Ariadne Conill, mahaliccin mai kunna kiɗan Audacious, wanda ya ƙaddamar da ka'idar IRCv3, kuma jagoran ƙungiyar tsaro ta Alpine Linux, ya soki manufofin Gidauniyar Software ta Kyauta akan firmware na mallakar mallaka da microcode, da kuma ƙa'idodin yunƙurin mutunta 'Yancin ku da ke da nufin su. takaddun shaida na na'urorin da suka cika buƙatun don tabbatar da sirrin mai amfani da 'yanci. A cewar Ariadne, manufofin Gidauniyar suna iyakance masu amfani da kayan aikin da ba a gama ba, suna ƙarfafa masana'antun da ke neman takaddun shaida fiye da rikitarwar gine-ginen kayan aikinsu, suna hana haɓaka hanyoyin kyauta zuwa firmware na mallakar mallaka, da hana amfani da ingantattun hanyoyin tsaro.
Matsalar ta samo asali ne saboda cewa takardar shaidar "Mutunta 'Yancin ku" ba za a iya samun ta kawai ta hanyar na'urar da duk software da aka kawo ba dole ne su kasance kyauta, ciki har da firmware da aka loda ta amfani da babban CPU. A lokaci guda, firmware da aka yi amfani da shi akan ƙarin na'urori masu haɗawa na iya kasancewa a rufe, idan ba su nuna ɗaukakawa ba bayan na'urar ta fada hannun mabukaci. Misali, dole ne na'urar ta jigilar da BIOS kyauta, amma microcode da aka ɗora wa kwakwalwar kwamfuta zuwa CPU, firmware zuwa na'urorin I/O, da daidaitawar haɗin FPGA na ciki na iya kasancewa a rufe.
Wani yanayi ya taso cewa idan an ɗora kayan firmware a lokacin farawa ta tsarin aiki, kayan aikin ba za su iya karɓar takaddun shaida daga Open Source Foundation ba, amma idan firmware don dalilai iri ɗaya an ɗora shi ta wani guntu daban, na'urar za a iya tabbatar da ita. Ana ɗaukar wannan hanyar a matsayin mara kyau, tunda a farkon yanayin firmware yana bayyane, mai amfani yana sarrafa lodinsa, ya san game da shi, yana iya gudanar da binciken tsaro mai zaman kansa, kuma ana iya maye gurbinsa cikin sauƙi idan ana samun analog na kyauta. A cikin akwati na biyu, firmware shine akwatin baƙar fata, wanda ke da wuyar dubawa kuma mai yiwuwa mai amfani ba zai sani ba, yana yin imani da cewa duk software yana ƙarƙashin ikonsa.
A matsayin misali na magudi da nufin samun takardar shaidar Mutuncin ku, an ba da wayar hannu ta Librem 5, wanda masu haɓakawa, don samuwa da amfani da su don tallace-tallace, alamar yarda da buƙatun Gidauniyar Software na Kyauta, sun yi amfani da raba na'ura mai sarrafawa don fara kayan aiki da ɗaukar firmware. Bayan kammala matakin farawa, an canja wurin sarrafawa zuwa babban CPU, kuma an kashe na'ura mai ba da taimako. A sakamakon haka, ana iya samun takardar shaidar a hukumance, tun da kernel da BIOS ba su ɗora nauyin binaryar blobs ba, amma ban da gabatar da matsalolin da ba dole ba, babu abin da zai canza. Abin sha'awa, a ƙarshe duk waɗannan rikice-rikice sun kasance a banza kuma Purism bai taɓa samun takardar shaida ba.
Har ila yau, batutuwan tsaro da kwanciyar hankali sun taso daga shawarwarin Buɗewar Gidauniyar don amfani da Linux Libre kernel da Libreboot firmware, wanda aka share daga abubuwan da aka ɗora a cikin kayan aikin. Bin waɗannan shawarwarin na iya haifar da gazawa iri-iri, kuma ɓoye faɗakarwa game da buƙatar shigar da sabunta firmware na iya haifar da kurakuran da ba a daidaita su ba da kuma yiwuwar matsalolin tsaro (misali, ba tare da sabunta microcode ba, tsarin zai kasance mai rauni ga hare-haren Meltdown da Specter) . Kashe sabuntawar microcode ana ɗauka a matsayin wauta, ganin cewa an ɗora nauyin sigar microcode iri ɗaya, wanda har yanzu yana ƙunshe da lahani da kurakuran da ba a gyara ba, yayin aiwatar da fara guntu.
Wani korafi ya shafi rashin samun takardar shedar girmama 'yancin ku don kayan aikin zamani (sabon samfurin kwamfyutocin da aka tabbatar tun daga 2009). Takaddun shaida na sabbin na'urori yana fuskantar cikas ta hanyar fasaha kamar Intel ME. Misali, kwamfutar tafi-da-gidanka ta Framework tana zuwa tare da buɗaɗɗen firmware kuma tana mai da hankali kan cikakkiyar kulawar mai amfani, amma da wuya Gidauniyar Software ta Kyauta ta taɓa ba da shawararsa saboda amfani da na'urori masu sarrafa Intel tare da fasahar Intel ME (don kashe Injin Gudanar da Intel, ku. zai iya cire duk Intel ME modules daga firmware, ba da alaƙa da farkon farawa na CPU ba, kuma ya kashe babban mai sarrafa Intel ME ta amfani da zaɓi mara izini, wanda, alal misali, System76 da Purism ke yi a cikin kwamfyutocin su).
Misali kuma ita ce kwamfutar tafi-da-gidanka ta Novena, wacce aka ƙera ta bisa ƙa'idodin Buɗe Hardware kuma ana kawota tare da direbobi masu buɗewa da firmware. Tun lokacin da GPU da WiFi ke aiki a cikin Freescale i.MX 6 SoC suna buƙatar ɗaukar nauyi, duk da cewa har yanzu ba a riga an shirya nau'ikan waɗannan ɓangarorin ba a cikin haɓakawa, don tabbatar da Novena, Open Source Foundation ya buƙaci waɗannan abubuwan da aka gyara za a kashe su ta hanyar injiniya. An ƙirƙiri masu maye gurbin kyauta kuma an samar da su ga masu amfani, amma takaddun shaida zai hana masu amfani amfani da su tunda GPU da WiFi, waɗanda ba su da firmware kyauta a lokacin takaddun shaida, dole ne su kasance naƙasasshe ta jiki idan an jigilar su tare da mutunta ku. Takardun 'yanci . Sakamakon haka, mai haɓaka Novena ya ƙi amincewa da takardar shaidar mutunta 'Yancin ku, kuma masu amfani sun sami cikakken aiki, ba na'urar da aka tsiri ba.
source: budenet.ru