WebUSBͱ͸Կ͔ ԿΛҾ͖ى͔ͨ͜͠ ࠓͲ͏ͳ͍ͬͯΔ͔ NAOMASA MATSUBAYASHI ιʔείʔυ: https://github.com/Fadis/fadis.github.io/tree/master/webusb

2017೥9݄ WebUSBΛαϙʔτ͢ΔॳͷWebϒϥ΢β Google Chrome 61͕ϦϦʔε͞Εͨ

WebUSB API http://wicg.github.io/webusb

ϗετʹ઀ଓ͞ΕͨUSBσόΠεͱϒϥ΢β͕ OSͷσόΠευϥΠόΛհͣ͞ʹ ௚઀ձ࿩͢ΔͨΊͷJavaScriptͷAPI Χʔωϧ ϒϥ΢β 64#σόΠε libusbΛWeb͔Βୟ͚ΔΑ͏ʹͳͬͨͱࢥ͑͹ ͍͍͍ͩͨ͋ͬͯΔ WebUSB API

σόΠεΛऔಘ͢Δ return navigator.usb.requestDevice( { 'filters': [ { 'vendorId': 0x1234, 'productId': 0x5678 } ] } ).then(device_ => { device = device_; return connect(); }).catch(error => { console.log('઀ଓΤϥʔ: ' + error); }); navigator.usb.requestDevieͰ ࢦఆͨ͠ϕϯμIDͱϓϩμΫτIDΛ࣋ͭ USBσόΠε΁ͷ઀ଓΛཁٻ͢Δ

σόΠεΛऔಘ͢Δ ͜Μͳϓϩϯϓτ͕ग़ͯ͘Δ Ϣʔβ͸Webϖʔδʹ ৮Βͤͯྑ͍σόΠεΛબͿ

USBσόΠε σόΠε ΤϯυϙΠϯτ0 ΤϯυϙΠϯτ1 ίϯϑΟάϨʔγϣϯ0 ΠϯλʔϑΣʔε0 ΠϯλʔϑΣʔε1 ΠϯλʔϑΣʔε2 ΤϯυϙΠϯτ0 ΤϯυϙΠϯτ1 ΤϯυϙΠϯτ2 ΤϯυϙΠϯτ3

USBσόΠε σόΠε ΤϯυϙΠϯτ0 ΤϯυϙΠϯτ1 ίϯϑΟάϨʔγϣϯ0 ΠϯλʔϑΣʔε0 ΠϯλʔϑΣʔε1 ΠϯλʔϑΣʔε2 ΤϯυϙΠϯτ0 ΤϯυϙΠϯτ1 ΤϯυϙΠϯτ2 ΤϯυϙΠϯτ3 σʔλΛૹड৴͢Δͱ͖ʹ͸ ͲͷΤϯυϙΠϯτͰձ࿩͢Δ͔Λࢦఆ͢Δ

USBσόΠε σόΠε ΤϯυϙΠϯτ0 ΤϯυϙΠϯτ1 ίϯϑΟάϨʔγϣϯ0 ΠϯλʔϑΣʔε0 ΠϯλʔϑΣʔε1 ΠϯλʔϑΣʔε2 ΤϯυϙΠϯτ0 ΤϯυϙΠϯτ1 ΤϯυϙΠϯτ2 ΤϯυϙΠϯτ3 ΞϓϦέʔγϣϯ͸ ΠϯλʔϑΣʔε୯ҐͰΤϯυϙΠϯτΛ઎༗͢Δ

σόΠεʹσʔλΛૹΔ/໯͏ device.controlTransferOut({ 'requestType': 'class', 'recipient': 'interface', 'request': 0x22, 'value': 0x01, 'index': 0x00 }).then(result => { … } ίϯτϩʔϧసૹ device.controlTransferIn({ 'requestType': 'standard', 'recipient': 'device', 'request': 0x06, 'value': 0x0100, 'index': 0x0000 }, 0x12).then(result => { … } σόΠεͷ৘ใͷऔಘ΍ σόΠεͷॳظԽΛߦ͏

௨৴Ͱ͖Δঢ়ଶʹ͢Δ return device.open().then(() => { if(device.configuration === null) { return device.selectConfiguration(1); } }).then(() => { return device.claimInterface(1); }).then(() => { return device.claimInterface(0); }); configurationΛબͿ USBσόΠε͸ෳ਺ͷػೳΛఏڙ͍ͯ͠Δ͜ͱ͕͋Δ ͲͷػೳΛ࢖͏͔ΛબͿͷ͕configurationͷબ୒ ඞཁͳΠϯλʔϑΣʔεΛ઎༗͢Δ

σόΠεʹσʔλΛૹΔ/໯͏ device.transferIn(1, 1024).then(result => { something_on_recieved( result.data ); } σόΠε͔Βड৴ σόΠεʹૹ৴ ΤϯυϙΠϯτID ड৴͢ΔόΠτ਺ PromiseͰड৴݁ՌͱDataView͕ฦͬͯདྷΔ device.transferOut(2, data).then(result => { something_on_sent(); } ΤϯυϙΠϯτID ૹ৴͢ΔArrayBuffer PromiseͰૹ৴݁Ռ͕ฦͬͯདྷΔ

CDC ACM γϦΞϧ௨৴ Webϒϥ΢βͷதͱ֎Ͱձ࿩ͯ͠ΈΑ͏

USB GadgetυϥΠό ࢲ͸64#֎෇͚ ϋʔυσΟεΫͰ͢ ϋʔυσΟεΫ͕དྷͨ USBσόΠεͷϑϦΛ͢ΔυϥΠό

dummy_udc ϋʔυσΟεΫ͕དྷͨ Ծ૝తͳUSBϗετͱσόΠεͷ૊Λ࡞Δ ࢲ͸64#֎෇͚ ϋʔυσΟεΫͰ͢

$ modprobe libcomposite $ modprobe dummy_hcd $ cd /sys/kernel/config/usb_gadget $ mkdir g1 $ cd g1 $ mkdir functions/acm.g1 $ mkdir configs/c.1 $ ln -s functions/acm.g1 configs/c.1 $ echo 0x1234 >idVendor $ echo 0x5678 >idProduct $ echo dummy_udc.0 >UDC $ sleep 1 $ modprobe -r cdc_acm $ agetty 115200 ttyGS0 LinuxͷUSB GadgetͰ CDC ACMͷγϦΞϧ௨৴σόΠεΛ࡞Γ σόΠεଆͰgetty͢Δ ϗετଆυϥΠό͸Ξϯϩʔυ͓ͯ͘͠

CDC ACM σόΠε ίϯϑΟάϨʔγϣϯ0 CDC ACM Comm(0) CDC ACM Data(1) ੍ޚ৴߸(3) σʔλೖྗ(1) σʔλग़ྗ(2) σʔλೖग़ྗͷͨΊͷόϧΫΤϯυϙΠϯτΛ උ͑ΔΠϯλʔϑΣʔε͕1ͭ ੍ޚ৴߸ΛૹΔͨΊͷׂΓࠐΈΤϯυϙΠϯτΛ උ͑ΔΠϯλʔϑΣʔε͕1ͭ

function flush() { writing = true; let buffer_ = buffer; buffer = ''; device.transferOut(2, textEncoder.encode(buffer_)).then( result => { writing = false; if( buffer.length != 0 ) { flush(); } }).catch(error => { console.log(‘ૹ৴Τϥʔ: ' + error); writing = false; if( buffer.length != 0 ) { flush(); } }); } t.open( document.getElementById('terminal') ); t.on('key', function (key, ev) { if(device !== undefined) { if( !writing ) { buffer += key; flush(); } else { buffer += key; } } }); xterm.jsʹΩʔೖྗ͕͋ͬͨΒ ΤϯυϙΠϯτʹೖྗ಺༰Λྲྀ͢

let readLoop = () => { if( device ) { device.transferIn(1, 1024).then(result => { let textDecoder = new TextDecoder(); t.write(textDecoder.decode(result.data)); readLoop(); }, error => { console.log( error ); readLoop(); }); } }; ΤϯυϙΠϯτ1Ͱ͸ σόΠε͔ΒͷσʔλΛ଴ͪड͚ Կ͔ड͚औͬͨΒxterm.jsʹྲྀ͢

USBΛ௨ͬͯ֎ͷੈքʹඈͼग़͢Α! http://fadis.github.io/webusb/minimal/

USBϚεετϨʔδ USB֎෇͚ϋʔυσΟεΫ΍ USBϑϥογϡϝϞϦͱձ࿩ͯ͠ΈΑ͏

͜ͷUSBϑϥογϡϝϞϦΛ ϒϥ΢β͔ΒಡΉ $ modprobe -r uas $ modprobe -r mass_storage ·ͣΧʔωϧ͕अຐΛ͠ͳ͍Α͏ʹ͓ͯ͘͠

Command Block Wrapper SCSIίϚϯυ Command State Wrapper ίϚϯυͷ࣮ߦ݁Ռ ίϚϯυʹ෇ਵ͢Δ σʔλΛૹड৴ Bulk Only Transport ࡉ͔͍ετϨʔδͷૢ࡞ํ๏͸SCSIͦͷ··

σόΠε ίϯϑΟάϨʔγϣϯ0 MSC(0) σʔλೖྗ(1) σʔλग़ྗ(2) σʔλೖग़ྗͷͨΊͷόϧΫΤϯυϙΠϯτΛ උ͑ΔΠϯλʔϑΣʔε͕1͚ͭͩ Bulk Only Transport

Command Block Wrapper let cbw = ( tag, len, dir, command ) => { let data = new Uint8Array( 15 + 16 ); data.set([ 0x55, 0x53, 0x42, 0x43, // USBC tag & 0xFF, ( tag >> 8 ) & 0xFF, ( tag >> 16 ) & 0xFF, ( tag >> 24 ) & 0xFF, // tag len & 0xFF, ( len >> 8 ) & 0xFF, ( len >> 16 ) & 0xFF, ( len >> 24 ) & 0xFF, // len dir << 7, // flags 0, // LUN command.byteLength // command length ], 0); data.set( command, 15 ); return device.transferOut( 2, data ); } 4$4*ίϚϯυʹ$#8ͷ ϔομΛ͚ͭͯ σόΠεʹ౤͛Δ

Command State Wrapper let csw = () => { return device.transferIn( 1, 13 ).then( result => { let state = result.data.getUint8( 12 ); return state == 0; } ); } ίϚϯυͷ࣮ߦ݁ՌΛσόΠε͔Βड͚औΔ

ετϨʔδΛಡΉͷʹඞཁͳSCSIίϚϯυ INQUIRY TEST UNIT READY State? READ CAPACITY(10) READ(10) OK * -6/ʹσόΠε͕ ͋Δ͜ͱΛ֬ೝ σόΠε͕ ར༻ՄೳʹͳΔͷΛ଴ͭ σόΠεͷ༰ྔͱ ηΫλαΠζΛऔಘ σόΠε͔Β σʔλΛಡΈग़͢

let inquiry = () => { let command = new Uint8Array([ // command LUN reserved reserved size reserved 0x12, 0, 0, 0, 36, 0 ]); return cbw( 1, 36, 1, command ).then( result => { return device.transferIn( 1, 36 ); }).then( result => { return result.data; }).then( data => { return csw().then( stat => { return { 'status': stat, 'data': data } }); }); } ඞཁͳSCSIίϚϯυΛ࣮૷͍ͯ͘͠

let test_unit_ready = () => { let command = new Uint8Array([ // command LUN 0x00, 0 ]); return cbw( 1, 0, 1, command ).then( result => { return csw(); }).then( stat => { if( stat ) { console.log( 'σόΠε͕ར༻ՄೳʹͳΓ·ͨ͠' ); return true; } else { console.log( 'σόΠε͕ར༻ՄೳʹͳΔͷΛ଴͍ͬͯ·͢' ); return async_sleep( 1000 ).then( test_unit_ready ); } }); } ඞཁͳSCSIίϚϯυΛ࣮૷͍ͯ͘͠

let read_capacity = () => { let command = new Uint8Array([ 0x25, 0 // command LUN ]); return cbw( 1, 8, 1, command ).then( result => { return device.transferIn( 1, 8 ) }).then( result => { let last_lba = result.data.getUint32( 0 ); let block_len = result.data.getUint32( 4 ); return { 'last_logical_block_address': last_lba, 'block_length': block_len }; }).then( data => { return csw().then( stat => { return { 'status': stat, 'data': data } }); }); }; ඞཁͳSCSIίϚϯυΛ࣮૷͍ͯ͘͠

let read = ( offset, count ) => { let command = new Uint8Array([ 0x28, 0, // command LUN ( offset >> 24 ) & 0xFF, ( offset >> 16 ) & 0xFF, ( offset >> 8 ) & 0xFF, offset & 0xFF, // LBA 0, // reserved ( count >> 8 ) & 0xFF, count & 0xFF, // length 0 // reserved ]); let size = sector_size * count; return cbw( 1, size, 1, command ).then( result => { return device.transferIn( 1, sector_size * count ) }).then( result => { return result.data; }).then( data => { return csw().then( stat => { return { 'status': stat, 'data': data } }); }); }; ඞཁͳSCSIίϚϯυΛ࣮૷͍ͯ͘͠

ϚελʔϒʔτϨίʔυ -#"͔Β ϒϩοΫΛऔಘ ύʔςΟγϣϯ ςʔϒϧͷ ͭΊͷΤϯτϦ ϒʔτγάχνϟ 55 aa

BIOSύϥϝʔλϒϩοΫ FAT32ͷϔομ 46 41 54 33 32 20 20 20 F A T 3 2 _ _ _

FAT32 let load_fat32 = partition => { return read( partition.at, 1 ).then( result => { let cluster_size = result.data.getUint8( 13 ); let reserved_sector_size = result.data.getUint16( 14, true ); let num_fats = result.data.getUint8( 16 ); let rde_size = result.data.getUint16( 17, true ); let fat_size = result.data.getUint32( 36, true ); let rde = result.data.getUint32( 44, true ); let fat_lba = partition.at + reserved_sector_size; return read( fat_lba, fat_size ).then( result => { let len = result.data.byteLength / 4; let fat = new Uint32Array( len ); for( let i = 0; i != len; i++ ) { fat[ i ] = result.data.getUint32( i * 4, true ); } let clusters_lba = fat_lba + num_fats * fat_size; let fsinfo = { 'cluster_size': cluster_size, 'fat': fat, 'clusters_lba': clusters_lba, 'rootdir_entry': rde BIOSύϥϝʔλϒϩοΫ͔Β ϑΝΠϧγεςϜΛಡΉͷʹඞཁͳ஋Λऔಘ ΫϥελαΠζ FATͷ਺ͱαΠζͱ։࢝ηΫλ ϧʔτσΟϨΫτϦ͕ॻ͔Ε͍ͯΔҐஔ

FAT32 let reserved_sector_size = result.data.getUint16( 14, true ); let num_fats = result.data.getUint8( 16 ); let rde_size = result.data.getUint16( 17, true ); let fat_size = result.data.getUint32( 36, true ); let rde = result.data.getUint32( 44, true ); let fat_lba = partition.at + reserved_sector_size; return read( fat_lba, fat_size ).then( result => { let len = result.data.byteLength / 4; let fat = new Uint32Array( len ); for( let i = 0; i != len; i++ ) { fat[ i ] = result.data.getUint32( i * 4, true ); } let clusters_lba = fat_lba + num_fats * fat_size; let fsinfo = { 'cluster_size': cluster_size, 'fat': fat, 'clusters_lba': clusters_lba, 'rootdir_entry': rde }; return load_fat32file( fsinfo, fsinfo.rootdir_entry, 0 ).then( raw_root_dir => { let root_dir = parse_fat32directory( raw_root_dir ); fsinfo[ 'rootdir' ] = root_dir; FATʹ͸ ࠓಡΜͰ͍ΔΫϥελͷ࣍ʹಡΉ΂͖Ϋϥελ͕ Ͳ͔͕͜ه࿥͞Ε͍ͯΔ FATΛಡΉ

FAT32 let fat = new Uint32Array( len ); for( let i = 0; i != len; i++ ) { fat[ i ] = result.data.getUint32( i * 4, true ); } let clusters_lba = fat_lba + num_fats * fat_size; let fsinfo = { 'cluster_size': cluster_size, 'fat': fat, 'clusters_lba': clusters_lba, 'rootdir_entry': rde }; return load_fat32file( fsinfo, fsinfo.rootdir_entry, 0 ).then( raw_root_dir => { let root_dir = parse_fat32directory( raw_root_dir ); fsinfo[ 'rootdir' ] = root_dir; return fsinfo; }); }); }); }; ϧʔτσΟϨΫτϦΛಡΉ

let get_fat32clusters_reversed = ( fsinfo, head ) => { let next = fsinfo.fat[ head ] & 0x0FFFFFFF; if( next >= 0x00000002 && next <= 0x0ffffff6 ) { let tail = get_fat32clusters_reversed( fsinfo, next ); tail.push( head ); return tail; } else return [ head ]; }; ΫϥελνΣΠϯ FAT͔ΒಡΉඞཁ͕͋ΔΫϥελΛௐ΂ͯ

let get_fat32clusters = ( fsinfo, head ) => { let clusters = get_fat32clusters_reversed( fsinfo, head ); clusters.reverse(); let chunks = [ { 'at': clusters[ 0 ], 'length': 1 } ]; for( let i = 1; i != clusters.length; i++ ) { if( clusters[ i - 1 ] + 1 == clusters[ i ] ) { chunks[ chunks.length - 1 ].length++; } else { chunks.push( { 'at': clusters[ i ], 'length': 1 } ); } } return chunks; } ΫϥελνΣΠϯ ࿈ଓͨ͠Ϋϥελ͸·ͱΊͯ

let load_fat32cluster = ( fsinfo, chunks, index, data ) => { let lba = fsinfo.clusters_lba + ( chunks[ index ].at - 2 ) * fsinfo.cluster_size; return read( lba, chunks[ index ].length * fsinfo.cluster_size ).then( result => { data.push( result.data ); if( index + 1 < chunks.length ) { return load_fat32cluster( fsinfo, chunks, index + 1, data ); } else return data; }); } ΫϥελνΣΠϯ READ(10)

let parse_fat32directory = ( data ) => { let files = []; let lfn = []; for( let offset = 0; offset != data.byteLength; offset += 32 ) { let entry = data.subarray( offset, offset + 32 ); let attribute = entry[ 11 ]; let sfn_head = entry[ 0 ]; if( sfn_head == 0x00 ) { break; } else if( sfn_head == 0xE5 ) { continue; } else if( attribute == 0x0F ) { let fragment = new Uint8Array( 26 ); fragment.set( entry.subarray( 1, 11 ), 0 ); fragment.set( entry.subarray( 14, 26 ), 10 ); fragment.set( entry.subarray( 28, 32 ), 22 ); lfn.push( fragment ); σΟϨΫτϦΤϯτϦ ͦΜͳʹෳࡶ͡Όͳ͍ͷͰؾ߹͍Ͱύʔε͢Δ

ϒϥ΢βͰUSBϑϥογϡϝϞϦΛಡΉΑ! http://fadis.github.io/webusb/storage/ ஫ҙ: ޙड़͢Δ࣮૷ͷมߋʹΑΓ ݱࡏͷGoogle ChromeͰ͸ಈ͔ͳ͘ͳ͍ͬͯ·͢

USBϑϥογϡϝϞϦ͔ΒಡΜͩը૾Λ Webϖʔδʹදࣔ͢ΔΑ! http://fadis.github.io/webusb/storage/ ஫ҙ: ޙड़͢Δ࣮૷ͷมߋʹΑΓ ݱࡏͷGoogle ChromeͰ͸ಈ͔ͳ͘ͳ͍ͬͯ·͢

WebUSBͷηΩϡϦςΟ WebUSB͸USBσόΠεʹର͢Δ ͋ΒΏΔૢ࡞Λߦ͏ݖݶΛ ϦϞʔτ͔ΒඈΜͰདྷͨJavaScriptʹ༩͑Δ σόΠεʹΑͬͯ͸JavaScript͸ σόΠεΛ৐ͬऔΔࣄ΋ഁյ͢Δࣄ΋Ͱ͖Δ ࠷௿Ͱ΋JavaScriptͷग़ॴ͕ อূ͞Ε͍ͯͳ͍ͱාͯ͘ར༻Ͱ͖ͳ͍

WebUSBͷηΩϡϦςΟ WebUSB͸SecureContextͰͷΈ࢖༻Ͱ͖Δ https://www.w3.org/TR/secure-contexts/ TLS ҉߸Խ͞Ε͍ͯͯ εΫϦϓτΛڬΊͳ͍ ฏจͰҾͬுΒΕͨ εΫϦϓτΛվ᜵ͯ͠΋ ͦ͜Ͱ͸WebUSB͸ಈ͔ͳ͍ ࠷ॳʹTLSͰऔಘͨ͠Webϖʔδ͔Β TLSΛհͯ͠ḷΓண͚ΔεΫϦϓτ͚͕ͩ USBσόΠεΛૢ࡞Ͱ͖Δ ͱ͜ΖͰͦͷWebϖʔδࣗମ͸৴པͰ͖Δ?

WebUSBͷηΩϡϦςΟ https://example.org/ ͳΜ͚ͩͲ USBσόΠεΛ࢖ΘͤͯΑ https://example.com/ Ͱ࢖ΘΕΔҝʹ࡞ΒΕͨ WebUSBରԠσόΠεͰ͢ μϝ ౰ॳWebUSB͸σόΠεʹ৘ใΛຒΊΔࣄͰ ҙਤ͠ͳ͍Webϖʔδʹ σόΠεΛ࢖ΘΕͳ͍Α͏ʹ͠Α͏ͱͨ͠

WebUSB Platform Capability Descriptor WebUSBରԠσόΠεͰ͋Δ͜ͱΛࣔ͢σεΫϦϓλ https://wicg.github.io/webusb/

Get URL σόΠεͷURLΛऔಘ͢Δҝͷ৽͍͠ϦΫΤετ ͜ͷURLͱಉ͡υϝΠϯͷWebϖʔδ͔Βͷ WebUSBϦΫΤετ͔͠ड͚෇͚ͳ͍ https://wicg.github.io/webusb/

WebαΠτAͰ ೝূ͢ΔͨΊͷ ΧʔυϦʔμʔ WebαΠτB༻Ͱ ೝূ͢ΔͨΊͷ ΧʔυϦʔμʔ WebαΠτC༻Ͱ ೝূ͢ΔͨΊͷ ΧʔυϦʔμʔ ͜Ε͸ศརͰ͸ͳ͍

౰ॳσόΠεʹURLຒΊࠐ΋͏ͱࢥ͚ͬͨͲ σόΠεͷϕϯμʔʹରԠͯ͠΋Β͏ͷ೉͍͠͠ αʔυύʔςΟ͕σόΠε࢖͑ͳ͘ͳΔ͔Β΍Ίͨ ϢʔβʹϓϩϯϓτͰ֬ೝͱͬͯΔ͠ ͦΕ͚ͩͰे෼ͳΜ͡Όͳ͍͔ͳ https://wicg.github.io/webusb/

WebUSBͷηΩϡϦςΟ ͜͏ͯ͠σόΠε઀ଓϓϩϯϓτҎ֎ʹ ѱҙ͋ΔυϥΠόͷ࣮ߦΛ๷͙ज़͕ͳ͍ WebUSB͕҆ఆ൛ͷChromeʹ࣮૷͞Εͨ https://developers.google.com/web/updates/2017/09/nic61

WebUSBͷηΩϡϦςΟ ͜ͷϓϩϯϓτͷҙຯ͸ Ӿཡதͷ8FCϖʔδ͕ಘମͷ஌Εͳ͍υϥΠόͰ 64#σόΠεΛ޷͖উख͢Δࣄʹಉҙ͠·͔͢

ChromeͷWebUSBͷ࣮૷͸ Χʔωϧ͔ΒσόΠεΛσλον͠ͳ͍ WebUSB͸Χʔωϧ͕Ѳ͍ͬͯΔσόΠεΛ ࢖༻͢Δࣄ͸Ͱ͖ͳ͍ ͦΕ΄͍͠ ΍ΒΜ γεςϜͷॏཁͳUSBσόΠε͸Χʔωϧ͕Ѳ͍ͬͯΔഺͳͷͰ ͦ͏ͨ͠σόΠε͸WebUSBʹΑΔૢ࡞͔Βอޢ͞ΕΔ

ChromeͷWebUSBͷ࣮૷͸ Χʔωϧ͔ΒσόΠεΛσλον͠ͳ͍ ͦΕ΄͍͠ ΍ΒΜ γεςϜͷॏཁͳUSBσόΠε͸Χʔωϧ͕Ѳ͍ͬͯΔഺͳͷͰ ͦ͏ͨ͠σόΠε͸WebUSBʹΑΔૢ࡞͔Βอޢ͞ΕΔ ຊ౰ʹ? WebUSB͸Χʔωϧ͕Ѳ͍ͬͯΔσόΠεΛ ࢖༻͢Δࣄ͸Ͱ͖ͳ͍

2018೥3݄ WebUSBΛ࢖ͬͯ Ұ෦ͷFIDO U2FυϯάϧΛ ୆ແ͠ʹग़དྷΔࣄ͕ࣔ͞Εͨ https://www.offensivecon.org/speakers/ 2018/markus-and-michele.html

FIDO U2FͰϢʔβొ࿥ Ϣʔβొ࿥ 伴ੜ੒Λཁٻ "QQ*%ʹରԠ͢Δ ൿີ伴ͱެ։伴Λ࡞Δ ެ։伴ͱೝূثূ໌ॻͱ ೝূثূ໌ॻͰ࡞ͬͨॺ໊Λฦ͢ ॺ໊Λ࢖ͬͯ ৴པͰ͖ΔೝূثͰ͋ΔࣄΛ֬ೝ ެ։伴Λอଘ ొ࿥׬ྃ AppIDΛఴ͑ͯ伴ੜ੒Λཁٻ

FIDO U2FͰϩάΠϯ ύεϫʔυೝূ "QQ*%ʹରԠ͢Δ ൿີ伴ͰDIBMMFOHFΛ҉߸Խ ҉߸Խͨ͠challengeΛฦ͢ อଘͯ͋͠Δެ։伴Ͱ DIBMMFOHFΛ෮߸Ͱ͖ΔࣄΛ֬ೝ ೝূ׬ྃ ύεϫʔυΛ֬ೝ challengeΛૹ৴ AppIDͱchallengeΛૹ৴

FIDO U2FͰϩάΠϯ ύεϫʔυೝূ "QQ*%ʹରԠ͢Δ ൿີ伴ͰDIBMMFOHFΛ҉߸Խ ҉߸Խͨ͠challengeΛฦ͢ อଘͯ͋͠Δެ։伴Ͱ DIBMMFOHFΛ෮߸Ͱ͖ΔࣄΛ֬ೝ ೝূ׬ྃ ύεϫʔυΛ֬ೝ challengeΛૹ৴ AppIDͱchallengeΛૹ৴ WebͰར༻͢Δ৔߹AppID͸ web origin͕༻͍ΒΕΔ https://example.com:8080/path/to/the/file?param=value ͜ͷ෦෼ σόΠε͸Webϒϥ΢β͕ਖ਼͍͠web originΛࢦఆ͢ΔࣄΛظ଴͍ͯ͠Δ

WebAuthN /dev/hidraw* USB HID WebUSB FIDO U2Fυϯάϧ͸USB HID ΧʔωϧͷυϥΠό͕σόΠεΛѲ͍ͬͯΔҝ WebUSB͕͜ͷσόΠεΛ࢖༻͢Δࣄ͸Ͱ͖ͳ͍

/'$Ͱಈ͘ ҉߸σόΠε /'$Ϧʔμʔ 64#)*%Λ஻Δ ίϯτϩʔϥ NFC NFC WebAuthN /dev/hidraw* USB HID NFCͰ΋઀ଓͰ͖ΔΑ͏ʹ USB HIDΛ஻Δίϯτϩʔϥͱ ҉߸σόΠεΛ෼཭͢Δࣄ͕ଟ͍

/'$Ͱಈ͘ ҉߸σόΠε /'$Ϧʔμʔ 64#)*%Λ஻Δ ίϯτϩʔϥ NFC WebAuthN /dev/hidraw* USB HID Ұ෦ͷFIDO U2Fυϯάϧ͸ NFCϦʔμʔͷͳ͍ϚγϯͰ ͜ͷσόΠεΛεϚʔτΧʔυͱͯ͠࢖͏ҝʹ CCIDΛੜ΍͍ͯͨ͠ USB CCID

/'$Ͱಈ͘ ҉߸σόΠε /'$Ϧʔμʔ 64#)*%Λ஻Δ ίϯτϩʔϥ NFC WebAuthN /dev/hidraw* USB HID USB CCID WindowsΛআ͘ଟ͘ͷOSͰ͸USB CCID͸ ΧʔωϧͰ͸ͳ͘ϢʔβۭؒͷσʔϞϯ͕໘౗ΛݟΔ ࢖͏ͭ΋Γ͕ͳ͚Ε͹σʔϞϯ͸ىಈ͞Εͳ͍ҝ σόΠε͸୭΋Ѳ͍ͬͯͳ͍ঢ়ଶʹͳΔ

/'$Ͱಈ͘ ҉߸σόΠε /'$Ϧʔμʔ 64#)*%Λ஻Δ ίϯτϩʔϥ NFC WebAuthN /dev/hidraw* USB HID USB CCID WebUSB ಡΊΔɺಡΊΔͧ!

/'$Ͱಈ͘ ҉߸σόΠε /'$Ϧʔμʔ 64#)*%Λ஻Δ ίϯτϩʔϥ NFC HID CCID WebUSB ຊ෺ͷWebαΠτ ϑΟογϯά ϑΟογϯάαΠτͷ web origin web origin͕ຊ෺ͷWebαΠτͱҧ͏ҝ ຊ෺ͷWebαΠτͰ࢖͑ͳ͍݁ՌΛฦ͢ ͜ͷೝূ͸ ࣦഊ͢Δ

/'$Ͱಈ͘ ҉߸σόΠε /'$Ϧʔμʔ 64#)*%Λ஻Δ ίϯτϩʔϥ NFC HID CCID WebUSB ຊ෺ͷWebαΠτ ϑΟογϯά ຊ෺ͷWebαΠτͷ web origin web origin͕ຊ෺ͷWebαΠτͷ෺ͳͷͰ ຊ෺ͷWebαΠτͰ࢖͑Δ݁ՌΛฦ͢ ͜ͷೝূ͕ ௨ͬͯ͠·͏ ϑΟογϯά͕੒ཱ͢Δ

WebUSB͸ϢʔβʹσόΠεΛ࢖ͬͯྑ͍͔֬ೝ͢Δ͕ WebαΠτͷೝূͰ ࠓ·͞ʹσόΠεΛ࢖͓͏ͱ͍ͯ͠Δ Ϣʔβ͸͜ͷμΠΞϩάΛݟͨΒ ڐՄ͢Δ

γεςϜͷॏཁͳUSBσόΠε͸Χʔωϧ͕Ѳ͍ͬͯΔഺͳͷͰ ͦ͏ͨ͠σόΠε͸WebUSBʹΑΔૢ࡞͔Βอޢ͞ΕΔ ͦΜͳ͜ͱͳ͔ͬͨ

γεςϜͷॏཁͳUSBσόΠε͸Χʔωϧ͕Ѳ͍ͬͯΔഺͳͷͰ ͦ͏ͨ͠σόΠε͸WebUSBʹΑΔૢ࡞͔Βอޢ͞ΕΔ USBσόΠεΛWebϖʔδ͕࢖༻ͯ͠ྑ͍͔ μΠΞϩάͰ֬ೝ͍ͯ͠ΔͨΊҙਤ͠ͳ͍σόΠε͸อޢ͞ΕΔ ͦͷঢ়گͰ֬ೝ͞ΕͨΒڐՄͯ͠͠·͏ ͦΜͳ͜ͱͳ͔ͬͨ

γεςϜͷॏཁͳUSBσόΠε͸Χʔωϧ͕Ѳ͍ͬͯΔഺͳͷͰ ͦ͏ͨ͠σόΠε͸WebUSBʹΑΔૢ࡞͔Βอޢ͞ΕΔ USBσόΠεΛWebϖʔδ͕࢖༻ͯ͠ྑ͍͔ μΠΞϩάͰ֬ೝ͍ͯ͠ΔͨΊҙਤ͠ͳ͍σόΠε͸อޢ͞ΕΔ FIDO U2Fυϯάϧ͸σόΠευϥΠό͕ӕΛͭ͘ͱ ੒ཱ͠ͳ͍͕σόΠευϥΠό͸৴པͰ͖Δ ݁Ռ 2ཁૉೝূʹΑΔϑΟογϯάରࡦ͕୆ແ͠ʹͳΔ ࠓճͷ৔߹߈ܸऀ͕͜ΕΛ༻ҙ͢Δ ͦͷঢ়گͰ֬ೝ͞ΕͨΒڐՄͯ͠͠·͏ ͦΜͳ͜ͱͳ͔ͬͨ

"Firefox͕WebUSBΛαϙʔτ͠ͳ͍ͷ͸·͞ʹ͜ͷͨΊͩ -- ͜Ε͸ຊ࣭తʹ҆શʹ͢Δࣄ͕Ͱ͖ͳ͍" https://twitter.com/adambroach/status/969342244653273089 ͜ͷ੬ऑੑ͕ൃද͞Εͨ࣌ͷ MozillaͷதͷਓAdam RoachࢯͷTwitterͰͷ൓Ԡ

/'$Ͱಈ͘ ҉߸σόΠε /'$Ϧʔμʔ 64#)*%Λ஻Δ ίϯτϩʔϥ NFC HID ຊ෺ͷWebαΠτ ϑΟογϯά ͦͷυϯάϧΛ WebUSBͰ࢖͍͍ͨͳ ҰํWindowsͰ͸ Ͳ͏ͧ ͑ͬ ͑ͬ USB HIDΛWebUSBͰ࢖͓͏ͱ͢Δͱ σόΠεΛOS͔Βୣ͍औΔڻ͖ͷ࣮૷ʹͳ͍ͬͯͯ શͯͷυϯϧά͕ӨڹΛड͚ͨ

2018೥3݄ Google ChromeͰWebUSBΛ࢖͑ͳ͘͢Δ ηΩϡϦςΟΞοϓσʔτ͕࣮ࢪ͞ΕΔ

2018೥5݄ ੬ऑੑͷରࡦΛߦ͍ WebUSB͕࠶౓ར༻Մೳʹͳͬͨ Google Chrome 67͕ϦϦʔε͞Εͨ

// This list must be sorted according to CompareEntry. const UsbBlocklist::Entry kStaticEntries[] = { {0x096e, 0x0850, kMaxVersion}, // KEY-ID {0x096e, 0x0852, kMaxVersion}, // Feitian {0x096e, 0x0853, kMaxVersion}, // Feitian {0x096e, 0x0854, kMaxVersion}, // Feitian {0x096e, 0x0856, kMaxVersion}, // Feitian {0x096e, 0x0858, kMaxVersion}, // Feitian USB+NFC {0x096e, 0x085a, kMaxVersion}, // Feitian {0x096e, 0x085b, kMaxVersion}, // Feitian {0x096e, 0x0880, kMaxVersion}, // HyperFIDO {0x09c3, 0x0023, kMaxVersion}, // HID Global BlueTrust Token // Yubikey devices. https://crbug.com/818807 {0x1050, 0x0010, kMaxVersion}, {0x1050, 0x0018, kMaxVersion}, {0x1050, 0x0030, kMaxVersion}, {0x1050, 0x0110, kMaxVersion}, {0x1050, 0x0111, kMaxVersion}, {0x1050, 0x0112, kMaxVersion}, {0x1050, 0x0113, kMaxVersion}, {0x1050, 0x0114, kMaxVersion}, {0x1050, 0x0115, kMaxVersion}, {0x1050, 0x0116, kMaxVersion}, {0x1050, 0x0120, kMaxVersion}, {0x1050, 0x0200, kMaxVersion}, {0x1050, 0x0211, kMaxVersion}, {0x1050, 0x0401, kMaxVersion}, {0x1050, 0x0402, kMaxVersion}, {0x1050, 0x0403, kMaxVersion}, WebUSB͔Β࢖ͬͯ͸͍͚ͳ͍ σόΠεΛฒ΂ͨ ϒϥοΫϦετ͕Ͱ͖ͨ https://github.com/chromium/chromium/blob/master/chrome/browser/usb/usb_blocklist.cc

bool USBDevice::IsProtectedInterfaceClass(wtf_size_t interface_index) const { DCHECK_NE(configuration_index_, kNotFound); DCHECK_NE(interface_index, kNotFound); // USB Class Codes are defined by the USB-IF: // http://www.usb.org/developers/defined_class const uint8_t kProtectedClasses[] = { 0x01, // Audio 0x03, // HID 0x08, // Mass Storage 0x0B, // Smart Card 0x0E, // Video 0x10, // Audio/Video 0xE0, // Wireless Controller (Bluetooth and Wireless USB) }; DCHECK(std::is_sorted(std::begin(kProtectedClasses), std::end(kProtectedClasses))); const auto& alternates = Info() .configurations[configuration_index_] ->interfaces[interface_index] ->alternates; for (const auto& alternate : alternates) { if (std::binary_search(std::begin(kProtectedClasses), std::end(kProtectedClasses), alternate->class_code)) { return true; } } return false; WebUSB͔Β࢖ͬͯ͸͍͚ͳ͍ σόΠεΫϥεΛฒ΂ͨ ϒϥοΫϦετ͕Ͱ͖ͨ https://github.com/chromium/chromium/blob/master/third_party/blink/renderer/modules/ webusb/usb_device.cc • USB Audio • USB HID • USB Mass Storage • USB CCID • USB Video • USB Audio/Video • USB BluetoothϨγʔό Ҏ্ͷσόΠεΫϥε͸WebUSBېࢭ

ͦͷޙWebUSBʹؔͯ͠ ໨ཱͬͨ੬ऑੑͷใࠂ͸ͳ͍

WebUSBͷࠓ

ࠓ೔WebUSB͸ ϚΠίϯϘʔυ΁ͷ ϓϩάϥϜͷॻ͖ࠐΈΛ ϒϥ΢β্͔Βߦ͏ͷʹ ༻͍ΒΕ͍ͯΔ https://support.microbit.org/support/solutions/articles/19000084059-beta-testing-web-usb micro:bit΁WebUSBΛ࢖ͬͯॻ͖ࠐΉํ๏ʹ͍ͭͯ

https://developer.mozilla.org/en-US/docs/Web/API/USB Chrome WebUSBΛఏҊ͢ΔGoogleͷϒϥ΢β Opera GoogleͷBlinkΛ࠾༻ͨ͠Β WebUSBʹରԠͯ͠͠·ͬͨϒϥ΢β ͦͷଞ WebUSBʹରԠ͢Δؾ഑ͳ͠

·ͱΊ ϒϥ΢βͱUSBσόΠε͕௚઀ձ࿩͢Δ͜ͱΛՄೳʹ͢ΔAPI WebUSB WebUSBͷηΩϡϦςΟʹର͢Δ؁͍ಡΈ͕ FIDO U2FΛແྗԽ͢Δͷʹ༻͍ΒΕͨ FIDO U2FυϯάϧΛϒϥοΫϦετʹొ࿥͢ΔࣄͰ ໰୊͸ҰԠղܾͨ͠

σόοά෩ܠ ͏·͘௨৴Ͱ͖ͳ͍࣌͸WiresharkͰUSBΛݟΑ͏