linux/Documentation/usb
Reilly Grant d883f52e1f usb: devio: Add ioctl to disallow detaching kernel USB drivers.
The new USBDEVFS_DROP_PRIVILEGES ioctl allows a process to voluntarily
relinquish the ability to issue other ioctls that may interfere with
other processes and drivers that have claimed an interface on the
device.

This commit also includes a simple utility to be able to test the
ioctl, located at Documentation/usb/usbdevfs-drop-permissions.c

Example (with qemu-kvm's input device):

    $ lsusb
    ...
    Bus 001 Device 002: ID 0627:0001 Adomax Technology Co., Ltd

    $ usb-devices
    ...
    C:  #Ifs= 1 Cfg#= 1 Atr=a0 MxPwr=100mA
    I:  If#= 0 Alt= 0 #EPs= 1 Cls=03(HID  ) Sub=00 Prot=02 Driver=usbhid

    $ sudo ./usbdevfs-drop-permissions /dev/bus/usb/001/002
    OK: privileges dropped!
    Available options:
    [0] Exit now
    [1] Reset device. Should fail if device is in use
    [2] Claim 4 interfaces. Should succeed where not in use
    [3] Narrow interface permission mask
    Which option shall I run?: 1
    ERROR: USBDEVFS_RESET failed! (1 - Operation not permitted)
    Which test shall I run next?: 2
    ERROR claiming if 0 (1 - Operation not permitted)
    ERROR claiming if 1 (1 - Operation not permitted)
    ERROR claiming if 2 (1 - Operation not permitted)
    ERROR claiming if 3 (1 - Operation not permitted)
    Which test shall I run next?: 0

After unbinding usbhid:

    $ usb-devices
    ...
    I:  If#= 0 Alt= 0 #EPs= 1 Cls=03(HID  ) Sub=00 Prot=02 Driver=(none)

    $ sudo ./usbdevfs-drop-permissions /dev/bus/usb/001/002
    ...
    Which option shall I run?: 2
    OK: claimed if 0
    ERROR claiming if 1 (1 - Operation not permitted)
    ERROR claiming if 2 (1 - Operation not permitted)
    ERROR claiming if 3 (1 - Operation not permitted)
    Which test shall I run next?: 1
    OK: USBDEVFS_RESET succeeded
    Which test shall I run next?: 0

After unbinding usbhid and restricting the mask:

    $ sudo ./usbdevfs-drop-permissions /dev/bus/usb/001/002
    ...
    Which option shall I run?: 3
    Insert new mask: 0
    OK: privileges dropped!
    Which test shall I run next?: 2
    ERROR claiming if 0 (1 - Operation not permitted)
    ERROR claiming if 1 (1 - Operation not permitted)
    ERROR claiming if 2 (1 - Operation not permitted)
    ERROR claiming if 3 (1 - Operation not permitted)

Signed-off-by: Reilly Grant <reillyg@chromium.org>
Acked-by: Alan Stern <stern@rowland.harvard.edu>
Signed-off-by: Emilio López <emilio.lopez@collabora.co.uk>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2016-03-05 12:05:01 -08:00
..
acm.txt
anchors.txt
authorization.txt usb: interface authorization: Documentation part 2015-09-22 12:08:40 -07:00
bulk-streams.txt
callbacks.txt
chipidea.txt Documentation: usb: chipidea: Update test procedure for HNP polling 2016-03-04 15:14:37 +02:00
CREDITS
dma.txt
dwc3.txt
ehci.txt
error-codes.txt
functionfs.txt
gadget_configfs.txt gadget_configfs.txt: fix spelling of 'function' 2014-10-29 14:30:15 +01:00
gadget_hid.txt usb: gadget: hid: add configfs support 2014-11-06 16:18:19 -06:00
gadget_multi.txt
gadget_printer.txt
gadget_serial.txt Documentation: usb: gadget_serial: update generic serial setup instruction 2015-01-12 12:13:24 -06:00
gadget-testing.txt Documentation: usb: update usb-tools repository address 2015-12-16 10:07:30 -06:00
hotplug.txt usb: hub: rename khubd to hub_wq in documentation and comments 2014-09-23 22:33:19 -07:00
iuu_phoenix.txt
linux-cdc-acm.inf
linux.inf
mass-storage.txt
misc_usbsevseg.txt
mtouchusb.txt
ohci.txt
persist.txt
power-management.txt usb: core: lpm: fix usb3_hardware_lpm sysfs node 2015-12-01 14:58:18 -08:00
proc_usb_info.txt
rio.txt
URB.txt
usb-help.txt
usb-serial.txt Documentation usb serial: fixed how to provide vendor and product id 2015-05-07 09:44:04 -06:00
usbdevfs-drop-permissions.c usb: devio: Add ioctl to disallow detaching kernel USB drivers. 2016-03-05 12:05:01 -08:00
usbip_protocol.txt usbip: move usbip_protocol.txt to Documentation 2016-03-03 19:44:06 -08:00
usbmon.txt doc: usbmon: fix spelling s/unpriviledged/unprivileged/ 2015-01-09 12:25:54 -08:00
wusb-cbaf
WUSB-Design-overview.txt usb: hub: rename khubd to hub_wq in documentation and comments 2014-09-23 22:33:19 -07:00