From 698773cb4fbe8873ee0a2c37b86caef01e2c6159 Mon Sep 17 00:00:00 2001
From: Andrey Konovalov <andreyknvl@google.com>
Date: Thu, 6 Jun 2019 14:10:59 +0200
Subject: sys/linux: don't inherit fd_usb from fd

This is a special fd, we don't want various ioctls be called on it.
---
 sys/linux/vusb.txt | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'sys/linux/vusb.txt')

diff --git a/sys/linux/vusb.txt b/sys/linux/vusb.txt
index 464cd321f..35a5eaaa5 100644
--- a/sys/linux/vusb.txt
+++ b/sys/linux/vusb.txt
@@ -10,7 +10,9 @@ include <uapi/linux/hid.h>
 include <linux/hid.h>
 include <uapi/linux/usb/cdc.h>
 
-resource fd_usb[fd]
+# This is a special fd for USB fuzzing and should only be used with syz_usb_* syzcalls.
+# We don't inherit it from the fd resource, to discourage syzkaller calling raw ioctls on it.
+resource fd_usb[int32]: -1
 
 syz_usb_connect(speed flags[usb_device_speed], dev_len len[dev], dev ptr[in, usb_device_descriptor], conn_descs ptr[in, vusb_connect_descriptors]) fd_usb
 syz_usb_control_io(fd fd_usb, descs ptr[in, vusb_descriptors], resps ptr[in, vusb_responses])
-- 
cgit mrf-deployment