understand usb in linux
play

Understand USB (in Linux) Krzysztof Opasiak Samsung R&D - PowerPoint PPT Presentation

Nov 11, 2022 •216 likes •683 views

Understand USB (in Linux) Krzysztof Opasiak Samsung R&D Institute Poland Agenda What USB is about? Plug and Play How BadUSB works? May I have my own USB device? Q & A 1 What USB is about? What USB is about? It is about providing

  1. Understand USB (in Linux) Krzysztof Opasiak Samsung R&D Institute Poland

  2. Agenda What USB is about? Plug and Play How BadUSB works? May I have my own USB device? Q & A 1

  3. What USB is about?

  4. What USB is about? It is about providing services! • Storage • Printing • Ethernet • Camera • Any other 3

  5. How we connect them? 4

  6. Logical vs physical topology Physical Logical 5

  7. What is USB device? • Piece of hardware for USB communication • USB protocol implementation • Some useful protocol implementation • Piece of hardware/software for providing desired functionality 6

  8. Endpoints… • Device may have up to 31 endpoints (including ep0) • Each of them gets a unique Endpoint address • Endpoint 0 may transfer data in both directions • All other endpoints may transfer data in one direction: IN Transfer data from device to host OUT Transfer data from host to device 7

  9. Endpoint types • Control • Bi-directional endpoint • Used for enumeration • Can be used for application • Interrupt • Transfers a small amount of low-latency data • Reserves bandwidth on the bus • Used for time-sensitive data (HID) 8

  10. Endpoint types • Bulk • Used for large data transfers • Used for large, time-insensitive data (Network packets, Mass Storage, etc). • Does not reserve bandwidth on bus, uses whatever time is left over • Isochronous • Transfers a large amount of time-sensitive data • Delivery is not guaranteed (no ACKs are sent) • Used for Audio and Video streams • Late data is as good as no data • Better to drop a frame than to delay and force a re-transmission 9

  11. USB device 10

  12. USB bus - low level • USB is a Host-controlled bus • Nothing on the bus happens without the host first initiating it. • Devices cannot initiate any communication. • The USB is a Polled Bus. • The Host polls each device, requesting data or sending data. 11

  13. Plug and Play

  14. Step by step • Plug in device • Detect Connection • Set address • Get device info • Choose configuration • Choose drivers for interfaces • Use it ;) 13

  15. Set address • On plug-in device use default address 0x00 • Only one device is enumerated at once • Hosts assigns unique address for new device 14

  16. Get device info • Each USB world entity is described by data structure called descriptor • Descriptors have different types, sizes and content • But they all have a common header Size Field Value Description bLength 1 Number Size of the Descriptor in Bytes bDescriptorType 1 Constant Device Descriptor (0x01) <data> bLength - 2 NA Payload 15

  17. USB descriptors 16

  18. USB classes 00h Device Use class information in the Interface Descriptors 01h Interface Audio 02h Both Communications and CDC Control 03h Interface HID (Human Interface Device) 05h Interface Physical 06h Interface Image 07h Interface Printer 08h Interface Mass Storage 09h Device Hub 0Ah Interface CDC-Data 0Bh Interface Smart Card 0Dh Interface Content Security 0Eh Interface Video 0Fh Interface Personal Healthcare 10h Interface Audio/Video Devices 11h Device Billboard Device Class DCh Both Diagnostic Device E0h Interface Wireless Controller EFh Both Miscellaneous FEh Interface Application Specific FFh Both Vendor Specific 17

  19. Device Info Summary • Host gets info about new devices from suitable USB descriptors • Most important data at this moment: • idVendor • idProduct • bcdDevice • bDeviceClass • bDeviceSubClass • bDeviceProtocol • bMaxPower • bInterfaceClass • bInterfaceSubClass • bInterfaceProtocol 18

  20. Set Configuration • Which configuration is the most suitable? • We have enough power for it ( bMaxPower ?) • It has at least one interface • If device has only one config just use it • Choose the one which first interface is not Vendor specific • All interfaces of choosen configuration becomes enabled so let's use them 19

  21. What USB driver really is? • Piece of kernel code • Usually provides something to userspace (network interface, tty, etc.) • Implementation of some communication protocol 20

  22. How to choose a suitable driver? • struct usb_driver • When device needs special handling: • Using VID and PID and interface id • Driver probe()s for each interface in device that match VID and PID • When driver implements some well defined, standardized protocol • Using bInterfaceClass, bInterfaceSubClass etc. • Driver probe() for each interface which has suitable identity • No matter what is the VID and PID • Driver will not match if interface hasn't suitable class 21

  23. Big picture 22

  24. What's next? • We have the driver which provides something to userspace but what's next? • It depends on interface type: • Network devices - Network manager should handle new interface setup • Pendrives, disks etc - automount service should mount new block device • Mouse, keyboard - X11 will start listening for input events • And many many other things are going to be handled AUTOMATICALLY • without any user action… 23

  25. How BadUSB works?

  26. USB security summary • Between plug in and start using there is no user interaction • Drivers are probed automatically • Userspace starts using new device automatically • Device introduce itself as it wants • There is no relation between physical outfit and descriptors 25

  27. My beautiful tablet 26

  28. BadUSB attack scenario • User connect hacked device • Device looks like pendrive, tablet… • But sends descriptor taken from some keyboard • And implements HID protocol • Kernel creates new input source • and X11 just starts using them 27

  29. How dangerous it is? • I just downloaded image and changed the background but what else it can do? • There is a version of this attack which spoofs DNS on host and redirects them to USB device • Any command which doesn't require sudo can be executed • anything! • anything! • anything! 28

  30. How to protect? • Don't connect unknown devices found on a street • Limit number of input source to X11 • Use device/interface authorization • usbguard • gnome solution 29

  31. Device/interface authorization • Each USB device has authorized attribute in sysfs directory • Each HCD has authorized_default entry in sysfs • If we set this to false each new device on this bus will be unauthorized by default • Drivers will not be able to bind to it • This gives us time to use lsusb to check it 30

  32. My tablet (once again) 31

  33. May I have my own USB device?

  34. Yes, you can! Need Solution Suitable hardware Get some board with UDC controller (BBB, Odroid etc.) Implementation of USB protocol Use one from Linux kernel! Implementation of some useful A lot of protocols are available out of protocol the box in Linux kernel! Desired functionality provider Let's use our system infrastructure! 33

  35. Terminology USB device = USB gadget + UDC UDC driver Driver for USB Device Controller USB function (type) driver which implements some useful protocol (HID, Mass storage) USB gadget Glue layer for functions. • Handle enumeration • Respond to most general requests 34

  36. Device architecture overview 35

  37. Prerequisites - menuconfig 36

  38. Available functions • Ethernet • ECM • EEM • NCM • Subset • RNDIS • Serial • ACM • Serial • OBEX • Mass Storage • HID • UVC • UAC • Printer • Phonet • Loopback and SourceSink 37

  39. Base composition • Fill the identity of gadget • Vendor ID • Product ID • Device Class details • Strings (manufacturer, product and serial) • Decide what functions • Decide how many configurations • Decide what functions are available in each configuration 38

  40. Documentation/ABI/testing/configfs-usb-gadget* https://github.com/libusbgx/libusbgx https://github.com/kopasiak/gt But how to do this? • Use bare kernel ConfigFS interface • Use libusbgx to create a program • Use gt to create a simple script • Use gt to load gadget scheme 39

  41. functions = { product = "Sample␣gadget" id = 1 configs = ({ } } type = "ecm" instance = "net1" our_net = { lang = 0x409 }) serialnumber = "ELC2016" manufacturer = "Linux␣Kernel" strings = ({ lang = 0x409; strings = ({ } idProduct = 0xe1ce idVendor = 0x1D6B attrs = { configuration = "The␣only␣one" }) functions = ("our_net") }) name = "c" What gadget schemes really are? • Declarative gadget description • Simple configuration file • libconfig syntax • Interpreted by libusbgx • Can be easily loaded using gt load 40

  42. Let's compose some device 41

  43. Q & A

  44. Thank you! Krzysztof Opasiak Samsung R&D Institute Poland +48 605 125 174 k.opasiak@samsung.com 43

  45. References • Tame The USB gadgets Talkative Beast, Krzysztof Opasiak • Make your own USB gadget, Andrzej Pietrasiewicz • USB and the Real World, Alan Ott • USB in a Nutshell • USB specification • BadUSB attack • usbguard • libubsgx • gt 44

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Introduction to Linux Justin W. Flory CC-BY-SA 4.0 UNIX 101 To understand Linux, you need to

Introduction to Linux Justin W. Flory CC-BY-SA 4.0 UNIX 101 To understand Linux, you need to

Introduction to Linux Justin W. Flory CC-BY-SA 4.0 UNIX 101 To understand Linux, you need to understand what UNIX is, 30 years ago 1969 : Team of Bell Labs developers begin working on solution to address software problems with

500 views • 17 slides
Linux Kung Fu Introduction What is Linux? Why Linux? What is the difference between a client

Linux Kung Fu Introduction What is Linux? Why Linux? What is the difference between a client

Linux Kung Fu Introduction What is Linux? Why Linux? What is the difference between a client and a server? What is Linux? Linux generally refers to a group of Unix-like free and open-source operating system distributions that use the Linux

562 views • 53 slides
Understand USB (in Linux) Krzysztof Opasiak Samsung R&amp;D Institute Poland Agenda What USB is

Understand USB (in Linux) Krzysztof Opasiak Samsung R&amp;D Institute Poland Agenda What USB is

Understand USB (in Linux) Krzysztof Opasiak Samsung R&amp;D Institute Poland Agenda What USB is about? Plug and Play How BadUSB works? May I have my own USB device? Q &amp; A 1 What USB is about? What Internet is about? It is about

797 views • 46 slides
Groking the Linux SPI Subsystem Embedded Linux Conference 2017 Matt Porter Obligatory geek

Groking the Linux SPI Subsystem Embedded Linux Conference 2017 Matt Porter Obligatory geek

Groking the Linux SPI Subsystem Embedded Linux Conference 2017 Matt Porter Obligatory geek reference deobfuscation grok ( /grk/ ) verb to understand intuitively or by empathy, to establish rapport with. Overview What is SPI? SPI

938 views • 47 slides
Linux from Sensors to Servers ! When is Linux Not Linux? ! 1 1 Linux runs across a huge range

Linux from Sensors to Servers ! When is Linux Not Linux? ! 1 1 Linux runs across a huge range

Linux from Sensors to Servers ! When is Linux Not Linux? ! 1 1 Linux runs across a huge range of systems ! CC BY-SA 2.0 FHKE, Flickr 2 Whats the difference between Linux on a big thing and Linux on a little thing? ! 3 ! Whats the

900 views • 52 slides
Computing using Linux: The Good and the Bad Christoph Lameter HPC and Linux Most of the

Computing using Linux: The Good and the Bad Christoph Lameter HPC and Linux Most of the

High Performance Computing using Linux: The Good and the Bad Christoph Lameter HPC and Linux Most of the supercomputers today run Linux. All of the computational clusters in corporations that I know of run Linux. Support for

419 views • 12 slides
Linux Overview Amir Hossein Payberah payberah@gmail.com 1 Agenda Linux Overview Linux

Linux Overview Amir Hossein Payberah payberah@gmail.com 1 Agenda Linux Overview Linux

Linux Overview Amir Hossein Payberah payberah@gmail.com 1 Agenda Linux Overview Linux Distributions Linux vs Windows Linux Architecture Linux Security 2 What is Linux? Similar Operating System To Microsoft Windows, Sun

1.11k views • 55 slides
Interviews with Different Users About Their Linux Setups Steven Ovadia My Linux Rig

Interviews with Different Users About Their Linux Setups Steven Ovadia My Linux Rig

The State of Desktop Linux: Interviews with Different Users About Their Linux Setups Steven Ovadia My Linux Rig www.mylinuxrig.com @steven_ovadia *** Associate Professor/Web Services Librarian LaGuardia Community College About My Linux

458 views • 27 slides
Introduction to Linux Fundamentals of Computer Science Outline Operating Systems Linux

Introduction to Linux Fundamentals of Computer Science Outline Operating Systems Linux

Introduction to Linux Fundamentals of Computer Science Outline Operating Systems Linux History Linux Architecture Logging in to Linux Command Format Linux Filesystem Directory and File Commands Wildcard Characters

686 views • 19 slides
Introduction to Linux Aline Abler Aline Abler Linux, whats that? The pieces of a Linux

Introduction to Linux Aline Abler Aline Abler Linux, whats that? The pieces of a Linux

Linux, whats that? The pieces of a Linux system Linux Concepts Distributions Desktop environments Switching to Linux Epilogue Introduction to Linux Aline Abler Aline Abler Linux, whats that? The pieces of a Linux system Linux

766 views • 57 slides
GNU/Linux Why use it? What is Linux? Linux is a UNIX-like, GPL-licensed open-source kernel. The

GNU/Linux Why use it? What is Linux? Linux is a UNIX-like, GPL-licensed open-source kernel. The

GNU/Linux Why use it? What is Linux? Linux is a UNIX-like, GPL-licensed open-source kernel. The GNU userland consists of libc, the init system (SystemD) X11 GUI toolkits etc. Ask the audience Who has used

442 views • 22 slides
Performance Analysis Superpowers with Linux BPF Brendan Gregg Sep 2017 bcc/BPF tools DEMO

Performance Analysis Superpowers with Linux BPF Brendan Gregg Sep 2017 bcc/BPF tools DEMO

Performance Analysis Superpowers with Linux BPF Brendan Gregg Sep 2017 bcc/BPF tools DEMO Agenda 1. eBPF &amp; bcc 2. bcc/BPF CLI Tools 3. bcc/BPF Visualizations Take aways 1. Understand Linux tracing and enhanced BPF 2. How to use BPF

971 views • 68 slides
Scheduling decisions Don Porter CSE 306 (Linux) Terminology Lecture goals Review

Scheduling decisions Don Porter CSE 306 (Linux) Terminology Lecture goals Review

3/16/16 Last time We went through the high-level theory of scheduling algorithms Today: View into how Linux makes its scheduling Scheduling decisions Don Porter CSE 306 (Linux) Terminology Lecture goals Review Understand low-level

379 views • 6 slides
Linux You Can Drive My Car Embedded Linux Conference

Linux You Can Drive My Car Embedded Linux Conference

Linux You Can Drive My Car Embedded Linux Conference 2017 Walt Miner ( @VStarWalt ) Community Manager, AGL , The Linux FoundaGon

721 views • 55 slides
Docker Security Workshop Goals of this Workshop Understand and get Understand and get

Docker Security Workshop Goals of this Workshop Understand and get Understand and get

Docker Security Workshop Goals of this Workshop Understand and get Understand and get comfortable with Docker comfortable with Linux security technologies security technologies Swarm Mode Security AppArmor Secrets Management seccomp

1.94k views • 147 slides
Linux For Beginners April 26, 2016 Dualboot Linux and Windows Dualboot Linux and Windows

Linux For Beginners April 26, 2016 Dualboot Linux and Windows Dualboot Linux and Windows

Linux For Beginners April 26, 2016 Dualboot Linux and Windows Dualboot Linux and Windows Reinstall usually keeps personal files Advantages of Linux More secure Package manager Software installation is easy, fast and secure Keeps

528 views • 15 slides
Computer Graphics Cuda Programming Hendrik Lensch Computer Graphics WS07/08

Computer Graphics Cuda Programming Hendrik Lensch Computer Graphics WS07/08

Computer Graphics Cuda Programming Hendrik Lensch Computer Graphics WS07/08 HW-Shading Overview So far: OpenGL Programmable Shader Today: GPGPU via Cuda (general purpose computing on the GPU) Next:

882 views • 56 slides
CS 171: Introduction to Computer Science II Project Workshop and Review Li Xiong Today

CS 171: Introduction to Computer Science II Project Workshop and Review Li Xiong Today

CS 171: Introduction to Computer Science II Project Workshop and Review Li Xiong Today Project workshop Final review Course evaluation Project Workshop FaceSpace Alex Fields and Andres Celis MapQuest Kenty Wang

186 views • 18 slides
The von Neumann Architecture The von Neumann Architecture of Computer Systems of Computer

The von Neumann Architecture The von Neumann Architecture of Computer Systems of Computer

The von Neumann Architecture The von Neumann Architecture of Computer Systems of Computer Systems paper by H. Norton Riley paper by H. Norton Riley David Morgan von Neumann archtecture von Neumann archtecture Starting point Starting point

356 views • 7 slides
Perfect sets and f -ideals Introduction Perfect sets and f -ideals of degree d Author Jin Guo (

Perfect sets and f -ideals Introduction Perfect sets and f -ideals of degree d Author Jin Guo (

Perfect sets and f -ideals Jin Guo Outline Perfect sets and f -ideals Introduction Perfect sets and f -ideals of degree d Author Jin Guo ( n, 2) th perfect number (This is a joint work with professor Tongsuo Wu) Structure of V ( n, 2)

2.01k views • 154 slides
You Can Do That Cloud &amp; Distributed Computing Scripting &amp; (CyberPhysical, Databases,

You Can Do That Cloud &amp; Distributed Computing Scripting &amp; (CyberPhysical, Databases,

16.1 16.2 You Can Do That Cloud &amp; Distributed Computing Scripting &amp; (CyberPhysical, Databases, Data Networked Interfaces Mining,etc.) Applications Applications SW (AI, Robotics, Graphics, Mobile) Applications C / C++ / Java

422 views • 13 slides
How to avoid writing device drivers for embedded Linux Chris Simmonds 2net Limited Winchester,

How to avoid writing device drivers for embedded Linux Chris Simmonds 2net Limited Winchester,

How to avoid writing device drivers for embedded Linux Chris Simmonds 2net Limited Winchester, UK chris@2net.co.uk Abstract Modern Linux kernels provide interfaces that use of the basic I/O functions that the driver provides. Writing

412 views • 4 slides
Why RISC-V Is Not Nearly Boring Enough Al Stone Principal Software Engineer Platform Enablement

Why RISC-V Is Not Nearly Boring Enough Al Stone Principal Software Engineer Platform Enablement

Why RISC-V Is Not Nearly Boring Enough Al Stone Principal Software Engineer Platform Enablement Red Hat When RISC-V Grows Up... The ISA is only a small part of a product What we need is to be dead boring To get there, we need:

300 views • 13 slides
GPUs Offer much performance per $ Designed for the highly data-parallel computations of

GPUs Offer much performance per $ Designed for the highly data-parallel computations of

2008-06-01 GPU Programming in Haskell Joel Svensson Joint work with Koen Claessen and Mary Sheeran Chalmers University GPUs Offer much performance per $ Designed for the highly data-parallel computations of graphics GPGPU:

430 views • 19 slides

More recommend