From owner-freebsd-security@FreeBSD.ORG Thu Oct 9 14:30:12 2014 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id BEFABB18; Thu, 9 Oct 2014 14:30:12 +0000 (UTC) Received: from land.berklix.org (land.berklix.org [144.76.10.75]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4CAAA614; Thu, 9 Oct 2014 14:30:11 +0000 (UTC) Received: from mart.js.berklix.net (pD9FBE981.dip0.t-ipconnect.de [217.251.233.129]) (authenticated bits=128) by land.berklix.org (8.14.5/8.14.5) with ESMTP id s99ER6Dg005260; Thu, 9 Oct 2014 14:27:07 GMT (envelope-from jhs@berklix.com) Received: from fire.js.berklix.net (fire.js.berklix.net [192.168.91.41]) by mart.js.berklix.net (8.14.3/8.14.3) with ESMTP id s99ETuqg001697; Thu, 9 Oct 2014 16:29:56 +0200 (CEST) (envelope-from jhs@berklix.com) Received: from fire.js.berklix.net (localhost [127.0.0.1]) by fire.js.berklix.net (8.14.7/8.14.7) with ESMTP id s99ETQZ7090227; Thu, 9 Oct 2014 16:29:44 +0200 (CEST) (envelope-from jhs@berklix.com) Message-Id: <201410091429.s99ETQZ7090227@fire.js.berklix.net> To: Hans Petter Selasky Subject: Re: BadUSB - On Accessories that Turn Evil, by Karsten Nohl + Jakob Lell From: "Julian H. Stacey" Organization: http://berklix.com BSD Unix Linux Consultants, Munich Germany User-agent: EXMH on FreeBSD http://berklix.com/free/ X-URL: http://www.berklix.com In-reply-to: Your message "Thu, 09 Oct 2014 08:27:46 +0200." <54362AE2.90501@selasky.org> Date: Thu, 09 Oct 2014 16:29:26 +0200 Cc: freebsd-security@freebsd.org, Poul-Henning Kamp , freebsd-usb@freebsd.org X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Oct 2014 14:30:12 -0000 > BTW: I've added some exceptions, that existing devices can be detached, > suspend/resumed and reset while the enumeration is disabled. > > https://svnweb.freebsd.org/changeset/base/272807 > Can you also test that patch? OK, will do. (I've got a cold so I'm slow & making mistakes, sorry). I thought I had to first download & overlay those files to replace my (automatically CTM updated) current, (as I also replaced the last set manually, since backed out) It seems (from MD5s) your code is already in current. (& I can see diffs between eg revision=272733/sys/dev/usb/usb_hub.c revision=272807/sys/dev/usb/usb_hub.c ) & my current matches 272807 apart from a header line artifact of svn, I saw comment MFC & wrongly assumed Merge For Current in 2 weeks, I assume I was wrong & it's Merge From Current to stable in 2 weeks). So I've made & rebooted standard current & just need to test now. Cheers, Julian -- Julian Stacey, BSD Linux Unix C Sys Eng Consultant Munich http://berklix.com Indent previous with "> ". Interleave reply paragraphs like a play script. Send plain text, not quoted-printable, HTML, base64, or multipart/alternative.