The Enable Feature command SHALL be set only by embedded HOST that do not
have an External HOST to overide the feature. The Enable Feature command
SHALL set a concatenated 32-bit passcode to hold the enable lock.
INPUTS: Enable CPRM Mode Lock
Feature 0x4C
Sector Count .c3
Sector Number .c2
Cylinder Low .c1
Cylinder High .c0
Device Head obs|na|obs|DEV|na|na|na|na
Command 0xEF
Sector Count -
Sector Number -
Cylinder Low -
Cylinder High -
The .c3 .c2 .c1 .c0 SHALL compose a valid lock which will
comprise and be limited to a 32-bit word size. The Enable
concatenated passcode SHALL have two RESERVED Values
0xFFFFFFFF and 0x00000000.
Device/Head -
DEV is to indicate device selection.
NORMAL OUTPUTS:
Error na
Sector Count .d3
Sector Number .d2
Cylinder Low .d1
Cylinder High .d0
Device Head obs|na|obs|DEV|na|na|na|na
Status BSY|DRDY|DF|na|DRQ|na|na|ERR
Sector Count -
Sector Number -
Cylinder Low -
Cylinder High -
The .d3 .d2 .d1 .d0 SHALL return the accepted passcode in the same
format that was issued.
Device/Head -
DEV is to indicate device selection.
Status register -
BSY: shall be clear to zero indicating command completion
DRDY: shall be clear to zero
DF: (Device Fault) shall be clear to zero
DRQ: shall be clear to zero
ERR: shall be clear to zero
ERROR OUTPUTS:
Error na|UNC|na|IDNF|na|na|ABRT|na
Sector Count reserved
Sector Number reserved
Cylinder Low reserved
Cylinder High reserved
Device Head obs|na|obs|DEV|na|na|na|na
Status BSY|DRDY|DF|na|DRQ|na|na|ERR
Error -
UNC: shall be set to one if the passcode is not accepted.
IDNF: shall be set to one if the passcode was never set.
ABRT: shall be set to one if this command is not supported, if
the passcode is not accepted, or if the passcode was never set.
Sector Count -
Sector Number -
Cylinder Low -
Cylinder High -
Reserved:
Device/Head -
DEV: is to indicate device selection.
Status register -
BSY: shall be clear to zero indicating command completion
DRDY: shall be clear to one.
ERR: shall be clear to one if an Error register bit is set to one.
----------------------------------------------------
The Disable Feature command MAY be set only by any HOST. The Disable
Feature command SHALL set a concatenated 32-bit passcode to hold the STATE
of the lock and SHALL NOT be cleared to enable except by the External HOST.
INPUTS: Disable CPRM Mode Lock
Feature 0xAC
Sector Count .c3
Sector Number .c2
Cylinder Low .c1
Cylinder High .c0
Device Head obs|na|obs|DEV|na|na|na|na
Command 0xEF
Sector Count -
Sector Number -
Cylinder Low -
Cylinder High -
The .c3 .c2 .c1 .c0 SHALL compose a valid lock which will
comprise and be limited to a 32-bit word size. The Disable
concatenated passcode SHALL have two RESERVED Values
0xFFFFFFFF and 0x00000000.
Device/Head -
DEV: is to indicate device selection
NORMAL OUTPUTS:
Error na
Sector Count .d3
Sector Number .d2
Cylinder Low .d1
Cylinder High .d0
Device Head obs|na|obs|DEV|na|na|na|na
Status BSY|DRDY|DF|na|DRQ|na|na|ERR
Sector Count -
Sector Number -
Cylinder Low -
Cylinder High -
The .d3 .d2 .d1 .d0 SHALL return the accepted passcode in the same
format that was issued.
Device/Head -
DEV: is to indicate device selection.
Status register -
BSY: shall be clear to zero indicating command completion
DRDY: shall be clear to zero
DF: (Device Fault) shall be clear to zero
DRQ: shall be clear to zero
ERR: shall be clear to zero
ERROR OUTPUTS:
Error na|UNC|na|IDNF|na|na|ABRT|na
Sector Count reserved
Sector Number reserved
Cylinder Low reserved
Cylinder High reserved
Device Head obs|na|obs|DEV|na|na|na|na
Status BSY|DRDY|DF|na|DRQ|na|na|ERR
Error -
UNC: shall be set to one if the passcode is not accepted.
IDNF: shall be set to one if the passcode was never set.
ABRT: shall be set to one if this command is not supported, if
the passcode is not accepted, or if the passcode was never set.
Sector Count -
Sector Number -
Cylinder Low -
Cylinder High -
Reserved:
Device/Head -
DEV: is to indicate device selection.
Status register -
BSY: shall be clear to zero indicating command completion
DRDY: shall be clear to one.
ERR: shall be clear to one if an Error register bit is set to one.
----------------------------------------------------
Standard Non-Data will be issued and the same error handling SHALL be
observed; however the follow execption SHALL report with the content in
the sub-set-features registers.
----------------------------------------------------
Additionally the Feature Support and Feature Enable Bits of the CPRM
"e00148rX" proposal reflect in a manner that standard in the reported mode
of IDENTIFY DEVICE.
Once the Set Features CPRM Lock command is set, the bits in Words 83 and
86 SHALL be effected in the following manner, as it relates to the newly
to be created "Copy Protection Feature Set Supported/Enabled".
Word 83 "Set Features CPRM Lock Support" shall be set to one,
if Word 83 for "Copy Protection Feature Set Supported" is set to one.
Word 86 "SetFeatures CPRM Lock Enable" shall be set to one, if the HOST
has issued a "Set Features CPRM Lock Disable Command" succesfully. The
result of which set the "Set Features CPRM Lock Disable Enable" to one
will also set and lock the "Copy Protection Feature Set Enabled" to zero.
Therefore "Copy Protection Feature Set Supported" shall issue an ABORT to
any HOST request to activate the "Copy Protection Feature Set" until the
"Set Features CPRM Lock Disable" is cleared by the HOST.
-------------------------------------------------
此致,
Andre HedrickCTO Timpanogas Research GroupEVP Linux Development, TRGLinux ATA Development
电子邮件:dmarti@ssc.com
