No longer necessary at 2017-09-23 /pub/FreeBSD/development/CTM/src-cur/src-cur.13188.gz # http://www.berklix.com/~jhs//src/bsd/fixes/FreeBSD/src/gen/sys/dev/usb/usb_hub.c.REL=ALL.diff # by Julian H. Stacey # Contributed via https://bugs.freebsd.org/bugzilla/enter_bug.cgi # As https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=222505 # # Extends description of sysctl hw.usb.disable_enumeration # makes it findable with "sysctl -a -d | grep -i usb | grep secur" # # Origin Of This Sysctl: # https://lists.freebsd.org/pipermail/freebsd-usb/2014-October/013304.html # https://lists.freebsd.org/pipermail/freebsd-security/2014-October/007976.html # Patch Review & Ideas For More Later: # https://lists.freebsd.org/pipermail/freebsd-usb/2017-September/014939.html # https://lists.freebsd.org/pipermail/freebsd-security/2017-September/009410.html *** 12.0-CURRENT-2017-09-15/src/sys/dev/usb/usb_hub.c.~1~ Mon Sep 18 23:52:26 2017 --- new-generic/src/sys/dev/usb/usb_hub.c Thu Sep 21 23:19:47 CEST 2017 *************** *** 100,106 **** #if USB_HAVE_DISABLE_ENUM static int usb_disable_enumeration = 0; SYSCTL_INT(_hw_usb, OID_AUTO, disable_enumeration, CTLFLAG_RWTUN, ! &usb_disable_enumeration, 0, "Set to disable all USB device enumeration."); static int usb_disable_port_power = 0; SYSCTL_INT(_hw_usb, OID_AUTO, disable_port_power, CTLFLAG_RWTUN, --- 100,108 ---- #if USB_HAVE_DISABLE_ENUM static int usb_disable_enumeration = 0; SYSCTL_INT(_hw_usb, OID_AUTO, disable_enumeration, CTLFLAG_RWTUN, ! &usb_disable_enumeration, 0, "Set to disable all USB device enumeration" ! " (secure against devices that later turn evil," ! " eg also declaring themselves a keyboard)."); static int usb_disable_port_power = 0; SYSCTL_INT(_hw_usb, OID_AUTO, disable_port_power, CTLFLAG_RWTUN,