Bambu Lab Authorization Control System: Difference between revisions

No edit summary
added a bunch of citation neededs, removed a bunch of original legal analysis/opinion, added comments, removed ampersands
Line 7: Line 7:
}}
}}


On January 16, 2025, the 3D-printer manufacturer '''[[Bambu Lab]]''' announced that future firmwares for its 3D printers would introduce an authorization & authentication mechanism for printer connection & control, [[Deceptive language frequently used against consumers|in the name of security]].<ref name="firmware-update-introducing-new-authorization-control-system-2">{{Cite web |last=Bambu Kidd |date=2025-01-16 |title=Firmware Update Introducing New Authorization Control System |url=https://blog.bambulab.com/firmware-update-introducing-new-authorization-control-system-2/ |url-status=live |archive-url=https://ghostarchive.org/archive/qwL63 |archive-date=2026-03-07 |website=[[Bambu Lab]] Blog}}</ref> The change restricted the use of third-party accessories & slicers such as Panda Touch & OrcaSlicer, & it gated print initiation, motion control, fan & hotend control, AMS configuration, calibrations, remote video, & firmware upgrade behind a Bambu-issued authentication path.<ref name="firmware-update-introducing-new-authorization-control-system-2" /> Bambu Lab also publishes its own slicer, [https://github.com/bambulab/BambuStudio Bambu Studio], under the [[GNU Affero General Public License|AGPL-3.0]],<ref name="bambustudio-license">{{Cite web |title=BambuStudio LICENSE (AGPL-3.0 verbatim) |url=https://github.com/bambulab/BambuStudio/blob/master/LICENSE |website=GitHub |publisher=Bambu Lab |access-date=2026-05-10 |url-status=live}}</ref> while its [[Terms of Service|Terms of Use]] § 3.4 forbid users to modify, copy, reverse engineer, or create derivatives of "the Product."<ref name=":2">{{Cite web |date=2024-04-24 |title=Terms of Use |url=https://bambulab.com/en-us/policies/terms |url-status=live |archive-url=https://ghostarchive.org/archive/vPu9I |archive-date=2026-03-09 |access-date=2025-05-01 |website=[[Bambu Lab]]}}</ref> In April 2026, Bambu Lab sent a private cease-and-desist demand to a Polish community fork maintainer, Pawel Jarczak, who had restored direct printer control on top of that AGPL source; on May 7, 2026, Bambu Lab published a blog post recharacterizing the dispute as "impersonation" through "falsified identity metadata" rather than as a question about open-source rights.<ref name="bambu-blog-record-straight">{{Cite web |title=Setting the record straight on Cloud Access and Community |url=https://blog.bambulab.com/setting-the-record-straight-on-cloud-access-and-community/ |website=Bambu Lab Blog |publisher=Bambu Lab |date=2026-05-07 |access-date=2026-05-10 |url-status=live}}</ref><ref name="jarczak-readme">{{Cite web |last=Jarczak |first=Pawel |title=OrcaSlicer-bambulab — This is the end…. |url=https://github.com/jarczakpawel/OrcaSlicer-bambulab |url-status=live |archive-url=https://web.archive.org/web/20260430001537/https://github.com/jarczakpawel/OrcaSlicer-bambulab |archive-date=2026-04-30 |access-date=2026-05-04 |website=[[GitHub]]}}</ref>
On January 16, 2025, the 3D-printer manufacturer '''[[Bambu Lab]]''' announced that future firmwares for its 3D printers would introduce an authorization and authentication mechanism for printer connection and control, [[Deceptive language frequently used against consumers|in the name of security]].<ref name="firmware-update-introducing-new-authorization-control-system-2">{{Cite web |last=Bambu Kidd |date=2025-01-16 |title=Firmware Update Introducing New Authorization Control System |url=https://blog.bambulab.com/firmware-update-introducing-new-authorization-control-system-2/ |url-status=live |archive-url=https://ghostarchive.org/archive/qwL63 |archive-date=2026-03-07 |website=[[Bambu Lab]] Blog}}</ref> The change restricted the use of third-party accessories and slicers such as Panda Touch and OrcaSlicer, and it gated print initiation, motion control, fan and hotend control, AMS configuration, calibrations, remote video, and firmware upgrade behind a Bambu-issued authentication path.<ref name="firmware-update-introducing-new-authorization-control-system-2" /> Bambu Lab also publishes its own slicer, [https://github.com/bambulab/BambuStudio Bambu Studio], under the [[GNU Affero General Public License|AGPL-3.0]],<ref name="bambustudio-license">{{Cite web |title=BambuStudio LICENSE (AGPL-3.0 verbatim) |url=https://github.com/bambulab/BambuStudio/blob/master/LICENSE |website=GitHub |publisher=Bambu Lab |access-date=2026-05-10 |url-status=live}}</ref> while its [[Terms of Service|Terms of Use]] § 3.4 forbid users to modify, copy, reverse engineer, or create derivatives of "the Product."<ref name=":2">{{Cite web |date=2024-04-24 |title=Terms of Use |url=https://bambulab.com/en-us/policies/terms |url-status=live |archive-url=https://ghostarchive.org/archive/vPu9I |archive-date=2026-03-09 |access-date=2025-05-01 |website=[[Bambu Lab]]}}</ref> In April 2026, Bambu Lab sent a private cease-and-desist demand to a Polish community fork maintainer, Pawel Jarczak, who had restored direct printer control on top of that AGPL source; on May 7, 2026, Bambu Lab published a blog post recharacterizing the dispute as "impersonation" through "falsified identity metadata" rather than as a question about open-source rights.<ref name="bambu-blog-record-straight">{{Cite web |title=Setting the record straight on Cloud Access and Community |url=https://blog.bambulab.com/setting-the-record-straight-on-cloud-access-and-community/ |website=Bambu Lab Blog |publisher=Bambu Lab |date=2026-05-07 |access-date=2026-05-10 |url-status=live}}</ref><ref name="jarczak-readme">{{Cite web |last=Jarczak |first=Pawel |title=OrcaSlicer-bambulab — This is the end…. |url=https://github.com/jarczakpawel/OrcaSlicer-bambulab |url-status=live |archive-url=https://web.archive.org/web/20260430001537/https://github.com/jarczakpawel/OrcaSlicer-bambulab |archive-date=2026-04-30 |access-date=2026-05-04 |website=[[GitHub]]}}</ref>


==Controversy regarding firmware updates==
==Controversy regarding firmware updates==
[[File:Bambu tos screenshot.png|alt=bambu terms stating print jobs may not function properly if update is not performed to new firmware which is highly limiting. |thumb|Bambu terms regarding printer functionality & potential for disrupted print jobs if users do not update to a new firmware that radically restricts the autonomy of the owner of the printer]]
[[File:Bambu tos screenshot.png|alt=bambu terms stating print jobs may not function properly if update is not performed to new firmware which is highly limiting. |thumb|Bambu terms regarding printer functionality and potential for disrupted print jobs if users do not update to a new firmware that radically restricts the autonomy of the owner of the printer]]


===Potential for remote disabling of printers===
===Potential for remote disabling of printers===
A concern raised by the community revolves around the wording in Bambu Lab's [[Terms of Service]] (ToS) and firmware update announcements. Critics and users argue that the phrasing leaves open the possibility for the manufacturer to [[Remote disabling|remotely disable]] printers that are not updated to the latest firmware. Specifically, Bambu Lab's ToS warns that printers may block new print jobs if updates are not applied,<ref name=":2" /> which some users interpret as a potential pathway for forced obsolescence.<ref name="firmware-update-introducing-new-authorization-control-system-2" /> While defenders of Bambu Lab point out that offline modes such as SD-card printing and [[wikipedia:Local_area_network|LAN]]-only setups would remain functional, others point out that the ToS do not explicitly limit this restriction to [[Cloud (service)|cloud]]-based printing. This ambiguity has led to speculation that Bambu Lab could enforce broader limitations, effectively rendering printers inoperable for users who choose not to update.<ref name="theverge-bambu-2025">{{Cite web |last=Hollister |first=Sean |date=2025-01-22 |title=Here's what Bambu will — and won't — promise after its controversial 3D printer update |url=https://www.theverge.com/2025/1/21/24349031/bambu-3d-printer-update-authentication-filament-subscription-lock-answers |url-status=live |access-date=2025-05-01 |website=The Verge |archive-url=http://web.archive.org/web/20251122143504/https://www.theverge.com/2025/1/21/24349031/bambu-3d-printer-update-authentication-filament-subscription-lock-answers |archive-date=2025-11-22}}</ref>
A concern raised by the community revolves around the wording in Bambu Lab's [[Terms of Service]] (ToS) and firmware update announcements. Critics and users argue{{CitationNeeded}} that the phrasing leaves open the possibility for the manufacturer to [[Remote disabling|remotely disable]] printers that are not updated to the latest firmware. Specifically, Bambu Lab's ToS warns that printers may block new print jobs if updates are not applied,<ref name=":2" /> which some users interpret as a potential pathway for forced obsolescence.<ref name="firmware-update-introducing-new-authorization-control-system-2" /> While defenders of Bambu Lab point out that offline modes such as SD-card printing and [[wikipedia:Local_area_network|LAN]]-only setups would remain functional, others point out that the ToS do not explicitly limit this restriction to [[Cloud (service)|cloud]]-based printing. This ambiguity has led to speculation that Bambu Lab could enforce broader limitations, effectively rendering printers inoperable for users who choose not to update.<ref name="theverge-bambu-2025">{{Cite web |last=Hollister |first=Sean |date=2025-01-22 |title=Here's what Bambu will — and won't — promise after its controversial 3D printer update |url=https://www.theverge.com/2025/1/21/24349031/bambu-3d-printer-update-authentication-filament-subscription-lock-answers |url-status=live |access-date=2025-05-01 |website=The Verge |archive-url=http://web.archive.org/web/20251122143504/https://www.theverge.com/2025/1/21/24349031/bambu-3d-printer-update-authentication-filament-subscription-lock-answers |archive-date=2025-11-22}}</ref>


====Editing of initial announcement====
====Editing of initial announcement====
Line 42: Line 42:


==Bambu Lab's justification and rebuttal==
==Bambu Lab's justification and rebuttal==
Bambu Lab has stated that the authorization system is in place in order to protect against "remote hacks," "printer exposure," and "abnormal traffic or attacks." The cited security incidents have specific context:
Bambu Lab has stated that the authorization system is in place in order to protect against "remote hacks," "printer exposure," and "abnormal traffic or attacks". The cited security incidents have specific context:


*The "remote hacks" cited as an example in the article followed a reported security vulnerability in a 3D printer product; according to Bitdefender's reporting, the researcher infected machines to display a harmless message in order to publicize the unpatched flaw.<ref>{{Cite web |last=Cluley |first=Graham |date=2024-03-01 |title=Someone is hacking 3D printers to warn owners of a security flaw |url=https://www.bitdefender.com/en-au/blog/hotforsecurity/someone-is-hacking-3d-printers-to-warn-owners-of-a-security-flaw?ref=blog.bambulab.com |url-status=live |archive-url=https://web.archive.org/web/20260216002646/https://www.bitdefender.com/en-au/blog/hotforsecurity/someone-is-hacking-3d-printers-to-warn-owners-of-a-security-flaw?ref=blog.bambulab.com |archive-date=2026-02-16 |access-date=2025-05-01 |website=[[Bitdefender]]}}</ref>
*The "remote hacks" cited as an example in the article followed a reported security vulnerability in a 3D printer product; according to Bitdefender's reporting, the researcher infected machines to display a harmless message in order to publicize the unpatched flaw.<ref>{{Cite web |last=Cluley |first=Graham |date=2024-03-01 |title=Someone is hacking 3D printers to warn owners of a security flaw |url=https://www.bitdefender.com/en-au/blog/hotforsecurity/someone-is-hacking-3d-printers-to-warn-owners-of-a-security-flaw?ref=blog.bambulab.com |url-status=live |archive-url=https://web.archive.org/web/20260216002646/https://www.bitdefender.com/en-au/blog/hotforsecurity/someone-is-hacking-3d-printers-to-warn-owners-of-a-security-flaw?ref=blog.bambulab.com |archive-date=2026-02-16 |access-date=2025-05-01 |website=[[Bitdefender]]}}</ref>
Line 55: Line 55:
This change has drawn criticism for many reasons:
This change has drawn criticism for many reasons:
*'''Privacy concerns''': Requiring authentication for LAN mode raises concerns about data being unnecessarily exposed to Bambu Lab's servers, even for local-only operations, though previously, the printer was also connected and could be controlled by the cloud even when sending prints locally.
*'''Privacy concerns''': Requiring authentication for LAN mode raises concerns about data being unnecessarily exposed to Bambu Lab's servers, even for local-only operations, though previously, the printer was also connected and could be controlled by the cloud even when sending prints locally.
**Confidentiality required by US Law: this is in conflict with users that have to comply with internal U.S. government classified information handling regulations.
**Confidentiality required by US Law: this is in conflict with users that have to comply with internal U.S. government classified information handling regulations.{{CitationNeeded}}
*'''Loss of offline independence while also using cloud''': Before, users could have hybrid offline setups. The requirement for authentication removes this option unless users revert to older firmware versions; Bambu Lab initially indicated rollback would not be permitted, though The Verge later reported that users could still downgrade and use LAN access keys while signed into the cloud.
*'''Loss of offline independence while also using cloud''': Before, users could have hybrid offline setups. The requirement for authentication removes this option unless users revert to older firmware versions; Bambu Lab initially indicated rollback would not be permitted, though The Verge later reported that users could still downgrade and use LAN access keys while signed into the cloud.
*'''Increased complexity''': The added authentication layer complicates workflows for users who built custom setups or relied on third-party integrations for LAN control while retaining cloud functionality.<ref name=":4">{{Cite web |last=@edlboston |date=2023-01 |title=Full Non-Cloud Based Network Option Needed |url=https://forum.bambulab.com/t/full-non-cloud-based-network-option-needed/3643 |url-status=live |archive-url=https://ghostarchive.org/archive/1ee4F |archive-date=2026-03-30 |access-date=2025-05-01 |website=[[Bambu Lab]] Community Forum |quote=Yes, I know about the LAN mode. But as has been stated by many people, things like the camera will not work, nor will the Handy app. There is no technical reason that these are bound to the cloud. This is the problem and why I titled this FULL Non-Cloud Network.}}</ref>
*'''Increased complexity''': The added authentication layer complicates workflows for users who built custom setups or relied on third-party integrations for LAN control while retaining cloud functionality.<ref name=":4">{{Cite web |last=@edlboston |date=2023-01 |title=Full Non-Cloud Based Network Option Needed |url=https://forum.bambulab.com/t/full-non-cloud-based-network-option-needed/3643 |url-status=live |archive-url=https://ghostarchive.org/archive/1ee4F |archive-date=2026-03-30 |access-date=2025-05-01 |website=[[Bambu Lab]] Community Forum |quote=Yes, I know about the LAN mode. But as has been stated by many people, things like the camera will not work, nor will the Handy app. There is no technical reason that these are bound to the cloud. This is the problem and why I titled this FULL Non-Cloud Network.}}</ref>
Line 65: Line 65:
*While the user experience is different, the flow remains unchanged Orca Slicer slices model -> Orca Slicer Calls API of Bambu Proprietary Software -> Bambu Proprietary Software controls the printer.
*While the user experience is different, the flow remains unchanged Orca Slicer slices model -> Orca Slicer Calls API of Bambu Proprietary Software -> Bambu Proprietary Software controls the printer.


Additionally, Bambu Connect software (downloaded and installed in January 2025, before the backlash response) supports adding LAN-Only printers without requiring Bambu Account authentication, the same behavior as the Network Plugin used in Orca Slicer.
Additionally, Bambu Connect software (downloaded and installed in January 2025, before the backlash response) supports adding LAN-Only printers without requiring Bambu Account authentication, the same behavior as the Network Plugin used in Orca Slicer.{{CitationNeeded}}
 
===Precedents and comparisons===
Critics have likened this potential functionality to similar cases in other industries where manufacturers remotely restrict product features. A documented example is [[HP]]'s printer firmware updates that [[HP Instant Ink|rendered third-party ink cartridges unusable]], which became the subject of a class-action settlement.<ref name=":5">{{Cite web |last=Harding |first=Scharon |date=2025-03-19 |title=HP avoids monetary damages over bricked printers in class-action settlement |url=https://arstechnica.com/gadgets/2025/03/hp-avoids-monetary-damages-over-bricked-printers-in-class-action-settlement/ |url-status=live |archive-url=http://web.archive.org/web/20250319231817/https://arstechnica.com/gadgets/2025/03/hp-avoids-monetary-damages-over-bricked-printers-in-class-action-settlement/ |archive-date=2025-03-19 |website=Ars Technica}}</ref>


===X1E firmware 01.01.02.00 LAN-mode connection failure===
===X1E firmware 01.01.02.00 LAN-mode connection failure===
Line 74: Line 71:


==Implementation timeline and requirements==
==Implementation timeline and requirements==
 
<!-- this section seems out of date -->
The authorization system will be rolled out in phases, starting with the X1 series printers. A beta firmware (version 01.08.03.00) was released on January 17, 2025, with the full release scheduled for late January 2025.<ref name="firmware-update-introducing-new-authorization-control-system-2" /> The P & A series printers will get similar updates at an unspecified future date.
The authorization system will be rolled out in phases, starting with the X1 series printers. A beta firmware (version 01.08.03.00) was released on January 17, 2025, with the full release scheduled for late January 2025.<ref name="firmware-update-introducing-new-authorization-control-system-2" /> The P and A series printers will get similar updates at an unspecified future date.


To use printers with the new authorization system, users must update multiple pieces of software:<ref name="firmware-update-introducing-new-authorization-control-system-2" />
To use printers with the new authorization system, users must update multiple pieces of software:<ref name="firmware-update-introducing-new-authorization-control-system-2" />
Line 107: Line 104:
*Automate printer behaviors based on sensor data or events
*Automate printer behaviors based on sensor data or events
*Access camera feeds through third-party applications<ref name="bambulab-forum-135400/9">{{Cite web |last=@hho |date=2025-01-16 |title=This new auth system will make me sell my printers |url=https://forum.bambulab.com/t/this-new-auth-system-will-make-me-sell-my-printers/135400/9 |url-status=live |archive-url=https://ghostarchive.org/archive/ro1KZ |archive-date=2026-03-30 |access-date=2025-05-01 |website=Bambu Lab Community Forum}}</ref>
*Access camera feeds through third-party applications<ref name="bambulab-forum-135400/9">{{Cite web |last=@hho |date=2025-01-16 |title=This new auth system will make me sell my printers |url=https://forum.bambulab.com/t/this-new-auth-system-will-make-me-sell-my-printers/135400/9 |url-status=live |archive-url=https://ghostarchive.org/archive/ro1KZ |archive-date=2026-03-30 |access-date=2025-05-01 |website=Bambu Lab Community Forum}}</ref>
 
<!--
commented out this section until someone can check and resolve the contradiction in the first paragraph
===Permanent nature of the update===
===Permanent nature of the update===
Once a printer is updated to the new firmware, users can still revert to previous versions.<ref name="theverge-bambu-2025" /> The option still exists to disable the cloud service.
Once a printer is updated to the new firmware, users can still revert to previous versions.<ref name="theverge-bambu-2025" /> The option still exists to disable the cloud service.
Line 114: Line 112:


For users that would want to use a third-party slicer while using their cloud service, Bambu would require those users to download and install Bambu Connect in order to send gcode wirelessly over LAN or over the cloud. While Bambu claims that they were in contact with SoftFever, the developer of OrcaSlicer, as of January 2025, SoftFever did not have any keys for Bambu Connect and the new firmware was only available as opt-in beta at the time.<ref name=":1">{{Cite web |last=@fever_soft |date=2025-01-18 |title=This is definitely a bummer. I was negotiating for an authorization key to allow OrcaSlicer to communicate with their device like BambuStudio does, but today I was told they won't support this. Only their slicer can send prints directly; others must use their Bambu Connect application |url=https://x.com/fever_soft/status/1880630570809795034?t=qJyh4SGFZFllcYrqexGW-Q |url-status=live |access-date=2025-05-01 |website=[[X]] |archive-url=http://web.archive.org/web/20251004104021/https://x.com/fever_soft/status/1880630570809795034?t=qJyh4SGFZFllcYrqexGW-Q |archive-date=2025-10-04}}</ref>
For users that would want to use a third-party slicer while using their cloud service, Bambu would require those users to download and install Bambu Connect in order to send gcode wirelessly over LAN or over the cloud. While Bambu claims that they were in contact with SoftFever, the developer of OrcaSlicer, as of January 2025, SoftFever did not have any keys for Bambu Connect and the new firmware was only available as opt-in beta at the time.<ref name=":1">{{Cite web |last=@fever_soft |date=2025-01-18 |title=This is definitely a bummer. I was negotiating for an authorization key to allow OrcaSlicer to communicate with their device like BambuStudio does, but today I was told they won't support this. Only their slicer can send prints directly; others must use their Bambu Connect application |url=https://x.com/fever_soft/status/1880630570809795034?t=qJyh4SGFZFllcYrqexGW-Q |url-status=live |access-date=2025-05-01 |website=[[X]] |archive-url=http://web.archive.org/web/20251004104021/https://x.com/fever_soft/status/1880630570809795034?t=qJyh4SGFZFllcYrqexGW-Q |archive-date=2025-10-04}}</ref>
 
-->
==Impact on functionality==
==Impact on functionality==
While some functionality remains unauthenticated like in previous firmware versions (sending status information from the printer over the network, starting a print job using SD cards), the most important features now require authentication through a new closed-source client called Bambu Connect<ref name="bambu-connect" />. These restricted features include:
While some functionality remains unauthenticated like in previous firmware versions (sending status information from the printer over the network, starting a print job using SD cards), the most important features now require authentication through a closed-source client called Bambu Connect<ref name="bambu-connect" />. These restricted features include:


*Initializing prints via LAN or cloud mode
*Initializing prints via LAN or cloud mode
Line 126: Line 124:
Previously, third-party software such as OrcaSlicer<ref name="orca-slicer-issue8063">{{Cite web |date=2025-01-16 |title=FW 1.08.03.00 from Bambu WILL BREAK ORCASLICER for X, P and A series #8063 |url=https://github.com/SoftFever/OrcaSlicer/issues/8063 |url-status=live |archive-url=http://web.archive.org/web/20250708192842/https://github.com/SoftFever/OrcaSlicer/issues/8063 |archive-date=2025-07-08 |access-date=2025-05-01 |website=[[GitHub]]}}</ref> could interact with Bambu Lab printers via the open-source Bambu Studio and proprietary network plug-ins. While Bambu Connect provides a limited URL-based API to initiate prints, most functionality previously openly available is now restricted to Bambu's ecosystem<ref name="bambulab-forum-135400/9" />.
Previously, third-party software such as OrcaSlicer<ref name="orca-slicer-issue8063">{{Cite web |date=2025-01-16 |title=FW 1.08.03.00 from Bambu WILL BREAK ORCASLICER for X, P and A series #8063 |url=https://github.com/SoftFever/OrcaSlicer/issues/8063 |url-status=live |archive-url=http://web.archive.org/web/20250708192842/https://github.com/SoftFever/OrcaSlicer/issues/8063 |archive-date=2025-07-08 |access-date=2025-05-01 |website=[[GitHub]]}}</ref> could interact with Bambu Lab printers via the open-source Bambu Studio and proprietary network plug-ins. While Bambu Connect provides a limited URL-based API to initiate prints, most functionality previously openly available is now restricted to Bambu's ecosystem<ref name="bambulab-forum-135400/9" />.


Previously, third-party accessories such as Panda Touch would allow users to control their printers with a standalone device. Panda Touch was especially popular amongst P series printer owners since P series printers contain a monochromatic screen with a D-pad by default for printer control whereas Panda Touch is a full-color touch screen that had a small battery so that way users could reposition and detach their Panda Touch off their printers if needed. Users would be able to queue up jobs, jog printer motors, and connect to multiple printers at once in order to monitor print jobs. According to Big Tree Tech (BTT), the manufacturer of the Panda Touch, they urge users of Panda Touch not to update firmware any further since doing so would foreseeably permanently break compatibility with users' printers and their Panda Touch. <ref name=":0" />
Additionally, third-party accessories such as Panda Touch used to allow users to control their printers with a standalone device. Panda Touch was especially popular amongst P series printer owners since P series printers contain a monochromatic screen with a D-pad by default for printer control whereas Panda Touch featured a full-color touch screen According to Big Tree Tech (BTT), the manufacturer of the Panda Touch, they urge users of Panda Touch not to update firmware any further since doing so would foreseeably permanently break compatibility with users' printers and their Panda Touch. <ref name=":0" />


==Communication with Panda Touch developers==
==Communication with Panda Touch developers==
Line 147: Line 145:
Primary criticisms of Bambu were:
Primary criticisms of Bambu were:
*'''Lack of transparency''': SoftFever reported that the limited warning given to OrcaSlicer developers preceded community engagement with existing customers.<ref name="orca-slicer-issue8063" /> Point to the contrary: the new firmware is in beta and Bambu Connect middleware contains temporary compromises to allow third-party slicers to work as before.
*'''Lack of transparency''': SoftFever reported that the limited warning given to OrcaSlicer developers preceded community engagement with existing customers.<ref name="orca-slicer-issue8063" /> Point to the contrary: the new firmware is in beta and Bambu Connect middleware contains temporary compromises to allow third-party slicers to work as before.
*'''Lack of follow-through:''' As of January 2025, SoftFever, OrcaSlicer's lead developer, did not have API keys for Bambu Connect, a necessary layer of Bambu software that would need to be integrated into OrcaSlicer. Some community members questioned whether Bambu Lab's outreach to OrcaSlicer was a substantive collaboration effort.<ref name=":1" />
*'''Lack of follow-through:''' As of January 2025, SoftFever, OrcaSlicer's lead developer, did not have API keys for Bambu Connect, a necessary layer of Bambu software that would need to be integrated into OrcaSlicer. Some community members questioned whether Bambu Lab's outreach to OrcaSlicer was a substantive collaboration effort.<ref name=":1">{{Cite web |last=@fever_soft |date=2025-01-18 |title=This is definitely a bummer. I was negotiating for an authorization key to allow OrcaSlicer to communicate with their device like BambuStudio does, but today I was told they won't support this. Only their slicer can send prints directly; others must use their Bambu Connect application |url=https://x.com/fever_soft/status/1880630570809795034?t=qJyh4SGFZFllcYrqexGW-Q |url-status=live |access-date=2025-05-01 |website=[[X]] |archive-url=http://web.archive.org/web/20251004104021/https://x.com/fever_soft/status/1880630570809795034?t=qJyh4SGFZFllcYrqexGW-Q |archive-date=2025-10-04}}</ref>
*'''Disregard for open-source collaboration''': OrcaSlicer is open-source software developed under the AGPL-3.0 license.<ref name="softfever-orcaslicer-license" /> The decision to restrict network APIs in favor of proprietary systems such as Bambu Connect removes customer choice in how the printer is operated.
*'''Disregard for open-source collaboration''': OrcaSlicer is open-source software developed under the AGPL-3.0 license.<ref name="softfever-orcaslicer-license" /> The decision to restrict network APIs in favor of proprietary systems such as Bambu Connect removes customer choice in how the printer is operated.
*'''Token support for third-party tools''': While Bambu Connect provides a workaround for third-party slicer use, it restricts functionality and complicates workflows, leading many to question the sincerity of Bambu's stated support for open-source tools<ref name="bambu-connect" />.
*'''Token support for third-party tools''': While Bambu Connect provides a workaround for third-party slicer use, it restricts functionality and complicates workflows, leading many to question the sincerity of Bambu's stated support for open-source tools<ref name="bambu-connect" />.
Line 157: Line 155:


===Custom firmware development===
===Custom firmware development===
Discussions within the community highlight interest in developing custom firmware as an alternative to Bambu's official updates. One prominent project mentioned in forums is the development of custom firmware for the X1-series printers, such as the "X1Plus Custom Firmware"<ref name="bambulab-forum-134549/12" />. This firmware aims to:
Discussions took place within the community concerning the development of custom firmware as an alternative to Bambu's official updates. One prominent project mentioned in forums is the development of custom firmware for the X1-series printers, such as the "X1Plus Custom Firmware"<ref name="bambulab-forum-134549/12">{{Cite web |date=2025-01-14 |title=Bambu Studio 1.10.2 Public Beta |url=https://forum.bambulab.com/t/bambu-studio-1-10-2-public-beta/134549/12 |url-status=live |archive-url=https://ghostarchive.org/archive/u4vpc |archive-date=2026-03-30 |access-date=2025-05-01 |website=[[Bambu Lab]] Community Forum}}</ref>. This firmware aims to:
*Restore direct network control and third-party slicer compatibility.
*Restore direct network control and third-party slicer compatibility.
*Re-enable previously available features such as motion-system adjustments, temperature control, and AMS settings without requiring proprietary software.
*Re-enable previously available features such as motion-system adjustments, temperature control, and AMS settings without requiring proprietary software.
*Provide users with greater flexibility in integrating printers with home-automation systems and workflows.
*Provide users with greater flexibility in integrating printers with home-automation systems and workflows.


However, custom firmware development faces several challenges, including:
However, custom firmware development faces several challenges{{CitationNeeded}}, including:
*Limited documentation and proprietary hardware components, which complicate reverse-engineering efforts.
*Limited documentation and proprietary hardware components, which complicate reverse-engineering efforts.
*The potential voiding of warranties and risks of bricking devices.
*The potential voiding of warranties and risks of bricking devices.
Line 174: Line 172:


[[Bambu Lab LAN mode guide]]
[[Bambu Lab LAN mode guide]]
==Reverse engineering Bambu Connect==
{{:Reverse Engineering Bambu Connect}}
''[[Reverse Engineering Bambu Connect|Read more about reverse engineering Bambu Connect here.]]''


==Community tools and scripts==
==Community tools and scripts==
Line 205: Line 198:
==Cease and desist against the OrcaSlicer-bambulab re-enablement project==
==Cease and desist against the OrcaSlicer-bambulab re-enablement project==


In April 2026, Bambu Lab sent a cease-and-desist communication to the developer of a third-party OrcaSlicer fork that had restored direct printer control after the Authorization Control System rollout. The project was wiped from public view the same day the threat was delivered, and the developer published a summary of Bambu Lab's allegations but not the letter itself, citing Bambu Lab's refusal to authorize publication.<ref name="jarczak-readme" /> The full public-record account includes a parallel May 7, 2026 Bambu Lab blog post & three same-day public Reddit replies from the maintainer.
In April 2026, Bambu Lab sent a cease-and-desist communication to the developer of a third-party OrcaSlicer fork that had restored direct printer control after the Authorization Control System rollout. The project was wiped from public view the same day the threat was delivered, and the developer published a summary of Bambu Lab's allegations but not the letter itself, citing Bambu Lab's refusal to authorize publication.<ref name="jarczak-readme" />{{CitationNeeded}} The full public-record account includes a parallel May 7, 2026 Bambu Lab blog post and three same-day public Reddit replies from the maintainer.


===What OrcaSlicer is===
===OrcaSlicer===
OrcaSlicer is a free, open-source slicer: a program that converts a 3D model file into the layer-by-layer instructions (G-code) a 3D printer needs to produce the physical object. It is maintained by the developer SoftFever and draws from Bambu Lab's Bambu Studio, which is itself a fork of Prusa Research's PrusaSlicer.<ref name="softfever-orcaslicer">{{Cite web |last=SoftFever |title=OrcaSlicer |url=https://github.com/SoftFever/OrcaSlicer |url-status=live |access-date=2026-05-04 |website=[[GitHub]]}}</ref> Bambu Studio in turn descends from Slic3r, the upstream project Prusa Research forked.<ref name="slic3r-repo">{{Cite web |title=Slic3r |url=https://github.com/slic3r/Slic3r |website=GitHub |access-date=2026-05-10 |url-status=live}}</ref><ref name="prusaslicer-license">{{Cite web |title=PrusaSlicer LICENSE (AGPL-3.0) |url=https://github.com/prusa3d/PrusaSlicer/blob/master/LICENSE |website=GitHub |publisher=Prusa Research |access-date=2026-05-10 |url-status=live}}</ref> OrcaSlicer is widely used by owners of Bambu Lab printers as an alternative to Bambu Studio, & it ships under the AGPL-3.0 license.<ref name="softfever-orcaslicer" /><ref name="softfever-orcaslicer-license">{{Cite web |title=OrcaSlicer LICENSE.txt (AGPL-3.0) |url=https://github.com/SoftFever/OrcaSlicer/blob/main/LICENSE.txt |website=GitHub |publisher=SoftFever |access-date=2026-05-10 |url-status=live}}</ref><ref name="xda-jarczak">{{Cite web |last=Batt |first=Simon |date=2026-04-23 |title=A developer restored OrcaSlicer's features that Bambu Lab killed — then the legal threats arrived |url=https://www.xda-developers.com/developer-restored-orcaslicers-features-bambu-lab-killed-legal-threats-arrived/ |url-status=live |archive-url=https://web.archive.org/web/20260427233833/https://www.xda-developers.com/developer-restored-orcaslicers-features-bambu-lab-killed-legal-threats-arrived/ |archive-date=2026-04-27 |access-date=2026-05-04 |website=XDA Developers}}</ref>
OrcaSlicer is a free, open-source slicer: a program that converts a 3D model file into the layer-by-layer instructions (G-code) a 3D printer needs to produce the physical object. It is maintained by the developer SoftFever and draws from Bambu Lab's Bambu Studio, which is itself a fork of Prusa Research's PrusaSlicer.<ref name="softfever-orcaslicer">{{Cite web |last=SoftFever |title=OrcaSlicer |url=https://github.com/SoftFever/OrcaSlicer |url-status=live |access-date=2026-05-04 |website=[[GitHub]]}}</ref> Bambu Studio in turn descends from Slic3r, the upstream project Prusa Research forked.<ref name="slic3r-repo">{{Cite web |title=Slic3r |url=https://github.com/slic3r/Slic3r |website=GitHub |access-date=2026-05-10 |url-status=live}}</ref><ref name="prusaslicer-license">{{Cite web |title=PrusaSlicer LICENSE (AGPL-3.0) |url=https://github.com/prusa3d/PrusaSlicer/blob/master/LICENSE |website=GitHub |publisher=Prusa Research |access-date=2026-05-10 |url-status=live}}</ref> OrcaSlicer is widely used by owners of Bambu Lab printers as an alternative to Bambu Studio, and it ships under the AGPL-3.0 license.<ref name="softfever-orcaslicer" /><ref name="softfever-orcaslicer-license">{{Cite web |title=OrcaSlicer LICENSE.txt (AGPL-3.0) |url=https://github.com/SoftFever/OrcaSlicer/blob/main/LICENSE.txt |website=GitHub |publisher=SoftFever |access-date=2026-05-10 |url-status=live}}</ref><ref name="xda-jarczak">{{Cite web |last=Batt |first=Simon |date=2026-04-23 |title=A developer restored OrcaSlicer's features that Bambu Lab killed — then the legal threats arrived |url=https://www.xda-developers.com/developer-restored-orcaslicers-features-bambu-lab-killed-legal-threats-arrived/ |url-status=live |archive-url=https://web.archive.org/web/20260427233833/https://www.xda-developers.com/developer-restored-orcaslicers-features-bambu-lab-killed-legal-threats-arrived/ |archive-date=2026-04-27 |access-date=2026-05-04 |website=XDA Developers}}</ref>


===Restrictions introduced by the Authorization Control System===
===Restrictions introduced by the Authorization Control System===
The Authorization Control System announced on January 16, 2025 gated print initiation, motion control, fan & hotend temperature control, AMS configuration, calibrations, remote video, & firmware upgrade behind a Bambu-issued authentication path. Owners who installed the new firmware could no longer send print jobs from third-party slicers directly over the local network; they had to route those jobs through a new closed-source middleware, Bambu Connect.<ref name="firmware-update-introducing-new-authorization-control-system-2" /> SoftFever was not given API keys for Bambu Connect & stated publicly that direct print sending from OrcaSlicer would not be supported going forward.<ref name=":1" />
The Authorization Control System announced on January 16, 2025 gated print initiation, motion control, fan and hotend temperature control, AMS configuration, calibrations, remote video, and firmware upgrade behind a Bambu-issued authentication path. Owners who installed the new firmware could no longer send print jobs from third-party slicers directly over the local network; they had to route those jobs through a new closed-source middleware, Bambu Connect.<ref name="firmware-update-introducing-new-authorization-control-system-2" /> SoftFever was not given API keys for Bambu Connect and stated publicly that direct print sending from OrcaSlicer would not be supported going forward.<ref name=":1" />


=== OrcaSlicer-bambulab fork===
=== OrcaSlicer-bambulab fork===
On April 23, 2026, the developer Pawel Jarczak (GitHub user <code>jarczakpawel</code>) made a public fork named OrcaSlicer-bambulab at <code>github.com/jarczakpawel/OrcaSlicer-bambulab</code>. The fork restored the ability to send print jobs from OrcaSlicer directly to Bambu Lab printers without routing through Bambu Connect.<ref name="xda-jarczak" /> According to Jarczak's own description, the fork worked by reaching the printer through a Linux-side workflow Bambu Lab had not yet disabled, & was built on publicly available Bambu Studio source code combined with the developer's own integration layer; it did not redistribute Bambu Lab's proprietary networking plugin binaries.<ref name="jarczak-readme" /><ref name="3druck-jarczak">{{Cite web |date=2026-04-30 |title=Developer ends OrcaSlicer fork after Bambu Lab threatens legal action |url=https://3druck.com/en/programs/developer-terminates-orcaslicer-fork-after-bambu-lab-threatens-to-sue-32156744/ |url-status=live |access-date=2026-05-04 |website=3Druck.com}}</ref> Jarczak also maintained a sibling fork at <code>github.com/jarczakpawel/BambuStudio-BMCU</code> that added support for a third-party multi-color unit (BMCU); that repository remained live as of May 9, 2026.<ref name="jarczak-bmcu">{{Cite web |last=Jarczak |first=Pawel |title=BambuStudio-BMCU |url=https://github.com/jarczakpawel/BambuStudio-BMCU |website=GitHub |access-date=2026-05-10 |url-status=live}}</ref>
On April 23, 2026, the developer Pawel Jarczak (GitHub user <code>jarczakpawel</code>) made a public fork named OrcaSlicer-bambulab at <code>github.com/jarczakpawel/OrcaSlicer-bambulab</code>. The fork restored the ability to send print jobs from OrcaSlicer directly to Bambu Lab printers without routing through Bambu Connect.<ref name="xda-jarczak" /> According to Jarczak's own description, the fork worked by reaching the printer through a Linux-side workflow Bambu Lab had not yet disabled, and was built on publicly available Bambu Studio source code combined with the developer's own integration layer; it did not redistribute Bambu Lab's proprietary networking plugin binaries.<ref name="jarczak-readme" /><ref name="3druck-jarczak">{{Cite web |date=2026-04-30 |title=Developer ends OrcaSlicer fork after Bambu Lab threatens legal action |url=https://3druck.com/en/programs/developer-terminates-orcaslicer-fork-after-bambu-lab-threatens-to-sue-32156744/ |url-status=live |access-date=2026-05-04 |website=3Druck.com}}</ref> Jarczak also maintained a sibling fork at <code>github.com/jarczakpawel/BambuStudio-BMCU</code> that added support for a third-party multi-color unit (BMCU); that repository remained live as of May 9, 2026.<ref name="jarczak-bmcu">{{Cite web |last=Jarczak |first=Pawel |title=BambuStudio-BMCU |url=https://github.com/jarczakpawel/BambuStudio-BMCU |website=GitHub |access-date=2026-05-10 |url-status=live}}</ref>


===cease and desist===
===Cease and desist===
Bambu Lab contacted Jarczak directly & demanded removal of the fork. According to Jarczak's own first-person account in his public archive README, Bambu Lab "referred to legal materials and stated that a cease and desist letter had been prepared," & alleged that the implementation:
Bambu Lab contacted Jarczak directly and demanded removal of the fork. According to Jarczak's own first-person account in his public archive README, Bambu Lab "referred to legal materials and stated that a cease and desist letter had been prepared," and alleged that the implementation:
<blockquote>''impersonated Bambu Studio, bypassed their authorization controls, violated their Terms of Use, involved "reverse engineering", and could allow modified forks to send arbitrary commands to printers.''</blockquote><ref name="jarczak-readme" /> Jarczak rejected the reverse-engineering characterization, stating that his work was based on publicly available Bambu Studio source code, which Bambu Lab releases under the AGPL-3.0 license.<ref name="jarczak-readme" /><ref name="3druck-jarczak" /> Jarczak disputed the broader characterization and asked for specifics: the exact files or commits at issue, & the exact legal or contractual basis. He reports receiving "further broad accusations" instead of that specificity.<ref name="jarczak-readme" /> Bambu Lab refused consent for publication of the correspondence itself, & Jarczak elected to honor that refusal while retaining the letter.<ref name="jarczak-readme" /> The repository was wiped the same day the threat was delivered.<ref name="jarczak-readme" /><ref name="xda-jarczak" /> Jarczak removed the contents voluntarily & stated this was a practical decision, not an admission that the legal or technical allegations were correct; in his own words from the public archive notice:
<blockquote>''impersonated Bambu Studio, bypassed their authorization controls, violated their Terms of Use, involved "reverse engineering", and could allow modified forks to send arbitrary commands to printers.''</blockquote><ref name="jarczak-readme" /> Jarczak rejected the reverse-engineering characterization, stating that his work was based on publicly available Bambu Studio source code, which Bambu Lab releases under the AGPL-3.0 license.<ref name="jarczak-readme" /><ref name="3druck-jarczak" /> Jarczak disputed the broader characterization and asked for specifics: the exact files or commits at issue, and the exact legal or contractual basis. He reports receiving "further broad accusations" instead of that specificity.<ref name="jarczak-readme" /> Bambu Lab refused consent for publication of the correspondence itself, and Jarczak elected to honor that refusal while retaining the letter.<ref name="jarczak-readme" /> The repository was wiped the same day the threat was delivered.<ref name="jarczak-readme" /><ref name="xda-jarczak" /> Jarczak removed the contents voluntarily and stated this was a practical decision, not an admission that the legal or technical allegations were correct; in his own words from the public archive notice:
<blockquote>''I removed the repository voluntarily. That removal should not be interpreted as an admission that all legal or technical allegations made against the project were correct.''</blockquote><ref name="jarczak-readme" />
<blockquote>''I removed the repository voluntarily. That removal should not be interpreted as an admission that all legal or technical allegations made against the project were correct.''</blockquote><ref name="jarczak-readme" />
XDA Developers reported that Bambu Lab had not responded to its request for comment as of publication.<ref name="xda-jarczak" /> 3Druck independently confirmed the same set of allegations, citing Jarczak's GitHub statement.<ref name="3druck-jarczak" /> Tom's Hardware also covered the takedown on April 29, 2026.<ref name="tomshardware-jarczak">{{Cite web |title=Developer re-enables 3D printer features that Bambu Lab disabled, firm promptly threatens legal action — OrcaSlicer-BambuLab project now shuttered |url=https://www.tomshardware.com/3d-printing/developer-re-enables-3d-printer-features-that-bambu-lab-disabled-firm-promptly-threatens-legal-action-orcaslicer-bambulab-project-now-shuttered |website=Tom's Hardware |date=2026-04-29 |access-date=2026-05-10 |url-status=live}}</ref> The trade outlet Manufactur3D added context on May 1, 2026, including that the dispute had become a flashpoint in the wider 3D-printing community.<ref name="manufactur3d-controversy">{{Cite web |title=Bambu Lab OrcaSlicer Controversy Ignites After Legal Threats |url=https://manufactur3dmag.com/bambu-lab-orcaslicer-controversy-escalates/ |website=Manufactur3D |date=2026-05-01 |access-date=2026-05-10 |url-status=live}}</ref>
XDA Developers reported that Bambu Lab had not responded to its request for comment as of publication.<ref name="xda-jarczak" /> 3Druck independently confirmed the same set of allegations, citing Jarczak's GitHub statement.<ref name="3druck-jarczak" /> Tom's Hardware also covered the takedown on April 29, 2026.<ref name="tomshardware-jarczak">{{Cite web |title=Developer re-enables 3D printer features that Bambu Lab disabled, firm promptly threatens legal action — OrcaSlicer-BambuLab project now shuttered |url=https://www.tomshardware.com/3d-printing/developer-re-enables-3d-printer-features-that-bambu-lab-disabled-firm-promptly-threatens-legal-action-orcaslicer-bambulab-project-now-shuttered |website=Tom's Hardware |date=2026-04-29 |access-date=2026-05-10 |url-status=live}}</ref> The trade outlet Manufactur3D added context on May 1, 2026, including that the dispute had become a flashpoint in the wider 3D-printing community.<ref name="manufactur3d-controversy">{{Cite web |title=Bambu Lab OrcaSlicer Controversy Ignites After Legal Threats |url=https://manufactur3dmag.com/bambu-lab-orcaslicer-controversy-escalates/ |website=Manufactur3D |date=2026-05-01 |access-date=2026-05-10 |url-status=live}}</ref>


The publicly documented allegations track Bambu Lab's [[Terms of Service]] & an "authorization bypass" framing.<ref name=":2" /><ref name="jarczak-readme" /> Because the letter itself was not made public, no primary source confirms which specific statute, if any, Bambu Lab invoked; neither Jarczak's account nor the secondary reporting names a specific statute, including the [[DMCA Section 1201|DMCA §1201]] anti-circumvention provision, as part of Bambu Lab's claim. The upstream OrcaSlicer maintainer SoftFever was not named in the cease-and-desist, has issued no public statement on the fork or the letter, & the upstream repository remains active.<ref name="softfever-orcaslicer" />
The publicly documented allegations track Bambu Lab's [[Terms of Service]] and an "authorization bypass" framing.<ref name=":2" /><ref name="jarczak-readme" /> Because the letter itself was not made public, no primary source confirms which specific statute, if any, Bambu Lab invoked; neither Jarczak's account nor the secondary reporting names a specific statute, including the [[DMCA Section 1201|DMCA §1201]] anti-circumvention provision, as part of Bambu Lab's claim. The upstream OrcaSlicer maintainer SoftFever was not named in the cease-and-desist, has issued no public statement on the fork or the letter, and the upstream repository remains active.<ref name="softfever-orcaslicer" />


===Public timeline===
===Public timeline===
The timeline below is built strictly from public sources. Private direct-message correspondence between Pawel Jarczak & Bambu Lab is not republished; every claim is anchored to Jarczak's public archive README, Bambu Lab's public blog, Bambu Lab's public Reddit post, three public Reddit replies under the parent thread, or independent press coverage.


*'''January 16, 2025.''' Bambu Lab announced "Firmware Update: Introducing the New Authorization Control System," describing the firmware-gated authorization model.<ref name="firmware-update-introducing-new-authorization-control-system-2" />
*'''January 16, 2025.''' Bambu Lab announced "Firmware Update: Introducing the New Authorization Control System," describing the firmware-gated authorization model.<ref name="firmware-update-introducing-new-authorization-control-system-2" />
*'''Spring 2026.''' Pawel Jarczak published <code>OrcaSlicer-bambulab</code> & a sibling repository <code>BambuStudio-BMCU</code> on GitHub.<ref name="jarczak-readme" /><ref name="jarczak-bmcu" />
*'''Spring 2026.''' Pawel Jarczak published <code>OrcaSlicer-bambulab</code> and a sibling repository <code>BambuStudio-BMCU</code> on GitHub.<ref name="jarczak-readme" /><ref name="jarczak-bmcu" />
*'''Late April 2026.''' Bambu Lab contacted Jarczak privately on Reddit & demanded removal of the OrcaSlicer fork. Per Jarczak's public README, Bambu Lab's allegations were impersonation of Bambu Studio, bypass of authorization controls, ToS violation, reverse engineering, & the potential for modified forks to send arbitrary commands to printers.<ref name="jarczak-readme" />
*'''Late April 2026.''' Bambu Lab contacted Jarczak privately on Reddit and demanded removal of the OrcaSlicer fork. Per Jarczak's public README, Bambu Lab's allegations were impersonation of Bambu Studio, bypass of authorization controls, ToS violation, reverse engineering, and the potential for modified forks to send arbitrary commands to printers.<ref name="jarczak-readme" />
*'''Around April 23, 2026.''' Jarczak removed the <code>OrcaSlicer-bambulab</code> repository voluntarily & replaced its contents with a public archive notice; <code>jarczakpawel/BambuStudio-BMCU</code> remained live as of May 9, 2026.<ref name="jarczak-readme" /><ref name="jarczak-bmcu" />
*'''Around April 23, 2026.''' Jarczak removed the <code>OrcaSlicer-bambulab</code> repository voluntarily, and replaced its contents with a public archive notice; <code>jarczakpawel/BambuStudio-BMCU</code> remained live as of May 9, 2026.<ref name="jarczak-readme" /><ref name="jarczak-bmcu" />
*'''May 7, 2026.''' Bambu Lab published "Setting the record straight on Cloud Access and Community" on its blog & posted a parallel announcement on r/BambuLab the same day.<ref name="bambu-blog-record-straight" /><ref name="bambu-reddit-record-straight">{{Cite web |last=BambuLab |title=Setting the record straight on Cloud Access and Community |url=https://www.reddit.com/r/BambuLab/comments/1t66ru1/setting_the_record_straight_on_cloud_access_and/ |website=Reddit |date=2026-05-07 |access-date=2026-05-10 |url-status=live}}</ref>
*'''May 7, 2026.''' Bambu Lab published "Setting the record straight on Cloud Access and Community" on its blog and posted a parallel announcement on r/BambuLab the same day.<ref name="bambu-blog-record-straight" /><ref name="bambu-reddit-record-straight">{{Cite web |last=BambuLab |title=Setting the record straight on Cloud Access and Community |url=https://www.reddit.com/r/BambuLab/comments/1t66ru1/setting_the_record_straight_on_cloud_access_and/ |website=Reddit |date=2026-05-07 |access-date=2026-05-10 |url-status=live}}</ref>
*'''May 7, 2026 (same day).''' A Reddit user posting as <code>Low-Anything6975</code> replied publicly under three top-level comments on the r/BambuLab thread. The first reply pinpointed the file path & code line in Bambu's own AGPL source where the User-Agent string is generated.<ref name="pawel-reddit-okg9iih">{{Cite web |last=Low-Anything6975 |title=Reply on User-Agent attribution in Bambu Studio AGPL source code |url=https://www.reddit.com/r/BambuLab/comments/1t66ru1/comment/okg9iih/ |website=Reddit |date=2026-05-07 |access-date=2026-05-10 |url-status=live}}</ref> The second reply addressed the cloud Terms of Service & AGPL rights to use, modify & redistribute.<ref name="pawel-reddit-okguwzs">{{Cite web |last=Low-Anything6975 |title=Reply on cloud Terms of Service and AGPL rights to use, modify and redistribute |url=https://www.reddit.com/r/BambuLab/comments/1t66ru1/comment/okguwzs/ |website=Reddit |date=2026-05-07 |access-date=2026-05-10 |url-status=live}}</ref> The third reply articulated the plugin-severability symmetry argument.<ref name="pawel-reddit-okiacag">{{Cite web |last=Low-Anything6975 |title=Reply on plugin severability symmetry between AGPL forks and Bambu Lab cloud |url=https://www.reddit.com/r/BambuLab/comments/1t66ru1/comment/okiacag/ |website=Reddit |date=2026-05-07 |access-date=2026-05-10 |url-status=live}}</ref>
*'''May 7, 2026 (same day).''' A Reddit user posting as <code>Low-Anything6975</code> replied publicly under three top-level comments on the r/BambuLab thread. The first reply pinpointed the file path and code line in Bambu's own AGPL source where the User-Agent string is generated.<ref name="pawel-reddit-okg9iih">{{Cite web |last=Low-Anything6975 |title=Reply on User-Agent attribution in Bambu Studio AGPL source code |url=https://www.reddit.com/r/BambuLab/comments/1t66ru1/comment/okg9iih/ |website=Reddit |date=2026-05-07 |access-date=2026-05-10 |url-status=live}}</ref> The second reply addressed the cloud Terms of Service and AGPL rights to use, modify, and redistribute.<ref name="pawel-reddit-okguwzs">{{Cite web |last=Low-Anything6975 |title=Reply on cloud Terms of Service and AGPL rights to use, modify and redistribute |url=https://www.reddit.com/r/BambuLab/comments/1t66ru1/comment/okguwzs/ |website=Reddit |date=2026-05-07 |access-date=2026-05-10 |url-status=live}}</ref> The third reply articulated the plugin-severability symmetry argument.<ref name="pawel-reddit-okiacag">{{Cite web |last=Low-Anything6975 |title=Reply on plugin severability symmetry between AGPL forks and Bambu Lab cloud |url=https://www.reddit.com/r/BambuLab/comments/1t66ru1/comment/okiacag/ |website=Reddit |date=2026-05-07 |access-date=2026-05-10 |url-status=live}}</ref>
*'''May 9, 2026.''' Jarczak's public archive README was last updated; <code>BambuStudio-BMCU</code> remained live.<ref name="jarczak-readme" /><ref name="jarczak-bmcu" />
*'''May 9, 2026.''' Jarczak's public archive README was last updated; <code>BambuStudio-BMCU</code> remained live.<ref name="jarczak-readme" /><ref name="jarczak-bmcu" />
*'''May 9, 2026.''' Right-to-repair advocate Louis Rossmann publicly pledged $10,000 toward Jarczak's legal defense if Bambu Lab proceeded with the threatened lawsuit in a YouTube video titled "I'll put up $10,000 to teach bambu labs a lesson."<ref name="rossmann-youtube-pledge">{{Cite web |last=Rossmann |first=Louis |title=I'll put up $10,000 to teach bambu labs a lesson |url=https://www.youtube.com/watch?v=qLLVn6XT7v0 |website=YouTube |date=2026-05-09 |access-date=2026-05-10 |url-status=live}}</ref>
*'''May 9, 2026.''' Right-to-repair advocate Louis Rossmann publicly pledged $10,000 toward Jarczak's legal defense if Bambu Lab proceeded with the threatened lawsuit in a YouTube video titled "I'll put up $10,000 to teach bambu labs a lesson."<ref name="rossmann-youtube-pledge">{{Cite web |last=Rossmann |first=Louis |title=I'll put up $10,000 to teach bambu labs a lesson |url=https://www.youtube.com/watch?v=qLLVn6XT7v0 |website=YouTube |date=2026-05-09 |access-date=2026-05-10 |url-status=live}}</ref>
*'''May 10, 2026.''' Tom's Hardware reported Rossmann's pledge & accompanying public statement directed at Bambu Lab.<ref name="tomshardware-rossmann-pledge">{{Cite web |title=Louis Rossmann tells 3D printer maker Bambu Lab to 'Go (Bleep) yourself' over its threatened lawsuit against enthusiast — Right to Repair advocate offers to pay the legal fees for a threatened OrcaSlicer developer |url=https://www.tomshardware.com/3d-printing/louis-rossmann-tells-3d-printer-maker-bambu-lab-to-go-bleep-yourself-over-its-lawsuit-against-enthusiast-right-to-repair-advocate-offers-to-pay-the-legal-fees-for-a-threatened-orcaslicer-developer |website=Tom's Hardware |date=2026-05-10 |access-date=2026-05-10 |url-status=live}}</ref>
*'''May 10, 2026.''' Tom's Hardware reported Rossmann's pledge and accompanying public statement directed at Bambu Lab.<ref name="tomshardware-rossmann-pledge">{{Cite web |title=Louis Rossmann tells 3D printer maker Bambu Lab to 'Go (Bleep) yourself' over its threatened lawsuit against enthusiast — Right to Repair advocate offers to pay the legal fees for a threatened OrcaSlicer developer |url=https://www.tomshardware.com/3d-printing/louis-rossmann-tells-3d-printer-maker-bambu-lab-to-go-bleep-yourself-over-its-lawsuit-against-enthusiast-right-to-repair-advocate-offers-to-pay-the-legal-fees-for-a-threatened-orcaslicer-developer |website=Tom's Hardware |date=2026-05-10 |access-date=2026-05-10 |url-status=live}}</ref>


===Bambu Lab's public response===
===Bambu Lab's public response===
Bambu Lab's May 7, 2026 blog post conceded that AGPL forks of Bambu Studio are permitted, recast the dispute as one about cloud access & "impersonation" rather than open source, & declined any responsibility under AGPL for the cloud back-end. Bambu Lab characterized the AGPL question:
Bambu Lab's May 7, 2026 blog post conceded that AGPL forks of Bambu Studio are permitted, recast the dispute as one about cloud access and "impersonation" rather than open source, and declined any responsibility under AGPL for the cloud back-end. Bambu Lab characterized the AGPL question:
<blockquote>''Bambu Studio is an open-source project under the AGPL-3.0 license. Anyone can take its code, modify it, and distribute it. This is not a matter of our "permission" - it is simply how the license and open source work.''</blockquote><ref name="bambu-blog-record-straight" />
<blockquote>''Bambu Studio is an open-source project under the AGPL-3.0 license. Anyone can take its code, modify it, and distribute it. This is not a matter of our "permission" - it is simply how the license and open source work.''</blockquote><ref name="bambu-blog-record-straight" />
The same post bifurcated AGPL code from cloud infrastructure:
The same post bifurcated AGPL code from cloud infrastructure:
Line 253: Line 245:
==Open-source licensing dispute==
==Open-source licensing dispute==


The cease-and-desist against Pawel Jarczak's OrcaSlicer-bambulab fork made the underlying open-source-licensing conflict concrete: a manufacturer that publishes a slicer under the AGPL-3.0 license, while imposing a Terms of Use that forbids the modification & redistribution that license grants, is on a collision course with the license it chose. The legal arguments in this section are drawn from the AGPL text Bambu Lab applied to Bambu Studio, the Terms of Use Bambu Lab publishes on its corporate website, the Bambu Lab blog post of May 7, 2026, three public Reddit replies under the parent thread, the BambuStudio source code on GitHub, the FSF's published interpretive guidance, & U.S. & EU primary law. None of the theories below has been adjudicated against Bambu Lab; each is a question raised by Bambu Lab's own conduct & documents.
Since Bambu Studio is licensed under the AGPL-3.0 license, the attempts by Bambu Lab to exert control over the software's editing and use have been described as being in conflict with the license.{{CitationNeeded}}


===Bambu Studio AGPL-3.0 licensing===
===Bambu Studio AGPL-3.0 licensing===
Bambu Lab elected to release Bambu Studio under the [[GNU Affero General Public License|GNU Affero General Public License version 3]] (AGPL-3.0). The LICENSE file in the upstream Bambu Studio repository is the verbatim AGPL-3.0 text.<ref name="bambustudio-license" /><ref name="agpl3-license">{{Cite web |title=GNU Affero General Public License Version 3 |url=https://www.gnu.org/licenses/agpl-3.0.html |website=GNU Project |publisher=Free Software Foundation |date=2007-11-19 |access-date=2026-05-10 |url-status=live}}</ref> The AGPL is a copyleft license: anyone who receives the code can use, modify & redistribute it, on the condition that they pass the same rights to everyone they distribute to, & that they make their modifications available as source code.<ref name="agpl3-license" /> The final paragraph of Section 10 (titled "Automatic Licensing of Downstream Recipients") begins:
Bambu Lab elected to release Bambu Studio under the [[GNU Affero General Public License|GNU Affero General Public License version 3]] (AGPL-3.0). The LICENSE file in the upstream Bambu Studio repository is the verbatim AGPL-3.0 text.<ref name="bambustudio-license" /><ref name="agpl3-license">{{Cite web |title=GNU Affero General Public License Version 3 |url=https://www.gnu.org/licenses/agpl-3.0.html |website=GNU Project |publisher=Free Software Foundation |date=2007-11-19 |access-date=2026-05-10 |url-status=live}}</ref> The AGPL is a copyleft license: anyone who receives the code can use, modify and redistribute it, on the condition that they pass the same rights to everyone they distribute to, and that they make their modifications available as source code.<ref name="agpl3-license" /> The final paragraph of Section 10 (titled "Automatic Licensing of Downstream Recipients") begins:
<blockquote>''You may not impose any further restrictions on the exercise of the rights granted or affirmed under this License.''</blockquote><ref name="agpl3-section10">{{Cite web |title=GNU Affero General Public License Version 3, Section 10 (Automatic Licensing of Downstream Recipients) |url=https://www.gnu.org/licenses/agpl-3.0.html#section10 |website=GNU Project |publisher=Free Software Foundation |date=2007-11-19 |access-date=2026-05-10 |url-status=live}}</ref> The paragraph continues with examples of prohibited restrictions, including imposing license fees or royalties for exercise of the granted rights & initiating patent litigation against users of the program.<ref name="agpl3-section10" />
<blockquote>''You may not impose any further restrictions on the exercise of the rights granted or affirmed under this License.''</blockquote><ref name="agpl3-section10">{{Cite web |title=GNU Affero General Public License Version 3, Section 10 (Automatic Licensing of Downstream Recipients) |url=https://www.gnu.org/licenses/agpl-3.0.html#section10 |website=GNU Project |publisher=Free Software Foundation |date=2007-11-19 |access-date=2026-05-10 |url-status=live}}</ref> The paragraph continues with examples of prohibited restrictions, including imposing license fees or royalties for exercise of the granted rights and initiating patent litigation against users of the program.<ref name="agpl3-section10" />
Section 7, paragraph 4, lists the only kinds of additional terms a licensor may attach to AGPL-licensed code & states that downstream recipients may strip out anything outside that list:
Section 7, paragraph 4, lists the only kinds of additional terms a licensor may attach to AGPL-licensed code and states that downstream recipients may strip out anything outside that list:
<blockquote>''All other non-permissive additional terms are considered "further restrictions" within the meaning of section 10. If the Program as you received it, or any part of it, contains a notice stating that it is governed by this License along with a term that is a further restriction, you may remove that term.''</blockquote><ref name="agpl3-section7">{{Cite web |title=GNU Affero General Public License Version 3, Section 7 (Additional Terms) |url=https://www.gnu.org/licenses/agpl-3.0.html#section7 |website=GNU Project |publisher=Free Software Foundation |date=2007-11-19 |access-date=2026-05-10 |url-status=live}}</ref>
<blockquote>''All other non-permissive additional terms are considered "further restrictions" within the meaning of section 10. If the Program as you received it, or any part of it, contains a notice stating that it is governed by this License along with a term that is a further restriction, you may remove that term.''</blockquote><ref name="agpl3-section7">{{Cite web |title=GNU Affero General Public License Version 3, Section 7 (Additional Terms) |url=https://www.gnu.org/licenses/agpl-3.0.html#section7 |website=GNU Project |publisher=Free Software Foundation |date=2007-11-19 |access-date=2026-05-10 |url-status=live}}</ref>
Bambu Lab's May 7, 2026 blog post acknowledges the licensing posture.<ref name="bambu-blog-record-straight" />
Bambu Lab's May 7, 2026 blog post acknowledges the licensing posture.<ref name="bambu-blog-record-straight" />
Line 269: Line 261:
§ 3.5(5) states:
§ 3.5(5) states:
<blockquote>''(5) attempt to destroy, bypass, change, invalidate or escape from the Product and/or any digital rights management system that is part of the organic composition of the Product''</blockquote><ref name=":2" />
<blockquote>''(5) attempt to destroy, bypass, change, invalidate or escape from the Product and/or any digital rights management system that is part of the organic composition of the Product''</blockquote><ref name=":2" />
Bambu Lab's Terms define "Product" to include Bambu Lab devices & the software contained therein.<ref name=":2" /> Bambu Lab's own May 7, 2026 blog post confirms that Bambu Studio is "the software" in question.<ref name="bambu-blog-record-straight" />
Bambu Lab's Terms define "Product" to include Bambu Lab devices and the software contained therein.<ref name=":2" /> Bambu Lab's own May 7, 2026 blog post confirms that Bambu Studio is "the software" in question.<ref name="bambu-blog-record-straight" />


The collision is straightforward: AGPL § 7 ¶ 4 & § 10 forbid the licensor from imposing additional restrictions on AGPL-granted rights, & TOS § 3.4 / § 3.5 forbid the modification, copying, reverse engineering, decompilation, & redistribution that AGPL-3.0 explicitly grants. Either the TOS clauses do not apply to the AGPL-licensed Bambu Studio (in which case Bambu Lab should say so on the TOS page) or they do (in which case § 10 makes them unenforceable as further restrictions, & § 7 ¶ 4 lets downstream recipients strip them). On the public record, both documents exist unqualified on Bambu Lab's servers; the FSF's published GPL FAQ classifies a network of dynamically linked components & function calls as "a single combined program" for license-obligation purposes,<ref name="fsf-gpl-faq-plugins">{{Cite web |title=Frequently Asked Questions about the GNU Licenses (GPLPlugins anchor) |url=https://www.gnu.org/licenses/gpl-faq.html#GPLPlugins |website=GNU Project |publisher=Free Software Foundation |access-date=2026-05-10 |url-status=live}}</ref> & nothing in Bambu Lab's blog post resolves the contradiction between the AGPL grant & the TOS prohibitions on AGPL-covered conduct.
Commentators have noted{{CitationNeeded}} that AGPL § 7 ¶ 4 & § 10 forbid the licensor from imposing additional restrictions on AGPL-granted rights, and TOS § 3.4 / § 3.5 forbid the modification, copying, reverse engineering, decompilation, and redistribution that AGPL-3.0 explicitly grants, resulting in conflict between the AGPL license and Bambu Lab's terms. Both documents exist on Bambu Lab's servers; the FSF's published GPL FAQ classifies a network of dynamically linked components and function calls as "a single combined program" for license-obligation purposes,<ref name="fsf-gpl-faq-plugins">{{Cite web |title=Frequently Asked Questions about the GNU Licenses (GPLPlugins anchor) |url=https://www.gnu.org/licenses/gpl-faq.html#GPLPlugins |website=GNU Project |publisher=Free Software Foundation |access-date=2026-05-10 |url-status=live}}</ref>.


The same Reddit user addressed this directly on May 7, 2026:
The same Reddit user addressed this directly on May 7, 2026:
<blockquote>''Cloud ToS also cannot erase AGPL rights to use, modify and redistribute that code.''</blockquote><ref name="pawel-reddit-okguwzs" />
<blockquote>''Cloud ToS also cannot erase AGPL rights to use, modify and redistribute that code.''</blockquote><ref name="pawel-reddit-okguwzs" />
===Plugin severability contradiction===
Bambu Lab's May 7, 2026 blog post asserts two positions that cannot both be right. The first treats the proprietary networking plugin as severable from the AGPL-licensed Bambu Studio code so that Bambu Lab owes no AGPL obligations on the plugin's network conduct or on Bambu Cloud:
<blockquote>''Our cloud is a private service. Access to it is governed by a user agreement, not the AGPL license.''</blockquote><ref name="bambu-blog-record-straight" />
The second treats the same plugin's network conduct as the AGPL fork's responsibility for impersonation-liability purposes:
<blockquote>''When this particular OrcaSlicer fork communicates with our cloud services, it quietly introduces itself as official Bambu Studio - with a hardcoded version number and all... that's precisely the point where code modification crosses into impersonation.''</blockquote><ref name="bambu-blog-record-straight" />
Severability is symmetrical. Either the proprietary plugin is severable from the AGPL Bambu Studio code (in which case the AGPL fork is the wrong defendant for plugin-mediated network conduct, since the user voluntarily installs the plugin), or the plugin is part of a "Combined Work" with the AGPL Bambu Studio code (in which case Bambu Lab carries AGPL obligations on the combined work).<ref name="fsf-gpl-faq-plugins" /><ref name="fsf-gpl-faq-aggregation">{{Cite web |title=Frequently Asked Questions about the GNU Licenses (MereAggregation anchor) |url=https://www.gnu.org/licenses/gpl-faq.html#MereAggregation |website=GNU Project |publisher=Free Software Foundation |access-date=2026-05-10 |url-status=live}}</ref> The third reply from the same Reddit user on May 7, 2026 stated the symmetry plainly:
<blockquote>''It is more like someone opened a gym on a public square and then tried to forbid people from using the public square.''</blockquote><ref name="pawel-reddit-okgsid2">{{Cite web |last=Low-Anything6975 |title=Reply analogizing Bambu's cloud restrictions to fencing off a public square |url=https://www.reddit.com/r/BambuLab/comments/1t66ru1/comment/okgsid2/ |website=Reddit |date=2026-05-07 |access-date=2026-05-11 |url-status=live}}</ref>


===User-Agent identity metadata===
===User-Agent identity metadata===
The "falsified identity metadata" Bambu Lab calls "impersonation" is the HTTP User-Agent string the fork emits when contacting Bambu Cloud. That string is generated by Bambu Lab's own AGPL-licensed source code. The User-Agent setter is in <code>src/slic3r/Utils/Http.cpp</code>, & assembles its value from constants defined in <code>version.inc</code>. The relevant line in <code>Http.cpp</code> reads:
The "falsified identity metadata" Bambu Lab describes as "impersonation" is the HTTP User-Agent string the fork emits when contacting Bambu Cloud. That string is generated by Bambu Lab's own AGPL-licensed source code. The User-Agent setter is in <code>src/slic3r/Utils/Http.cpp</code>, and assembles its value from constants defined in <code>version.inc</code>. The relevant line in <code>Http.cpp</code> reads:
<blockquote>''::curl_easy_setopt(curl, CURLOPT_USERAGENT, SLIC3R_APP_NAME "/" SLIC3R_VERSION);''</blockquote><ref name="bambustudio-http-cpp">{{Cite web |title=Http.cpp source file (User-Agent setter at line 175) |url=https://github.com/bambulab/BambuStudio/blob/master/src/slic3r/Utils/Http.cpp |website=GitHub |publisher=Bambu Lab |access-date=2026-05-11 |url-status=live}}</ref>
<blockquote>''::curl_easy_setopt(curl, CURLOPT_USERAGENT, SLIC3R_APP_NAME "/" SLIC3R_VERSION);''</blockquote><ref name="bambustudio-http-cpp">{{Cite web |title=Http.cpp source file (User-Agent setter at line 175) |url=https://github.com/bambulab/BambuStudio/blob/master/src/slic3r/Utils/Http.cpp |website=GitHub |publisher=Bambu Lab |access-date=2026-05-11 |url-status=live}}</ref>
The constants in <code>version.inc</code> set the application name & version directly:
The constants in <code>version.inc</code> set the application name and version directly:
<blockquote>''set(SLIC3R_APP_NAME "BambuStudio")''
<blockquote>''set(SLIC3R_APP_NAME "BambuStudio")''


Line 294: Line 278:
<blockquote>''User-Agent is not authentication. It is just self-declared client metadata. Any program can set any User-Agent. And the most important part: this comes directly from your own AGPL code.''</blockquote><ref name="pawel-reddit-okg9iih" />
<blockquote>''User-Agent is not authentication. It is just self-declared client metadata. Any program can set any User-Agent. And the most important part: this comes directly from your own AGPL code.''</blockquote><ref name="pawel-reddit-okg9iih" />
Whichever branch of the severability dilemma Bambu Lab takes in the previous subsection, the impersonation framing relies on Bambu Lab's own AGPL-licensed code generating the very header Bambu Lab calls falsified.
Whichever branch of the severability dilemma Bambu Lab takes in the previous subsection, the impersonation framing relies on Bambu Lab's own AGPL-licensed code generating the very header Bambu Lab calls falsified.
===Other AGPL theories raised by the public record===
Three additional AGPL theories follow from the same facts. Each has weaker public-record support than the TOS-versus-AGPL collision & the User-Agent question above; each is identified here so the catalogue is complete, with the evidentiary gaps that any enforcement organization would need to close before relying on the theory.
[[GNU Affero General Public License|AGPL § 13]] (network copyleft) requires that a licensor running a modified version of an AGPL program as a network service offer all users interacting with it remotely an opportunity to receive the Corresponding Source.<ref name="agpl3-section13">{{Cite web |title=GNU Affero General Public License Version 3, Section 13 (Remote Network Interaction) |url=https://www.gnu.org/licenses/agpl-3.0.html#section13 |website=GNU Project |publisher=Free Software Foundation |date=2007-11-19 |access-date=2026-05-10 |url-status=live}}</ref> Bambu Lab's May 7, 2026 blog post denies any § 13 obligation by treating Bambu Cloud as a separate private service.<ref name="bambu-blog-record-straight" /> The public record does not establish that Bambu Cloud's server-side software derives from AGPL components inherited from upstream Slic3r or PrusaSlicer; until that link is documented, § 13 attachment to Bambu Cloud is an open question, not an established violation.
AGPL § 1 defines "Corresponding Source" for a work in object code form as:
<blockquote>''all the source code needed to generate, install, and (for an executable work) run the object code and to modify the work, including scripts to control those activities.''</blockquote><ref name="agpl3-section1">{{Cite web |title=GNU Affero General Public License Version 3, Section 1 (Definitions) |url=https://www.gnu.org/licenses/agpl-3.0.html |website=GNU Project |publisher=Free Software Foundation |date=2007-11-19 |access-date=2026-05-10 |url-status=live}}</ref> The Bambu Studio AGPL source contains a runtime plugin loader declared in <code>src/slic3r/Utils/NetworkAgent.hpp</code> & implemented in <code>src/slic3r/Utils/NetworkAgent.cpp</code>; the loader brings in the proprietary <code>bambu_networking</code> plugin via standard dynamic-linking calls, & the function-pointer interface lives in the AGPL header <code>src/slic3r/Utils/bambu_networking.hpp</code>.<ref name="bambustudio-networkagent-hpp">{{Cite web |title=NetworkAgent.hpp (plugin loader header) |url=https://github.com/bambulab/BambuStudio/blob/master/src/slic3r/Utils/NetworkAgent.hpp |website=GitHub |publisher=Bambu Lab |access-date=2026-05-10 |url-status=live}}</ref><ref name="bambustudio-networkagent-cpp">{{Cite web |title=NetworkAgent.cpp (proprietary plugin loader) |url=https://github.com/bambulab/BambuStudio/blob/master/src/slic3r/Utils/NetworkAgent.cpp |website=GitHub |publisher=Bambu Lab |access-date=2026-05-10 |url-status=live}}</ref><ref name="bambustudio-bambu-networking-hpp">{{Cite web |title=bambu_networking.hpp (function-pointer interface) |url=https://github.com/bambulab/BambuStudio/blob/master/src/slic3r/Utils/bambu_networking.hpp |website=GitHub |publisher=Bambu Lab |access-date=2026-05-10 |url-status=live}}</ref> The FSF's GPL FAQ states that dynamically linked plug-ins that make function calls & share data structures with a host program "form a single combined program."<ref name="fsf-gpl-faq-plugins" /> Whether the AGPL source alone produces a binary functionally equivalent to Bambu Lab's official release requires a clean-compile demonstration that has not been publicly performed; the architectural facts are public, the practical effect is not yet documented.
AGPL § 6 (User-Product anti-Tivoization, parallel to GPLv3 § 6) requires that a licensor convey "Installation Information" sufficient to install & execute modified versions of the covered work on a User Product.<ref name="agpl3-section6">{{Cite web |title=GNU Affero General Public License Version 3, Section 6 (Conveying Non-Source Forms) |url=https://www.gnu.org/licenses/agpl-3.0.html#section6 |website=GNU Project |publisher=Free Software Foundation |date=2007-11-19 |access-date=2026-05-10 |url-status=live}}</ref> Per Bambu Lab's open-source software disclosure page, the X1-series printer firmware is built on the Rockchip RV1126 SDK with Linux kernel & U-Boot components under GPLv2 (which has no anti-Tivoization clause), & the P1 / A1 series firmware uses an ESP32 SDK from Espressif Systems with no disclosed GPL components.<ref name="bambu-opensource-disclosure">{{Cite web |title=Open Source Software |url=https://wiki.bambulab.com/en/knowledge-sharing/open-source-software |website=Bambu Lab Wiki |publisher=Bambu Lab |access-date=2026-05-10 |url-status=live}}</ref> On those facts, AGPL § 6 / GPLv3 § 6 anti-Tivoization does not currently anchor a complaint against Bambu Lab printer firmware. The theory would reactivate only if a future firmware audit surfaced GPLv3 or AGPLv3 components.
===U.S. and EU consequences===
In the United States, the doctrine of copyright misuse bars enforcement of copyrights that are being misused. The Fourth Circuit recognized the defense in [https://www.courtlistener.com/opinion/546900/lasercomb-america-inc-v-job-reynolds/ Lasercomb America, Inc. v. Reynolds], 911 F.2d 970 (4th Cir. 1990), with the court holding:
<blockquote>''Since copyright and patent law serve parallel public interests, a "misuse" defense should apply to infringement actions brought to vindicate either right.''</blockquote><ref name="lasercomb-1990">{{Cite web |title=Lasercomb America, Inc. v. Reynolds, 911 F.2d 970 (4th Cir. 1990) |url=https://www.courtlistener.com/opinion/546900/lasercomb-america-inc-v-job-reynolds/ |website=CourtListener |access-date=2026-05-10 |url-status=live}}</ref>
The Ninth Circuit confirmed the doctrine in [https://www.courtlistener.com/opinion/744681/practice-management-information-corp-v-american-medical-assn/ Practice Management Information Corp. v. AMA], 121 F.3d 516 (9th Cir. 1997), holding that the AMA had used its copyright:
<blockquote>''in a manner violative of the public policy embodied in the grant of a copyright.''</blockquote><ref name="practice-management-1997">{{Cite web |title=Practice Management Information Corp. v. American Medical Ass'n., 121 F.3d 516 (9th Cir. 1997) |url=https://www.courtlistener.com/opinion/744681/practice-management-information-corp-v-american-medical-assn/ |website=CourtListener |access-date=2026-05-10 |url-status=live}}</ref> The Ninth Circuit quoted Lasercomb at 977 for that formulation & adopted copyright misuse as a defense to copyright infringement.<ref name="practice-management-1997" />
A defendant accused of copyright infringement on Bambu Studio code can raise the TOS-versus-AGPL conflict as a misuse defense.
In the European Union, [https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX:32009L0024 Software Directive 2009/24/EC, Article 8] provides:
<blockquote>''The provisions of this Directive shall be without prejudice to any other legal provisions such as those concerning patent rights, trade-marks, unfair competition, trade secrets, protection of semi-conductor products or the law of contract. Any contractual provisions contrary to Article 6 or to the exceptions provided for in Article 5(2) and (3) shall be null and void.''</blockquote><ref name="eu-software-directive-2009-24-ec">{{Cite web |title=Directive 2009/24/EC of the European Parliament and of the Council of 23 April 2009 on the legal protection of computer programs |url=https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX:32009L0024 |website=EUR-Lex |publisher=European Union |date=2009-04-23 |access-date=2026-05-10 |url-status=live}}</ref>
The Court of Justice of the European Union confirmed in [https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX:62010CJ0406 SAS Institute Inc. v. World Programming Ltd], Case C-406/10 (Grand Chamber, May 2, 2012), that a software licensee's right to observe, study & test the program cannot be overridden by contract.<ref name="cjeu-c-406-10">{{Cite web |title=Case C-406/10, SAS Institute Inc. v World Programming Ltd, Judgment of the Court (Grand Chamber), 2 May 2012 |url=https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX:62010CJ0406 |website=EUR-Lex |publisher=European Union |date=2012-05-02 |access-date=2026-05-10 |url-status=live}}</ref> Polish law transposes the Software Directive in the [https://eli.gov.pl/eli/DU/1994/83 Polish Copyright Act of February 4, 1994], with art. 75 protecting lawful-user observation, study & testing rights, & art. 76 declaring contract provisions that conflict with art. 75 sections 2 and 3 void.<ref name="polish-copyright-act-1994">{{Cite web |title=Ustawa z dnia 4 lutego 1994 r. o prawie autorskim i prawach pokrewnych |url=https://eli.gov.pl/eli/DU/1994/83 |website=Elektroniczny Dziennik Urzędowy |publisher=Government of Poland |date=1994-02-04 |access-date=2026-05-10 |url-status=live}}</ref> Whether art. 76 reaches a non-EU choice-of-law clause attempting to bypass these mandatory rules is a separate question that requires Polish-counsel briefing; the doctrinal point is that the rules are mandatory within Polish jurisdiction.
===Open-source licensing context: SFC v. Vizio===
The closest live U.S. analog to a manufacturer publishing copyleft client software with a proprietary cloud back-end is [[Software Freedom Conservancy v. Vizio]]. The case is proceeding in Orange County Superior Court, California; the [[Software Freedom Conservancy]] filed it in October 2021, on behalf of a consumer-purchaser theory of breach-of-contract enforcement of GPLv2 & LGPLv2.1 components in Vizio's smart TVs.<ref name="sfc-vizio-case-page">{{Cite web |title=Software Freedom Conservancy v. Vizio Inc. |url=https://sfconservancy.org/copyleft-compliance/vizio.html |website=Software Freedom Conservancy |access-date=2026-05-10 |url-status=live}}</ref>
On December 4, 2025, the trial court issued a tentative ruling granting SFC's motion on a direct-contract theory: the court found that a direct contract was formed, with Vizio under a duty to provide complete and corresponding source code, when SFC's systems administrator, Paul Visscher, requested source code for a Vizio TV that SFC had purchased.<ref name="sfc-vizio-tentative-2025">{{Cite web |title=Tentative Vizio Ruling in Favor of SFC |url=https://sfconservancy.org/news/2025/dec/04/tentative-vizio-ruling-in-favor-of-sfc/ |website=Software Freedom Conservancy |date=2025-12-04 |access-date=2026-05-10 |url-status=live}}</ref> On December 23, 2025, Judge Leal granted Vizio's motion for summary adjudication on a peripheral installation-keys point, ruling that GPLv2 does not impose a duty on a licensee to provide information permitting reinstallation of modified software such that the device continues to function properly. SFC's December 24, 2025 commentary on the ruling characterized the issue as orthogonal to its core copyleft-enforcement theory, noting:
<blockquote>''SFC has never held the position, nor do we today hold the position, that any version of the GPL (even including GPLv3!) require "that the device continues to function properly" after a user installs their modified version of the copyleft components.''</blockquote><ref name="sfc-vizio-msa-2025">{{Cite web |title=Vizio MSA Irrelevant Ruling |url=https://sfconservancy.org/news/2025/dec/24/vizio-msa-irrelevant-ruling/ |website=Software Freedom Conservancy |date=2025-12-24 |access-date=2026-05-10 |url-status=live}}</ref> On January 26, 2026, SFC reported that the trial had been postponed because of an older case taking docket priority.<ref name="sfc-vizio-trial-delay-2026">{{Cite web |title=Some Unfortunate Delays in our Struggle for Copyleft Justice |url=https://sfconservancy.org/blog/2026/jan/26/delay-in-start-of-vizio-trial/ |website=Software Freedom Conservancy |date=2026-01-26 |access-date=2026-05-10 |url-status=live}}</ref> The trial is now scheduled for August 10 to August 19, 2026.<ref name="sfc-vizio-case-page" /><ref name="sfc-vizio-trial-delay-2026" /> Industry counsel commentary tracked these rulings as a significant endorsement of consumer-purchaser standing to enforce GPL terms as a contract.<ref name="dlapiper-vizio-jan-2026">{{Cite web |title=SFC v. Vizio ruling on General Public License compliance: Key takeaways |url=https://www.dlapiper.com/en/insights/publications/2026/01/sfc-v-vizio-ruling-on-general-public-license-compliance-key-takeaways |website=DLA Piper |date=2026-01-05 |access-date=2026-05-10 |url-status=live}}</ref><ref name="bakerbotts-vizio-may-2026">{{Cite web |title=When Consumers Enforce Open Source: The SFC v. Vizio Case |url=https://www.bakerbotts.com/thought-leadership/publications/2026/may/when-consumers-enforce-open-source |website=Baker Botts |date=2026-05-01 |access-date=2026-05-10 |url-status=live}}</ref>
A separate doctrinal anchor for the AGPL § 7 ¶ 4 further-restrictions argument is Bradley M. Kuhn's expert report in <code>Neo4j, Inc. v. PureThink, LLC and John Mark Suhy</code>, 5:18-cv-07182 (N.D. Cal.). Kuhn served as third-party expert for the defendants & analyzed AGPL § 7's right to remove "Commons Clause"-style restrictions.<ref name="sfc-kuhn-neo4j-2023">{{Cite web |title=SFC's Policy Fellow Files Expert Report in Neo4j v. PureThink |url=https://sfconservancy.org/news/2023/feb/09/kuhn-neo4j-purethink-expert-report/ |website=Software Freedom Conservancy |date=2023-02-09 |access-date=2026-05-10 |url-status=live}}</ref> The FSF filed an amicus brief in Neo4j v. Suhy on March 3, 2025, in the Ninth Circuit (Case No. 24-5538), arguing that AGPL § 7's prohibition on further restrictions invalidates Commons Clause-style contractual overlays.<ref name="fsf-amicus-neo4j-2025">{{Cite web |title=FSF submits amicus brief in Neo4j v. Suhy |url=https://www.fsf.org/news/fsf-submits-amicus-brief-in-neo4j-v-suhy |website=Free Software Foundation |date=2025-03-03 |access-date=2026-05-10 |url-status=live}}</ref> As of publication, no appellate court has yet ruled on the AGPL § 7 ¶ 4 question.
===German GPL enforcement (Welte-line cases)===
European GPL-as-contract enforcement has run through a line of German trial-court rulings tied to programmer Harald Welte, the maintainer of <code>netfilter</code>/<code>iptables</code>. In September 2006 the Frankfurt District Court (Landgericht Frankfurt) ruled against D-Link Germany GmbH, finding that the company had distributed a Linux-based network-attached-storage device incompliant with the GNU General Public License and ordering D-Link to reimburse expenses incurred in connection with the test purchase, re-engineering and legal representation.<ref name="gpl-violations-dlink-2006">{{Cite web |last=Welte |first=Harald |title=gpl-violations.org project prevails in court case on GPL violation by D-Link |url=https://web.archive.org/web/20151120221400/http://gpl-violations.org/news/20060922-dlink-judgement_frankfurt/ |website=gpl-violations.org |date=2006-09-22 |access-date=2026-05-11 |url-status=live}}</ref> In June 2013 the Hamburg Regional Court (Landgericht Hamburg) ruled against Fantec GmbH, holding that a vendor distributing a media player containing <code>iptables</code> code under GPLv2 is itself responsible for verifying GPL compliance and cannot rely on a supplier's assurance.<ref name="gpl-violations-fantec-2013">{{Cite web |last=Welte |first=Harald |title=Regional court Hamburg judgement against FANTEC |url=https://web.archive.org/web/20151120221400/http://gpl-violations.org/news/20130626-fantec_judgement/ |website=gpl-violations.org |date=2013-06-26 |access-date=2026-05-11 |url-status=live}}</ref> Both cases concern GPLv2 rather than AGPLv3, but the contract-enforceability principle they apply translates by analogy: German trial courts have treated copyleft terms as enforceable obligations on a vendor that distributes copyleft binaries. Bambu Lab does not currently distribute Bambu Studio binaries through Germany under any contractual notice that overrides AGPL § 10; the Welte cases are cited as comparable precedent rather than as authority controlling the Bambu Lab matter.
===John Deere AGPL: no filed litigation, SFC v. Vizio is the operative analog===
A widely circulated assumption in repair-advocacy discussion is that there is a "John Deere AGPL precedent" that supports community enforcement against a manufacturer who publishes copyleft code & locks down the product. There is no such case in litigation form. The Software Freedom Conservancy described its John Deere compliance work in a March 16, 2023 blog post stating that Deere had failed to provide complete corresponding source for more than two years after SFC's first request; the post does not announce a filed complaint, & no SFC litigation against John Deere has been publicly docketed since.<ref name="sfc-john-deere-2023">{{Cite web |title=John Deere's GPL Violations |url=https://sfconservancy.org/blog/2023/mar/16/john-deere-gpl-violations/ |website=Software Freedom Conservancy |date=2023-03-16 |access-date=2026-05-10 |url-status=live}}</ref> The right-to-repair litigation involving John Deere has run on different statutes: [[DMCA Section 1201|DMCA § 1201]] exemption petitions, FTC enforcement, & the 2023 American Farm Bureau memorandum of understanding. Those are repair-policy fights, not AGPL enforcement actions. The actual analog for the Bambu Lab pattern, copyleft client software paired with a proprietary cloud back-end on consumer hardware, is SFC v. Vizio.


===Who can enforce AGPL against Bambu Lab===
===Who can enforce AGPL against Bambu Lab===
Pawel Jarczak personally cannot bring an AGPL enforcement action against Bambu Lab on his own. The right to sue for AGPL violations belongs to the original authors whose code Bambu Lab built on top of: the [https://github.com/slic3r/Slic3r Slic3r contributors],<ref name="slic3r-repo" /> Prusa Research & the [https://github.com/prusa3d/PrusaSlicer/blob/master/LICENSE PrusaSlicer contributors],<ref name="prusaslicer-license" /> & the [https://github.com/SoftFever/OrcaSlicer/blob/main/LICENSE.txt SoftFever / OrcaSlicer maintainers].<ref name="softfever-orcaslicer-license" /> Jarczak's role in any formal complaint is reporter & witness, not plaintiff.
Pawel Jarczak personally cannot bring a direct AGPL enforcement action against Bambu Lab. The right to sue for AGPL violations belongs to the original authors whose code Bambu Lab built on top of: the [https://github.com/slic3r/Slic3r Slic3r contributors],<ref name="slic3r-repo" /> Prusa Research and the [https://github.com/prusa3d/PrusaSlicer/blob/master/LICENSE PrusaSlicer contributors],<ref name="prusaslicer-license" /> and the [https://github.com/SoftFever/OrcaSlicer/blob/main/LICENSE.txt SoftFever / OrcaSlicer maintainers].<ref name="softfever-orcaslicer-license" /> Jarczak's role in any formal complaint is reporter and witness, not plaintiff.


The institutional capacity for AGPL enforcement on these facts sits with several organizations:
The institutional capacity for AGPL enforcement on these facts sits with several organizations:


*'''[[Software Freedom Conservancy]] (SFC).''' SFC operates the only U.S.-based copyleft enforcement program currently litigating consumer-purchaser claims against a hardware manufacturer (the Vizio matter). Its [https://sfconservancy.org/copyleft-compliance/ copyleft-compliance program] handles strategic enforcement; Bradley M. Kuhn's AGPL § 7 expert report from <code>Neo4j v. PureThink</code> remains the strongest published doctrinal anchor for the Bambu Lab TOS-versus-AGPL argument.<ref name="sfc-copyleft-compliance">{{Cite web |title=Copyleft Compliance Projects |url=https://sfconservancy.org/copyleft-compliance/ |website=Software Freedom Conservancy |access-date=2026-05-10 |url-status=live}}</ref><ref name="sfc-kuhn-neo4j-2023" />
*'''[[Software Freedom Conservancy]] (SFC).''' SFC operates the only U.S.-based copyleft enforcement program currently litigating consumer-purchaser claims against a hardware manufacturer (the Vizio matter). Its [https://sfconservancy.org/copyleft-compliance/ copyleft-compliance program] handles strategic enforcement; Bradley M. Kuhn's AGPL § 7 expert report from <code>Neo4j v. PureThink</code> remains the strongest published doctrinal anchor for the Bambu Lab TOS-versus-AGPL argument.<ref name="sfc-copyleft-compliance">{{Cite web |title=Copyleft Compliance Projects |url=https://sfconservancy.org/copyleft-compliance/ |website=Software Freedom Conservancy |access-date=2026-05-10 |url-status=live}}</ref><ref name="sfc-kuhn-neo4j-2023">{{Cite web |title=SFC's Policy Fellow Files Expert Report in Neo4j v. PureThink |url=https://sfconservancy.org/news/2023/feb/09/kuhn-neo4j-purethink-expert-report/ |website=Software Freedom Conservancy |date=2023-02-09 |access-date=2026-05-10 |url-status=live}}</ref>
*'''Free Software Foundation (FSF).''' FSF drafted the AGPL & operates the [https://www.fsf.org/licensing/ Licensing & Compliance Lab]. FSF will not be the lead enforcement vehicle here because FSF does not hold copyright in BambuStudio; it can supply doctrinal authority, amicus filings, & public statements. FSF filed an amicus brief in <code>Neo4j v. Suhy</code> on March 3, 2025.<ref name="fsf-licensing">{{Cite web |title=Licensing & Compliance Lab |url=https://www.fsf.org/licensing/ |website=Free Software Foundation |access-date=2026-05-10 |url-status=live}}</ref><ref name="fsf-amicus-neo4j-2025" />
*'''Free Software Foundation (FSF).''' FSF drafted the AGPL and operates the [https://www.fsf.org/licensing/ Licensing and Compliance Lab]. FSF will not be the lead enforcement vehicle here because FSF does not hold copyright in BambuStudio; it can supply doctrinal authority, amicus filings, and public statements. FSF filed an amicus brief in <code>Neo4j v. Suhy</code> on March 3, 2025.<ref name="fsf-licensing">{{Cite web |title=Licensing and Compliance Lab |url=https://www.fsf.org/licensing/ |website=Free Software Foundation |access-date=2026-05-10 |url-status=live}}</ref><ref name="fsf-amicus-neo4j-2025">{{Cite web |title=FSF submits amicus brief in Neo4j v. Suhy |url=https://www.fsf.org/news/fsf-submits-amicus-brief-in-neo4j-v-suhy |website=Free Software Foundation |date=2025-03-03 |access-date=2026-05-10 |url-status=live}}</ref>
*'''Free Software Foundation Europe (FSFE).''' FSFE convenes the [https://fsfe.org/activities/ln/ln.en.html European Legal Network] of free-software lawyers & is geographically appropriate to a Polish maintainer.<ref name="fsfe-legal-network">{{Cite web |title=Legal Network |url=https://fsfe.org/activities/ln/ln.en.html |website=Free Software Foundation Europe |access-date=2026-05-10 |url-status=live}}</ref>
*'''Free Software Foundation Europe (FSFE).''' FSFE convenes the [https://fsfe.org/activities/ln/ln.en.html European Legal Network] of free-software lawyers and is geographically appropriate to a Polish maintainer.<ref name="fsfe-legal-network">{{Cite web |title=Legal Network |url=https://fsfe.org/activities/ln/ln.en.html |website=Free Software Foundation Europe |access-date=2026-05-10 |url-status=live}}</ref>
*'''Electronic Frontier Foundation (EFF).''' Not for AGPL enforcement, but for the maintainer's defensive posture. The [https://www.eff.org/issues/coders Coders' Rights Project] works on the legal issues developers face under DMCA, CFAA, & similar computer-crime laws & provides public guidance for reverse engineering & vulnerability disclosure.<ref name="eff-coders-rights">{{Cite web |title=Coders' Rights Project |url=https://www.eff.org/issues/coders |website=Electronic Frontier Foundation |access-date=2026-05-10 |url-status=live}}</ref>
*'''Electronic Frontier Foundation (EFF).''' Not for AGPL enforcement, but for the maintainer's defensive posture. The [https://www.eff.org/issues/coders Coders' Rights Project] works on the legal issues developers face under DMCA, CFAA, and similar computer-crime laws and provides public guidance for reverse engineering and vulnerability disclosure.<ref name="eff-coders-rights">{{Cite web |title=Coders' Rights Project |url=https://www.eff.org/issues/coders |website=Electronic Frontier Foundation |access-date=2026-05-10 |url-status=live}}</ref>
*'''iFixit & The Repair Association.''' Press reach & [[right to repair]] coalition framing. Neither litigates AGPL; both have established media reach & legislative relationships & have publicly tracked the Bambu Lab takedown in their channels.
*'''iFixit and The Repair Association.''' Press reach and [[right to repair]] coalition framing. Neither litigates AGPL; both have established media reach and legislative relationships and have publicly tracked the Bambu Lab takedown in their channels.


===Consequences for FOSS forks of corporate-sponsored AGPL projects===
===Consequences for FOSS forks of corporate-sponsored AGPL projects===
Louis Rossmann publicly pledged $10,000 toward Jarczak's legal defense if Bambu Lab proceeded with a lawsuit in a May 9, 2026 YouTube video,<ref name="rossmann-youtube-pledge" /> & directed an explicit public statement at the company's leadership; Tom's Hardware reported the pledge on May 10, 2026.<ref name="tomshardware-rossmann-pledge" /> The 3D-printing trade press (3Druck, XDA, Tom's Hardware, Manufactur3D) covered the dispute as the immediate flashpoint. Enforcement organizations including the Free Software Foundation, Software Freedom Conservancy, FSFE, and Electronic Frontier Foundation have jurisdiction to bring AGPL claims, but no enforcement action involving Bambu Lab had been announced as of publication. The same question reaches every IoT-device vendor who ships AGPL or GPLv3 components with companion mobile apps & cloud back-ends, & every consumer-electronics company publishing open-source slicers, control panels, or firmware while routing user functionality through proprietary remote services.
Louis Rossmann publicly pledged $10,000 toward Jarczak's legal defense if Bambu Lab proceeded with a lawsuit in a May 9, 2026 YouTube video,<ref name="rossmann-youtube-pledge" /> and directed an explicit public statement at the company's leadership; Tom's Hardware reported the pledge on May 10, 2026.<ref name="tomshardware-rossmann-pledge" /> The 3D-printing trade press (3Druck, XDA, Tom's Hardware, Manufactur3D) covered the dispute as the immediate flashpoint. Enforcement organizations including the Free Software Foundation, Software Freedom Conservancy, FSFE, and Electronic Frontier Foundation have jurisdiction to bring AGPL claims, but no enforcement action involving Bambu Lab had been announced as of publication. The same question reaches every IoT-device vendor who ships AGPL or GPLv3 components with companion mobile apps and cloud back-ends, and every consumer-electronics company publishing open-source slicers, control panels, or firmware while routing user functionality through proprietary remote services.


==Impact on professional users and privacy concerns==
==Impact on professional users and privacy concerns==
Line 378: Line 327:
==Comparisons to similar practices by other companies==
==Comparisons to similar practices by other companies==


Bambu Lab's new authorization & authentication requirements have been compared to a number of practices by traditional printer manufacturers, such as [[HP]] & [[Epson]], who have faced backlash & litigation over [[digital rights management]] (DRM) practices in 2D printers. The Federal Trade Commission's May 2021 report ''Nixing the Fix'' described firmware-mediated cartridge restrictions as one of the recurring repair-policy issues the agency examined, & noted that the Magnuson-Moss Warranty Act prohibits a printer manufacturer from conditioning its warranty on the purchaser's use of the manufacturer's branded ink.<ref name="ftc-nixing-the-fix">{{Cite web |title=Nixing the Fix: An FTC Report to Congress on Repair Restrictions |author=Federal Trade Commission |url=https://www.ftc.gov/system/files/documents/reports/nixing-fix-ftc-report-congress-repair-restrictions/nixing_the_fix_report_final_5521_630pm-508_002.pdf |website=Federal Trade Commission |date=2021-05-06 |access-date=2026-05-10 |url-status=live}}</ref> HP settled an "Ink Cartridge Monopoly" class action for $1.5 million in 2018, with settlement payments to class members distributed in late 2019,<ref name="hp-2019-class-action">{{Cite web |last=Spicer |first=Christina |title=HP Ink Cartridge Monopoly Class Action Lawsuit Settles for $1.5M |url=https://topclassactions.com/lawsuit-settlements/lawsuit-news/hp-ink-cartridge-monopoly-class-action-lawsuit-settles-1-5m/ |website=Top Class Actions |date=2019-11-26 |access-date=2026-05-10 |url-status=live}}</ref> & in September 2022 reached a Euroconsumers settlement covering Dynamic Security firmware practices in the EU.<ref name="hp-euroconsumers-2022">{{Cite web |title=HP and Euroconsumers settle on Dynamic Security |author=Euroconsumers |url=https://www.euroconsumers.org/hp-and-euroconsumers-settle-on-dynamic-security/ |website=Euroconsumers |date=2022-09-07 |access-date=2026-05-10 |url-status=live}}</ref> A March 19, 2025 Ars Technica account of the U.S. HP class-action settlement reported that owners of 21 specific HP printer models can opt out of Dynamic Security firmware updates as part of the resolution.<ref name=":5" /> Epson faced its own consumer class action over allegations that firmware updates rendered third-party cartridges unusable.<ref name="epson-mondigo-class-action">{{Cite web |last=Cohen |first=Steven |title=Epson Class Action Alleges Printer Ink Defect |url=https://topclassactions.com/lawsuit-settlements/consumer-products/electronics/epson-class-action-alleges-printer-ink-defect/ |website=Top Class Actions |date=2020-05-19 |access-date=2026-05-10 |url-status=live}}</ref> These comparisons address:
Bambu Lab's new authorization and authentication requirements have been compared to a number of practices by traditional printer manufacturers, such as [[HP]] and [[Epson]], who have faced backlash and litigation over [[digital rights management]] (DRM) practices in 2D printers.{{CitationNeeded}}  
*'''Forced updates''': Firmware updates have rendered third-party ink cartridges incompatible, forcing users to purchase proprietary consumables.
*'''Restricted features''': Scanner / printer combos that will not scan if the ink is empty.
*'''Consumer backlash''': Users criticized these updates as anti-consumer, with some pursuing {{Wplink|class action}} lawsuits for deceptive practices.<ref name=":5" />


A parallel from the 3D-printing industry is the 3D-printer manufacturer [[MakerBot]], whose 2012 shift from open-source, DIY-focused machines to closed-source, proprietary machines drove customers to less-expensive open-source competitors, as documented by Hackaday's 2016 obituary of the company.<ref>{{Cite web |last=Benchoff |first=Brian |date=2016-04-28 |title=The MakerBot Obituary |url=https://hackaday.com/2016/04/28/the-makerbot-obituary/ |url-status=live |archive-url=http://web.archive.org/web/20251208222057/https://hackaday.com/2016/04/28/the-makerbot-obituary/ |archive-date=2025-12-08 |access-date=2025-05-01 |website=[[Hackaday]]}}</ref> MakerBot was also accused of asserting ownership over publicly available, open-source designs uploaded to its 3D print repository, Thingiverse.<ref>{{Cite web |last=Biggs |first=John |date=2014-05-28 |title=MakerBot Responds To Critics Who Claim It Is Stealing Community IP |url=https://techcrunch.com/2014/05/28/makerbot-responds-to-critics-who-claim-it-is-stealing-community-ip/ |url-status=live |archive-url=http://web.archive.org/web/20251111041317/https://techcrunch.com/2014/05/28/makerbot-responds-to-critics-who-claim-it-is-stealing-community-ip/ |archive-date=2025-11-11 |access-date=2025-05-01 |website=[[TechCrunch]]}}</ref>
A parallel from the 3D-printing industry is the 3D-printer manufacturer [[MakerBot]], whose 2012 shift from open-source, DIY-focused machines to closed-source, proprietary machines drove customers to less-expensive open-source competitors, as documented by Hackaday's 2016 obituary of the company.<ref>{{Cite web |last=Benchoff |first=Brian |date=2016-04-28 |title=The MakerBot Obituary |url=https://hackaday.com/2016/04/28/the-makerbot-obituary/ |url-status=live |archive-url=http://web.archive.org/web/20251208222057/https://hackaday.com/2016/04/28/the-makerbot-obituary/ |archive-date=2025-12-08 |access-date=2025-05-01 |website=[[Hackaday]]}}</ref> MakerBot was also accused of asserting ownership over publicly available, open-source designs uploaded to its 3D print repository, Thingiverse.<ref>{{Cite web |last=Biggs |first=John |date=2014-05-28 |title=MakerBot Responds To Critics Who Claim It Is Stealing Community IP |url=https://techcrunch.com/2014/05/28/makerbot-responds-to-critics-who-claim-it-is-stealing-community-ip/ |url-status=live |archive-url=http://web.archive.org/web/20251111041317/https://techcrunch.com/2014/05/28/makerbot-responds-to-critics-who-claim-it-is-stealing-community-ip/ |archive-date=2025-11-11 |access-date=2025-05-01 |website=[[TechCrunch]]}}</ref>
Line 387: Line 333:
==TOS restricting development of third party devices and accessories==
==TOS restricting development of third party devices and accessories==


Archived discussion threads from January 2024 confirm that the § 3.1 clause has been part of the Bambu Lab Terms of Use at least since then.<ref>{{Cite web |last=@X1Plus |title=X1plus community Bambu Lab firmware - A win for everyone? |url=https://www.reddit.com/r/3Dprinting/comments/18zaay0/x1plus_community_bambu_lab_firmware_a_win_for/kggqg4n/ |url-status=live |archive-url=https://web.archive.org/web/20260222212657/https://old.reddit.com/r/3Dprinting/comments/18zaay0/x1plus_community_bambu_lab_firmware_a_win_for/kggqg4n/ |archive-date=2026-02-22 |access-date=2025-05-01 |website=[[Reddit]]}}</ref> Community reaction was split: some readers argued the clause is intended to restrict third-party development, while others characterized it as standard boilerplate in vendor terms.<ref>{{Cite web |last=@mflexx |title=Not updated. And this part is shared by pretty much every company that has ever existed on this planet. That's just blatant karma farming at this point. |url=https://www.reddit.com/r/BambuLab/comments/1ibhhg7/updated_tos_shots_fired/m9i78kj/ |url-status=live |archive-url=https://web.archive.org/web/20260222212738/https://old.reddit.com/r/BambuLab/comments/1ibhhg7/updated_tos_shots_fired/m9i78kj/ |archive-date=2026-02-22 |access-date=2025-05-01 |website=[[Reddit]]}}</ref>
Archived discussion threads from January 2024 confirm that a clause restricting the development of third party devices and accessories - § 3.1 - has been part of the Bambu Lab Terms of Use at least since then.<ref>{{Cite web |last=@X1Plus |title=X1plus community Bambu Lab firmware - A win for everyone? |url=https://www.reddit.com/r/3Dprinting/comments/18zaay0/x1plus_community_bambu_lab_firmware_a_win_for/kggqg4n/ |url-status=live |archive-url=https://web.archive.org/web/20260222212657/https://old.reddit.com/r/3Dprinting/comments/18zaay0/x1plus_community_bambu_lab_firmware_a_win_for/kggqg4n/ |archive-date=2026-02-22 |access-date=2025-05-01 |website=[[Reddit]]}}</ref> Community reaction was split: some readers argued the clause is intended to restrict third-party development, while others characterized it as standard boilerplate in vendor terms.<ref>{{Cite web |last=@mflexx |title=Not updated. And this part is shared by pretty much every company that has ever existed on this planet. That's just blatant karma farming at this point. |url=https://www.reddit.com/r/BambuLab/comments/1ibhhg7/updated_tos_shots_fired/m9i78kj/ |url-status=live |archive-url=https://web.archive.org/web/20260222212738/https://old.reddit.com/r/BambuLab/comments/1ibhhg7/updated_tos_shots_fired/m9i78kj/ |archive-date=2026-02-22 |access-date=2025-05-01 |website=[[Reddit]]}}</ref>


Bambu Lab's Terms of Use § 3.1 states:
Bambu Lab's Terms of Use § 3.1 states:
Line 400: Line 346:
*[[GNU Affero General Public License]]
*[[GNU Affero General Public License]]
*[[Software Freedom Conservancy]]
*[[Software Freedom Conservancy]]
*[[Reverse Engineering Bambu Connect]]


==References==
==References==