Tawagar masu bincike daga jami'o'in Amurka da dama sun kirkiri sabuwar dabarar kai hari ta hanyar tasha wacce zata basu damar sake kirkirar bayanan gani da aka sarrafa a cikin GPU. Yin amfani da hanyar da aka tsara, wanda ake kira GPU.zip, mai hari zai iya ƙayyade bayanin da aka nuna akan allon. Daga cikin wasu abubuwa, ana iya kai harin ta hanyar burauzar gidan yanar gizo, alal misali, nuna yadda shafin yanar gizon mugunta da aka buɗe a cikin Chrome zai iya samun bayanai game da pixels ɗin da aka nuna lokacin da aka buɗe wani shafin yanar gizon da aka buɗe a cikin mazugi ɗaya.
Tushen zubewar bayanai shine haɓakawa da ake amfani da su a cikin GPUs na zamani waɗanda ke ba da matsi na bayanan hoto. Matsalar tana faruwa lokacin amfani da matsawa akan duk haɗaɗɗen GPUs da aka gwada (AMD, Apple, ARM, Intel, Qualcomm) da katunan zane mai hankali na NVIDIA. A lokaci guda, masu binciken sun gano cewa haɗaɗɗen Intel da AMD GPUs koyaushe suna ba da damar damfara bayanan hoto, koda kuwa aikace-aikacen baya buƙatar amfani da irin wannan ingantawa. Amfani da matsawa yana haifar da zirga-zirgar zirga-zirgar DRAM da nauyin cache don daidaitawa da yanayin bayanan da ake sarrafa, wanda za'a iya sake gina pixel-by-pixel ta hanyar nazarin tashoshi na gefe.
Hanyar tana da jinkiri sosai, alal misali, akan tsarin tare da haɗaɗɗen AMD Ryzen 7 4800U GPU, harin don tantance sunan da mai amfani ya shiga cikin Wikipedia a wani shafin ya ɗauki mintuna 30 kuma ya ba da izinin tantance abubuwan da ke cikin pixels. tare da daidaito 97%. A kan tsarin da haɗin gwiwar Intel i7-8700 GPU, irin wannan harin ya ɗauki mintuna 215 tare da daidaito na 98%.
Lokacin da ake kai hari ta hanyar burauza, rukunin yanar gizon yana kewaya ta hanyar iframe don fara nunawa. Don sanin menene bayanin da aka nuna, fitowar iframe yana canzawa zuwa wakilcin baki-da-fari, wanda aka yi amfani da matatar SVG, wanda ke aiwatar da abin rufe fuska na jeri wanda ke gabatarwa kuma baya gabatar da sake sakewa yayin matsawa. Dangane da kimanta canje-canje a lokacin zane na samfuran tunani, ana haskaka kasancewar duhu ko haske a wani matsayi. Ana sake gina hoton gaba ɗaya ta hanyar duban pixel-by-pixel na jeri ta amfani da abin rufe fuska iri ɗaya.
An sanar da GPU da masana'antun masu bincike game da matsalar a cikin Maris, amma har yanzu babu wani mai siyar da ya samar da gyara, saboda harin yana da shakku a aikace a ƙarƙashin yanayin da bai dace ba kuma matsalar ta fi sha'awar ka'ida. Har yanzu Google bai yanke shawara ko zai toshe harin a matakin burauzar Chrome ba. Chrome yana da rauni saboda yana ba da damar loda iframe daga wani rukunin yanar gizo ba tare da share Kuki ba, yana ba da damar yin amfani da matatun SVG akan iframe, da wakilai masu ba da gudummawa ga GPU. Lalacewar ba ta shafa Firefox da Safari saboda ba su cika waɗannan sharuɗɗan ba. Har ila yau, harin bai shafi shafukan da ke hana sakawa ta hanyar iframe a wasu rukunin yanar gizo ba (misali, ta hanyar saita taken X-Frame-Options HTTP zuwa darajar “SAMEORIGIN” ko “DENY”, haka kuma ta hanyar saitunan shiga ta amfani da abun ciki. -Tsaro-Policy header).
source: budenet.ru