WebUSBとは何か、何を引き起こしたか、今どうなっているか

Transcript

1. WebUSBͱ͸Կ͔ ԿΛҾ͖ى͔ͨ͜͠ ࠓͲ͏ͳ͍ͬͯΔ͔ NAOMASA MATSUBAYASHI ιʔείʔυ: https://github.com/Fadis/fadis.github.io/tree/master/webusb

2. 2017೥9݄ WebUSBΛαϙʔτ͢ΔॳͷWebϒϥ΢β Google Chrome 61͕ϦϦʔε͞Εͨ

3. WebUSB API http://wicg.github.io/webusb

4. ϗετʹ઀ଓ͞ΕͨUSBσόΠεͱϒϥ΢β͕ OSͷσόΠευϥΠόΛհͣ͞ʹ ௚઀ձ࿩͢ΔͨΊͷJavaScriptͷAPI Χʔωϧ ϒϥ΢β 64#σόΠε libusbΛWeb͔Βୟ͚ΔΑ͏ʹͳͬͨͱࢥ͑͹ ͍͍͍ͩͨ͋ͬͯΔ WebUSB API

5. σόΠεΛऔಘ͢Δ return navigator.usb.requestDevice( { 'filters': [ { 'vendorId': 0x1234, 'productId':

   0x5678 } ] } ).then(device_ => { device = device_; return connect(); }).catch(error => { console.log('઀ଓΤϥʔ: ' + error); }); navigator.usb.requestDevieͰ
   ࢦఆͨ͠ϕϯμIDͱϓϩμΫτIDΛ࣋ͭ
   USBσόΠε΁ͷ઀ଓΛཁٻ͢Δ

6. σόΠεΛऔಘ͢Δ ͜Μͳϓϩϯϓτ͕ग़ͯ͘Δ
   Ϣʔβ͸Webϖʔδʹ
   ৮Βͤͯྑ͍σόΠεΛબͿ

7. USBσόΠε σόΠε ΤϯυϙΠϯτ0 ΤϯυϙΠϯτ1 ίϯϑΟάϨʔγϣϯ0 ΠϯλʔϑΣʔε0 ΠϯλʔϑΣʔε1 ΠϯλʔϑΣʔε2 ΤϯυϙΠϯτ0 ΤϯυϙΠϯτ1

   ΤϯυϙΠϯτ2 ΤϯυϙΠϯτ3

8. USBσόΠε σόΠε ΤϯυϙΠϯτ0 ΤϯυϙΠϯτ1 ίϯϑΟάϨʔγϣϯ0 ΠϯλʔϑΣʔε0 ΠϯλʔϑΣʔε1 ΠϯλʔϑΣʔε2 ΤϯυϙΠϯτ0 ΤϯυϙΠϯτ1

   ΤϯυϙΠϯτ2 ΤϯυϙΠϯτ3 σʔλΛૹड৴͢Δͱ͖ʹ͸ ͲͷΤϯυϙΠϯτͰձ࿩͢Δ͔Λࢦఆ͢Δ

9. USBσόΠε σόΠε ΤϯυϙΠϯτ0 ΤϯυϙΠϯτ1 ίϯϑΟάϨʔγϣϯ0 ΠϯλʔϑΣʔε0 ΠϯλʔϑΣʔε1 ΠϯλʔϑΣʔε2 ΤϯυϙΠϯτ0 ΤϯυϙΠϯτ1

   ΤϯυϙΠϯτ2 ΤϯυϙΠϯτ3 ΞϓϦέʔγϣϯ͸ ΠϯλʔϑΣʔε୯ҐͰΤϯυϙΠϯτΛ઎༗͢Δ

10. σόΠεʹσʔλΛૹΔ/໯͏ device.controlTransferOut({ 'requestType': 'class', 'recipient': 'interface', 'request': 0x22, 'value': 0x01,

    'index': 0x00 }).then(result => { … } ίϯτϩʔϧసૹ device.controlTransferIn({ 'requestType': 'standard', 'recipient': 'device', 'request': 0x06, 'value': 0x0100, 'index': 0x0000 }, 0x12).then(result => { … } σόΠεͷ৘ใͷऔಘ΍ σόΠεͷॳظԽΛߦ͏

11. ௨৴Ͱ͖Δঢ়ଶʹ͢Δ return device.open().then(() => { if(device.configuration === null) { return

    device.selectConfiguration(1); } }).then(() => { return device.claimInterface(1); }).then(() => { return device.claimInterface(0); }); configurationΛબͿ USBσόΠε͸ෳ਺ͷػೳΛఏڙ͍ͯ͠Δ͜ͱ͕͋Δ ͲͷػೳΛ࢖͏͔ΛબͿͷ͕configurationͷબ୒ ඞཁͳΠϯλʔϑΣʔεΛ઎༗͢Δ

12. σόΠεʹσʔλΛૹΔ/໯͏ device.transferIn(1, 1024).then(result => { something_on_recieved( result.data ); } σόΠε͔Βड৴

    σόΠεʹૹ৴ ΤϯυϙΠϯτID ड৴͢ΔόΠτ਺ PromiseͰड৴݁ՌͱDataView͕ฦͬͯདྷΔ device.transferOut(2, data).then(result => { something_on_sent(); } ΤϯυϙΠϯτID ૹ৴͢ΔArrayBuffer PromiseͰૹ৴݁Ռ͕ฦͬͯདྷΔ

13. CDC ACM γϦΞϧ௨৴ Webϒϥ΢βͷதͱ֎Ͱձ࿩ͯ͠ΈΑ͏

14. USB GadgetυϥΠό ࢲ͸64#֎෇͚
    ϋʔυσΟεΫͰ͢ ϋʔυσΟεΫ͕དྷͨ USBσόΠεͷϑϦΛ͢ΔυϥΠό

15. dummy_udc ϋʔυσΟεΫ͕དྷͨ Ծ૝తͳUSBϗετͱσόΠεͷ૊Λ࡞Δ ࢲ͸64#֎෇͚
    ϋʔυσΟεΫͰ͢

16. $ modprobe libcomposite $ modprobe dummy_hcd $ cd /sys/kernel/config/usb_gadget $

    mkdir g1 $ cd g1 $ mkdir functions/acm.g1 $ mkdir configs/c.1 $ ln -s functions/acm.g1 configs/c.1 $ echo 0x1234 >idVendor $ echo 0x5678 >idProduct $ echo dummy_udc.0 >UDC $ sleep 1 $ modprobe -r cdc_acm $ agetty 115200 ttyGS0 LinuxͷUSB GadgetͰ CDC ACMͷγϦΞϧ௨৴σόΠεΛ࡞Γ σόΠεଆͰgetty͢Δ ϗετଆυϥΠό͸Ξϯϩʔυ͓ͯ͘͠

17. CDC ACM σόΠε ίϯϑΟάϨʔγϣϯ0 CDC ACM Comm(0) CDC ACM Data(1)

    ੍ޚ৴߸(3) σʔλೖྗ(1) σʔλग़ྗ(2) σʔλೖग़ྗͷͨΊͷόϧΫΤϯυϙΠϯτΛ උ͑ΔΠϯλʔϑΣʔε͕1ͭ ੍ޚ৴߸ΛૹΔͨΊͷׂΓࠐΈΤϯυϙΠϯτΛ උ͑ΔΠϯλʔϑΣʔε͕1ͭ

18. function flush() { writing = true; let buffer_ = buffer;

    buffer = ''; device.transferOut(2, textEncoder.encode(buffer_)).then( result => { writing = false; if( buffer.length != 0 ) { flush(); } }).catch(error => { console.log(‘ૹ৴Τϥʔ: ' + error); writing = false; if( buffer.length != 0 ) { flush(); } }); } t.open( document.getElementById('terminal') ); t.on('key', function (key, ev) { if(device !== undefined) { if( !writing ) { buffer += key; flush(); } else { buffer += key; } } }); xterm.jsʹΩʔೖྗ͕͋ͬͨΒ
    ΤϯυϙΠϯτʹೖྗ಺༰Λྲྀ͢

19. let readLoop = () => { if( device ) {

    device.transferIn(1, 1024).then(result => { let textDecoder = new TextDecoder(); t.write(textDecoder.decode(result.data)); readLoop(); }, error => { console.log( error ); readLoop(); }); } }; ΤϯυϙΠϯτ1Ͱ͸ σόΠε͔ΒͷσʔλΛ଴ͪड͚ Կ͔ड͚औͬͨΒxterm.jsʹྲྀ͢

20. USBΛ௨ͬͯ֎ͷੈքʹඈͼग़͢Α! http://fadis.github.io/webusb/minimal/

21. USBϚεετϨʔδ USB֎෇͚ϋʔυσΟεΫ΍ USBϑϥογϡϝϞϦͱձ࿩ͯ͠ΈΑ͏

22. ͜ͷUSBϑϥογϡϝϞϦΛ ϒϥ΢β͔ΒಡΉ $ modprobe -r uas $ modprobe -r mass_storage

    ·ͣΧʔωϧ͕अຐΛ͠ͳ͍Α͏ʹ͓ͯ͘͠

23. Command Block Wrapper SCSIίϚϯυ Command State Wrapper ίϚϯυͷ࣮ߦ݁Ռ ίϚϯυʹ෇ਵ͢Δ σʔλΛૹड৴

    Bulk Only Transport ࡉ͔͍ετϨʔδͷૢ࡞ํ๏͸SCSIͦͷ··

24. σόΠε ίϯϑΟάϨʔγϣϯ0 MSC(0) σʔλೖྗ(1) σʔλग़ྗ(2) σʔλೖग़ྗͷͨΊͷόϧΫΤϯυϙΠϯτΛ උ͑ΔΠϯλʔϑΣʔε͕1͚ͭͩ Bulk Only Transport

25. Command Block Wrapper let cbw = ( tag, len, dir,

    command ) => { let data = new Uint8Array( 15 + 16 ); data.set([ 0x55, 0x53, 0x42, 0x43, // USBC tag & 0xFF, ( tag >> 8 ) & 0xFF, ( tag >> 16 ) & 0xFF, ( tag >> 24 ) & 0xFF, // tag len & 0xFF, ( len >> 8 ) & 0xFF, ( len >> 16 ) & 0xFF, ( len >> 24 ) & 0xFF, // len dir << 7, // flags 0, // LUN command.byteLength // command length ], 0); data.set( command, 15 ); return device.transferOut( 2, data ); } 4$4*ίϚϯυʹ$#8ͷ
    ϔομΛ͚ͭͯ
    σόΠεʹ౤͛Δ

26. Command State Wrapper let csw = () => { return

    device.transferIn( 1, 13 ).then( result => { let state = result.data.getUint8( 12 ); return state == 0; } ); } ίϚϯυͷ࣮ߦ݁ՌΛσόΠε͔Βड͚औΔ

27. ετϨʔδΛಡΉͷʹඞཁͳSCSIίϚϯυ INQUIRY TEST UNIT READY State? READ CAPACITY(10) READ(10) OK

    * -6/ʹσόΠε͕
    ͋Δ͜ͱΛ֬ೝ σόΠε͕
    ར༻ՄೳʹͳΔͷΛ଴ͭ σόΠεͷ༰ྔͱ
    ηΫλαΠζΛऔಘ σόΠε͔Β
    σʔλΛಡΈग़͢

28. let inquiry = () => { let command = new

    Uint8Array([ // command LUN reserved reserved size reserved 0x12, 0, 0, 0, 36, 0 ]); return cbw( 1, 36, 1, command ).then( result => { return device.transferIn( 1, 36 ); }).then( result => { return result.data; }).then( data => { return csw().then( stat => { return { 'status': stat, 'data': data } }); }); } ඞཁͳSCSIίϚϯυΛ࣮૷͍ͯ͘͠

29. let test_unit_ready = () => { let command = new

    Uint8Array([ // command LUN 0x00, 0 ]); return cbw( 1, 0, 1, command ).then( result => { return csw(); }).then( stat => { if( stat ) { console.log( 'σόΠε͕ར༻ՄೳʹͳΓ·ͨ͠' ); return true; } else { console.log( 'σόΠε͕ར༻ՄೳʹͳΔͷΛ଴͍ͬͯ·͢' ); return async_sleep( 1000 ).then( test_unit_ready ); } }); } ඞཁͳSCSIίϚϯυΛ࣮૷͍ͯ͘͠

30. let read_capacity = () => { let command = new

    Uint8Array([ 0x25, 0 // command LUN ]); return cbw( 1, 8, 1, command ).then( result => { return device.transferIn( 1, 8 ) }).then( result => { let last_lba = result.data.getUint32( 0 ); let block_len = result.data.getUint32( 4 ); return { 'last_logical_block_address': last_lba, 'block_length': block_len }; }).then( data => { return csw().then( stat => { return { 'status': stat, 'data': data } }); }); }; ඞཁͳSCSIίϚϯυΛ࣮૷͍ͯ͘͠

31. let read = ( offset, count ) => { let

    command = new Uint8Array([ 0x28, 0, // command LUN ( offset >> 24 ) & 0xFF, ( offset >> 16 ) & 0xFF, ( offset >> 8 ) & 0xFF, offset & 0xFF, // LBA 0, // reserved ( count >> 8 ) & 0xFF, count & 0xFF, // length 0 // reserved ]); let size = sector_size * count; return cbw( 1, size, 1, command ).then( result => { return device.transferIn( 1, sector_size * count ) }).then( result => { return result.data; }).then( data => { return csw().then( stat => { return { 'status': stat, 'data': data } }); }); }; ඞཁͳSCSIίϚϯυΛ࣮૷͍ͯ͘͠

32. ϚελʔϒʔτϨίʔυ -#"͔Β
    ϒϩοΫΛऔಘ ύʔςΟγϣϯ
    ςʔϒϧͷ
    ͭΊͷΤϯτϦ ϒʔτγάχνϟ 55 aa

33. BIOSύϥϝʔλϒϩοΫ FAT32ͷϔομ 46 41 54 33 32 20 20 20

    F A T 3 2 _ _ _

34. FAT32 let load_fat32 = partition => { return read( partition.at,

    1 ).then( result => { let cluster_size = result.data.getUint8( 13 ); let reserved_sector_size = result.data.getUint16( 14, true ); let num_fats = result.data.getUint8( 16 ); let rde_size = result.data.getUint16( 17, true ); let fat_size = result.data.getUint32( 36, true ); let rde = result.data.getUint32( 44, true ); let fat_lba = partition.at + reserved_sector_size; return read( fat_lba, fat_size ).then( result => { let len = result.data.byteLength / 4; let fat = new Uint32Array( len ); for( let i = 0; i != len; i++ ) { fat[ i ] = result.data.getUint32( i * 4, true ); } let clusters_lba = fat_lba + num_fats * fat_size; let fsinfo = { 'cluster_size': cluster_size, 'fat': fat, 'clusters_lba': clusters_lba, 'rootdir_entry': rde BIOSύϥϝʔλϒϩοΫ͔Β
    ϑΝΠϧγεςϜΛಡΉͷʹඞཁͳ஋Λऔಘ ΫϥελαΠζ
    FATͷ਺ͱαΠζͱ։࢝ηΫλ
    ϧʔτσΟϨΫτϦ͕ॻ͔Ε͍ͯΔҐஔ

35. FAT32 let reserved_sector_size = result.data.getUint16( 14, true ); let num_fats

    = result.data.getUint8( 16 ); let rde_size = result.data.getUint16( 17, true ); let fat_size = result.data.getUint32( 36, true ); let rde = result.data.getUint32( 44, true ); let fat_lba = partition.at + reserved_sector_size; return read( fat_lba, fat_size ).then( result => { let len = result.data.byteLength / 4; let fat = new Uint32Array( len ); for( let i = 0; i != len; i++ ) { fat[ i ] = result.data.getUint32( i * 4, true ); } let clusters_lba = fat_lba + num_fats * fat_size; let fsinfo = { 'cluster_size': cluster_size, 'fat': fat, 'clusters_lba': clusters_lba, 'rootdir_entry': rde }; return load_fat32file( fsinfo, fsinfo.rootdir_entry, 0 ).then( raw_root_dir => { let root_dir = parse_fat32directory( raw_root_dir ); fsinfo[ 'rootdir' ] = root_dir; FATʹ͸
    ࠓಡΜͰ͍ΔΫϥελͷ࣍ʹಡΉ΂͖Ϋϥελ͕
    Ͳ͔͕͜ه࿥͞Ε͍ͯΔ FATΛಡΉ

36. FAT32 let fat = new Uint32Array( len ); for( let

    i = 0; i != len; i++ ) { fat[ i ] = result.data.getUint32( i * 4, true ); } let clusters_lba = fat_lba + num_fats * fat_size; let fsinfo = { 'cluster_size': cluster_size, 'fat': fat, 'clusters_lba': clusters_lba, 'rootdir_entry': rde }; return load_fat32file( fsinfo, fsinfo.rootdir_entry, 0 ).then( raw_root_dir => { let root_dir = parse_fat32directory( raw_root_dir ); fsinfo[ 'rootdir' ] = root_dir; return fsinfo; }); }); }); }; ϧʔτσΟϨΫτϦΛಡΉ

37. let get_fat32clusters_reversed = ( fsinfo, head ) => { let

    next = fsinfo.fat[ head ] & 0x0FFFFFFF; if( next >= 0x00000002 && next <= 0x0ffffff6 ) { let tail = get_fat32clusters_reversed( fsinfo, next ); tail.push( head ); return tail; } else return [ head ]; }; ΫϥελνΣΠϯ FAT͔ΒಡΉඞཁ͕͋ΔΫϥελΛௐ΂ͯ

38. let get_fat32clusters = ( fsinfo, head ) => { let

    clusters = get_fat32clusters_reversed( fsinfo, head ); clusters.reverse(); let chunks = [ { 'at': clusters[ 0 ], 'length': 1 } ]; for( let i = 1; i != clusters.length; i++ ) { if( clusters[ i - 1 ] + 1 == clusters[ i ] ) { chunks[ chunks.length - 1 ].length++; } else { chunks.push( { 'at': clusters[ i ], 'length': 1 } ); } } return chunks; } ΫϥελνΣΠϯ ࿈ଓͨ͠Ϋϥελ͸·ͱΊͯ

39. let load_fat32cluster = ( fsinfo, chunks, index, data ) =>

    { let lba = fsinfo.clusters_lba + ( chunks[ index ].at - 2 ) * fsinfo.cluster_size; return read( lba, chunks[ index ].length * fsinfo.cluster_size ).then( result => { data.push( result.data ); if( index + 1 < chunks.length ) { return load_fat32cluster( fsinfo, chunks, index + 1, data ); } else return data; }); } ΫϥελνΣΠϯ READ(10)

40. let parse_fat32directory = ( data ) => { let files

    = []; let lfn = []; for( let offset = 0; offset != data.byteLength; offset += 32 ) { let entry = data.subarray( offset, offset + 32 ); let attribute = entry[ 11 ]; let sfn_head = entry[ 0 ]; if( sfn_head == 0x00 ) { break; } else if( sfn_head == 0xE5 ) { continue; } else if( attribute == 0x0F ) { let fragment = new Uint8Array( 26 ); fragment.set( entry.subarray( 1, 11 ), 0 ); fragment.set( entry.subarray( 14, 26 ), 10 ); fragment.set( entry.subarray( 28, 32 ), 22 ); lfn.push( fragment ); σΟϨΫτϦΤϯτϦ ͦΜͳʹෳࡶ͡Όͳ͍ͷͰؾ߹͍Ͱύʔε͢Δ

41. ϒϥ΢βͰUSBϑϥογϡϝϞϦΛಡΉΑ! http://fadis.github.io/webusb/storage/ ஫ҙ: ޙड़͢Δ࣮૷ͷมߋʹΑΓ ݱࡏͷGoogle ChromeͰ͸ಈ͔ͳ͘ͳ͍ͬͯ·͢

42. USBϑϥογϡϝϞϦ͔ΒಡΜͩը૾Λ Webϖʔδʹදࣔ͢ΔΑ! http://fadis.github.io/webusb/storage/ ஫ҙ: ޙड़͢Δ࣮૷ͷมߋʹΑΓ ݱࡏͷGoogle ChromeͰ͸ಈ͔ͳ͘ͳ͍ͬͯ·͢

43. WebUSBͷηΩϡϦςΟ WebUSB͸USBσόΠεʹର͢Δ ͋ΒΏΔૢ࡞Λߦ͏ݖݶΛ ϦϞʔτ͔ΒඈΜͰདྷͨJavaScriptʹ༩͑Δ σόΠεʹΑͬͯ͸JavaScript͸ σόΠεΛ৐ͬऔΔࣄ΋ഁյ͢Δࣄ΋Ͱ͖Δ ࠷௿Ͱ΋JavaScriptͷग़ॴ͕ อূ͞Ε͍ͯͳ͍ͱාͯ͘ར༻Ͱ͖ͳ͍

44. WebUSBͷηΩϡϦςΟ WebUSB͸SecureContextͰͷΈ࢖༻Ͱ͖Δ https://www.w3.org/TR/secure-contexts/ TLS ҉߸Խ͞Ε͍ͯͯ εΫϦϓτΛڬΊͳ͍ ฏจͰҾͬுΒΕͨ εΫϦϓτΛվ᜵ͯ͠΋ ͦ͜Ͱ͸WebUSB͸ಈ͔ͳ͍ ࠷ॳʹTLSͰऔಘͨ͠Webϖʔδ͔Β

    TLSΛհͯ͠ḷΓண͚ΔεΫϦϓτ͚͕ͩ USBσόΠεΛૢ࡞Ͱ͖Δ ͱ͜ΖͰͦͷWebϖʔδࣗମ͸৴པͰ͖Δ?

45. WebUSBͷηΩϡϦςΟ https://example.org/ ͳΜ͚ͩͲ USBσόΠεΛ࢖ΘͤͯΑ https://example.com/ Ͱ࢖ΘΕΔҝʹ࡞ΒΕͨ
    WebUSBରԠσόΠεͰ͢ μϝ ౰ॳWebUSB͸σόΠεʹ৘ใΛຒΊΔࣄͰ ҙਤ͠ͳ͍Webϖʔδʹ

    σόΠεΛ࢖ΘΕͳ͍Α͏ʹ͠Α͏ͱͨ͠

46. WebUSB Platform Capability Descriptor WebUSBରԠσόΠεͰ͋Δ͜ͱΛࣔ͢σεΫϦϓλ https://wicg.github.io/webusb/

47. Get URL σόΠεͷURLΛऔಘ͢Δҝͷ৽͍͠ϦΫΤετ ͜ͷURLͱಉ͡υϝΠϯͷWebϖʔδ͔Βͷ WebUSBϦΫΤετ͔͠ड͚෇͚ͳ͍ https://wicg.github.io/webusb/

48. WebαΠτAͰ ೝূ͢ΔͨΊͷ ΧʔυϦʔμʔ WebαΠτB༻Ͱ ೝূ͢ΔͨΊͷ ΧʔυϦʔμʔ WebαΠτC༻Ͱ ೝূ͢ΔͨΊͷ ΧʔυϦʔμʔ ͜Ε͸ศརͰ͸ͳ͍

49. ౰ॳσόΠεʹURLຒΊࠐ΋͏ͱࢥ͚ͬͨͲ σόΠεͷϕϯμʔʹରԠͯ͠΋Β͏ͷ೉͍͠͠ αʔυύʔςΟ͕σόΠε࢖͑ͳ͘ͳΔ͔Β΍Ίͨ ϢʔβʹϓϩϯϓτͰ֬ೝͱͬͯΔ͠ ͦΕ͚ͩͰे෼ͳΜ͡Όͳ͍͔ͳ https://wicg.github.io/webusb/

50. WebUSBͷηΩϡϦςΟ ͜͏ͯ͠σόΠε઀ଓϓϩϯϓτҎ֎ʹ ѱҙ͋ΔυϥΠόͷ࣮ߦΛ๷͙ज़͕ͳ͍ WebUSB͕҆ఆ൛ͷChromeʹ࣮૷͞Εͨ https://developers.google.com/web/updates/2017/09/nic61

51. WebUSBͷηΩϡϦςΟ ͜ͷϓϩϯϓτͷҙຯ͸
    Ӿཡதͷ8FCϖʔδ͕ಘମͷ஌Εͳ͍υϥΠόͰ
    64#σόΠεΛ޷͖উख͢Δࣄʹಉҙ͠·͔͢

52. ChromeͷWebUSBͷ࣮૷͸ Χʔωϧ͔ΒσόΠεΛσλον͠ͳ͍ WebUSB͸Χʔωϧ͕Ѳ͍ͬͯΔσόΠεΛ ࢖༻͢Δࣄ͸Ͱ͖ͳ͍ ͦΕ΄͍͠ ΍ΒΜ γεςϜͷॏཁͳUSBσόΠε͸Χʔωϧ͕Ѳ͍ͬͯΔഺͳͷͰ ͦ͏ͨ͠σόΠε͸WebUSBʹΑΔૢ࡞͔Βอޢ͞ΕΔ

53. ChromeͷWebUSBͷ࣮૷͸ Χʔωϧ͔ΒσόΠεΛσλον͠ͳ͍ ͦΕ΄͍͠ ΍ΒΜ γεςϜͷॏཁͳUSBσόΠε͸Χʔωϧ͕Ѳ͍ͬͯΔഺͳͷͰ ͦ͏ͨ͠σόΠε͸WebUSBʹΑΔૢ࡞͔Βอޢ͞ΕΔ ຊ౰ʹ? WebUSB͸Χʔωϧ͕Ѳ͍ͬͯΔσόΠεΛ ࢖༻͢Δࣄ͸Ͱ͖ͳ͍

54. 2018೥3݄ WebUSBΛ࢖ͬͯ Ұ෦ͷFIDO U2FυϯάϧΛ ୆ແ͠ʹग़དྷΔࣄ͕ࣔ͞Εͨ https://www.offensivecon.org/speakers/ 2018/markus-and-michele.html

55. FIDO U2FͰϢʔβొ࿥ Ϣʔβొ࿥ 伴ੜ੒Λཁٻ "QQ*%ʹରԠ͢Δ
    ൿີ伴ͱެ։伴Λ࡞Δ ެ։伴ͱೝূثূ໌ॻͱ ೝূثূ໌ॻͰ࡞ͬͨॺ໊Λฦ͢ ॺ໊Λ࢖ͬͯ
    ৴པͰ͖ΔೝূثͰ͋ΔࣄΛ֬ೝ

    ެ։伴Λอଘ ొ࿥׬ྃ AppIDΛఴ͑ͯ伴ੜ੒Λཁٻ

56. FIDO U2FͰϩάΠϯ ύεϫʔυೝূ "QQ*%ʹରԠ͢Δ
    ൿີ伴ͰDIBMMFOHFΛ҉߸Խ ҉߸Խͨ͠challengeΛฦ͢ อଘͯ͋͠Δެ։伴Ͱ
    DIBMMFOHFΛ෮߸Ͱ͖ΔࣄΛ֬ೝ ೝূ׬ྃ ύεϫʔυΛ֬ೝ

    challengeΛૹ৴ AppIDͱchallengeΛૹ৴

57. FIDO U2FͰϩάΠϯ ύεϫʔυೝূ "QQ*%ʹରԠ͢Δ
    ൿີ伴ͰDIBMMFOHFΛ҉߸Խ ҉߸Խͨ͠challengeΛฦ͢ อଘͯ͋͠Δެ։伴Ͱ
    DIBMMFOHFΛ෮߸Ͱ͖ΔࣄΛ֬ೝ ೝূ׬ྃ ύεϫʔυΛ֬ೝ

    challengeΛૹ৴ AppIDͱchallengeΛૹ৴ WebͰར༻͢Δ৔߹AppID͸ web origin͕༻͍ΒΕΔ https://example.com:8080/path/to/the/file?param=value ͜ͷ෦෼ σόΠε͸Webϒϥ΢β͕ਖ਼͍͠web originΛࢦఆ͢ΔࣄΛظ଴͍ͯ͠Δ

58. WebAuthN /dev/hidraw* USB HID WebUSB FIDO U2Fυϯάϧ͸USB HID ΧʔωϧͷυϥΠό͕σόΠεΛѲ͍ͬͯΔҝ WebUSB͕͜ͷσόΠεΛ࢖༻͢Δࣄ͸Ͱ͖ͳ͍

59. /'$Ͱಈ͘
    ҉߸σόΠε /'$Ϧʔμʔ 64#
    )*%Λ஻Δ
    ίϯτϩʔϥ NFC NFC WebAuthN /dev/hidraw* USB

    HID NFCͰ΋઀ଓͰ͖ΔΑ͏ʹ USB HIDΛ஻Δίϯτϩʔϥͱ ҉߸σόΠεΛ෼཭͢Δࣄ͕ଟ͍

60. /'$Ͱಈ͘
    ҉߸σόΠε /'$Ϧʔμʔ 64#
    )*%Λ஻Δ
    ίϯτϩʔϥ NFC WebAuthN /dev/hidraw* USB HID

    Ұ෦ͷFIDO U2Fυϯάϧ͸ NFCϦʔμʔͷͳ͍ϚγϯͰ ͜ͷσόΠεΛεϚʔτΧʔυͱͯ͠࢖͏ҝʹ CCIDΛੜ΍͍ͯͨ͠ USB CCID

61. /'$Ͱಈ͘
    ҉߸σόΠε /'$Ϧʔμʔ 64#
    )*%Λ஻Δ
    ίϯτϩʔϥ NFC WebAuthN /dev/hidraw* USB HID

    USB CCID WindowsΛআ͘ଟ͘ͷOSͰ͸USB CCID͸ ΧʔωϧͰ͸ͳ͘ϢʔβۭؒͷσʔϞϯ͕໘౗ΛݟΔ ࢖͏ͭ΋Γ͕ͳ͚Ε͹σʔϞϯ͸ىಈ͞Εͳ͍ҝ σόΠε͸୭΋Ѳ͍ͬͯͳ͍ঢ়ଶʹͳΔ

62. /'$Ͱಈ͘
    ҉߸σόΠε /'$Ϧʔμʔ 64#
    )*%Λ஻Δ
    ίϯτϩʔϥ NFC WebAuthN /dev/hidraw* USB HID

    USB CCID WebUSB ಡΊΔɺಡΊΔͧ!

63. /'$Ͱಈ͘
    ҉߸σόΠε /'$Ϧʔμʔ 64#
    )*%Λ஻Δ
    ίϯτϩʔϥ NFC HID CCID WebUSB ຊ෺ͷWebαΠτ

    ϑΟογϯά ϑΟογϯάαΠτͷ web origin web origin͕ຊ෺ͷWebαΠτͱҧ͏ҝ ຊ෺ͷWebαΠτͰ࢖͑ͳ͍݁ՌΛฦ͢ ͜ͷೝূ͸ ࣦഊ͢Δ

64. /'$Ͱಈ͘
    ҉߸σόΠε /'$Ϧʔμʔ 64#
    )*%Λ஻Δ
    ίϯτϩʔϥ NFC HID CCID WebUSB ຊ෺ͷWebαΠτ

    ϑΟογϯά ຊ෺ͷWebαΠτͷ web origin web origin͕ຊ෺ͷWebαΠτͷ෺ͳͷͰ ຊ෺ͷWebαΠτͰ࢖͑Δ݁ՌΛฦ͢ ͜ͷೝূ͕ ௨ͬͯ͠·͏ ϑΟογϯά͕੒ཱ͢Δ

65. WebUSB͸ϢʔβʹσόΠεΛ࢖ͬͯྑ͍͔֬ೝ͢Δ͕ WebαΠτͷೝূͰ ࠓ·͞ʹσόΠεΛ࢖͓͏ͱ͍ͯ͠Δ Ϣʔβ͸͜ͷμΠΞϩάΛݟͨΒ ڐՄ͢Δ

66. γεςϜͷॏཁͳUSBσόΠε͸Χʔωϧ͕Ѳ͍ͬͯΔഺͳͷͰ ͦ͏ͨ͠σόΠε͸WebUSBʹΑΔૢ࡞͔Βอޢ͞ΕΔ ͦΜͳ͜ͱͳ͔ͬͨ

67. γεςϜͷॏཁͳUSBσόΠε͸Χʔωϧ͕Ѳ͍ͬͯΔഺͳͷͰ ͦ͏ͨ͠σόΠε͸WebUSBʹΑΔૢ࡞͔Βอޢ͞ΕΔ USBσόΠεΛWebϖʔδ͕࢖༻ͯ͠ྑ͍͔ μΠΞϩάͰ֬ೝ͍ͯ͠ΔͨΊҙਤ͠ͳ͍σόΠε͸อޢ͞ΕΔ ͦͷঢ়گͰ֬ೝ͞ΕͨΒڐՄͯ͠͠·͏ ͦΜͳ͜ͱͳ͔ͬͨ

68. γεςϜͷॏཁͳUSBσόΠε͸Χʔωϧ͕Ѳ͍ͬͯΔഺͳͷͰ ͦ͏ͨ͠σόΠε͸WebUSBʹΑΔૢ࡞͔Βอޢ͞ΕΔ USBσόΠεΛWebϖʔδ͕࢖༻ͯ͠ྑ͍͔ μΠΞϩάͰ֬ೝ͍ͯ͠ΔͨΊҙਤ͠ͳ͍σόΠε͸อޢ͞ΕΔ FIDO U2Fυϯάϧ͸σόΠευϥΠό͕ӕΛͭ͘ͱ ੒ཱ͠ͳ͍͕σόΠευϥΠό͸৴པͰ͖Δ ݁Ռ 2ཁૉೝূʹΑΔϑΟογϯάରࡦ͕୆ແ͠ʹͳΔ ࠓճͷ৔߹߈ܸऀ͕͜ΕΛ༻ҙ͢Δ

    ͦͷঢ়گͰ֬ೝ͞ΕͨΒڐՄͯ͠͠·͏ ͦΜͳ͜ͱͳ͔ͬͨ

69. "Firefox͕WebUSBΛαϙʔτ͠ͳ͍ͷ͸·͞ʹ͜ͷͨΊͩ -- ͜Ε͸ຊ࣭తʹ҆શʹ͢Δࣄ͕Ͱ͖ͳ͍" https://twitter.com/adambroach/status/969342244653273089 ͜ͷ੬ऑੑ͕ൃද͞Εͨ࣌ͷ MozillaͷதͷਓAdam RoachࢯͷTwitterͰͷ൓Ԡ

70. /'$Ͱಈ͘
    ҉߸σόΠε /'$Ϧʔμʔ 64#
    )*%Λ஻Δ
    ίϯτϩʔϥ NFC HID ຊ෺ͷWebαΠτ ϑΟογϯά ͦͷυϯάϧΛ

    WebUSBͰ࢖͍͍ͨͳ ҰํWindowsͰ͸ Ͳ͏ͧ ͑ͬ ͑ͬ USB HIDΛWebUSBͰ࢖͓͏ͱ͢Δͱ σόΠεΛOS͔Βୣ͍औΔڻ͖ͷ࣮૷ʹͳ͍ͬͯͯ શͯͷυϯϧά͕ӨڹΛड͚ͨ

71. 2018೥3݄ Google ChromeͰWebUSBΛ࢖͑ͳ͘͢Δ ηΩϡϦςΟΞοϓσʔτ͕࣮ࢪ͞ΕΔ

72. 2018೥5݄ ੬ऑੑͷରࡦΛߦ͍ WebUSB͕࠶౓ར༻Մೳʹͳͬͨ Google Chrome 67͕ϦϦʔε͞Εͨ

73. // This list must be sorted according to CompareEntry. const

    UsbBlocklist::Entry kStaticEntries[] = { {0x096e, 0x0850, kMaxVersion}, // KEY-ID {0x096e, 0x0852, kMaxVersion}, // Feitian {0x096e, 0x0853, kMaxVersion}, // Feitian {0x096e, 0x0854, kMaxVersion}, // Feitian {0x096e, 0x0856, kMaxVersion}, // Feitian {0x096e, 0x0858, kMaxVersion}, // Feitian USB+NFC {0x096e, 0x085a, kMaxVersion}, // Feitian {0x096e, 0x085b, kMaxVersion}, // Feitian {0x096e, 0x0880, kMaxVersion}, // HyperFIDO {0x09c3, 0x0023, kMaxVersion}, // HID Global BlueTrust Token // Yubikey devices. https://crbug.com/818807 {0x1050, 0x0010, kMaxVersion}, {0x1050, 0x0018, kMaxVersion}, {0x1050, 0x0030, kMaxVersion}, {0x1050, 0x0110, kMaxVersion}, {0x1050, 0x0111, kMaxVersion}, {0x1050, 0x0112, kMaxVersion}, {0x1050, 0x0113, kMaxVersion}, {0x1050, 0x0114, kMaxVersion}, {0x1050, 0x0115, kMaxVersion}, {0x1050, 0x0116, kMaxVersion}, {0x1050, 0x0120, kMaxVersion}, {0x1050, 0x0200, kMaxVersion}, {0x1050, 0x0211, kMaxVersion}, {0x1050, 0x0401, kMaxVersion}, {0x1050, 0x0402, kMaxVersion}, {0x1050, 0x0403, kMaxVersion}, WebUSB͔Β࢖ͬͯ͸͍͚ͳ͍ σόΠεΛฒ΂ͨ ϒϥοΫϦετ͕Ͱ͖ͨ https://github.com/chromium/chromium/blob/master/chrome/browser/usb/usb_blocklist.cc

74. bool USBDevice::IsProtectedInterfaceClass(wtf_size_t interface_index) const { DCHECK_NE(configuration_index_, kNotFound); DCHECK_NE(interface_index, kNotFound); //

    USB Class Codes are defined by the USB-IF: // http://www.usb.org/developers/defined_class const uint8_t kProtectedClasses[] = { 0x01, // Audio 0x03, // HID 0x08, // Mass Storage 0x0B, // Smart Card 0x0E, // Video 0x10, // Audio/Video 0xE0, // Wireless Controller (Bluetooth and Wireless USB) }; DCHECK(std::is_sorted(std::begin(kProtectedClasses), std::end(kProtectedClasses))); const auto& alternates = Info() .configurations[configuration_index_] ->interfaces[interface_index] ->alternates; for (const auto& alternate : alternates) { if (std::binary_search(std::begin(kProtectedClasses), std::end(kProtectedClasses), alternate->class_code)) { return true; } } return false; WebUSB͔Β࢖ͬͯ͸͍͚ͳ͍ σόΠεΫϥεΛฒ΂ͨ ϒϥοΫϦετ͕Ͱ͖ͨ https://github.com/chromium/chromium/blob/master/third_party/blink/renderer/modules/ webusb/usb_device.cc • USB Audio • USB HID • USB Mass Storage • USB CCID • USB Video • USB Audio/Video • USB BluetoothϨγʔό Ҏ্ͷσόΠεΫϥε͸WebUSBېࢭ

75. ͦͷޙWebUSBʹؔͯ͠ ໨ཱͬͨ੬ऑੑͷใࠂ͸ͳ͍

76. WebUSBͷࠓ

77. ࠓ೔WebUSB͸ ϚΠίϯϘʔυ΁ͷ ϓϩάϥϜͷॻ͖ࠐΈΛ ϒϥ΢β্͔Βߦ͏ͷʹ ༻͍ΒΕ͍ͯΔ https://support.microbit.org/support/solutions/articles/19000084059-beta-testing-web-usb micro:bit΁WebUSBΛ࢖ͬͯॻ͖ࠐΉํ๏ʹ͍ͭͯ

78. https://developer.mozilla.org/en-US/docs/Web/API/USB Chrome WebUSBΛఏҊ͢ΔGoogleͷϒϥ΢β Opera GoogleͷBlinkΛ࠾༻ͨ͠Β WebUSBʹରԠͯ͠͠·ͬͨϒϥ΢β ͦͷଞ WebUSBʹରԠ͢Δؾ഑ͳ͠

79. ·ͱΊ ϒϥ΢βͱUSBσόΠε͕௚઀ձ࿩͢Δ͜ͱΛՄೳʹ͢ΔAPI WebUSB WebUSBͷηΩϡϦςΟʹର͢Δ؁͍ಡΈ͕ FIDO U2FΛແྗԽ͢Δͷʹ༻͍ΒΕͨ FIDO U2FυϯάϧΛϒϥοΫϦετʹొ࿥͢ΔࣄͰ ໰୊͸ҰԠղܾͨ͠

80. σόοά෩ܠ ͏·͘௨৴Ͱ͖ͳ͍࣌͸WiresharkͰUSBΛݟΑ͏