Ndị nyocha sitere na Mahadum nka nka nke Graz (Austria) ozi gbasara usoro mbuso agha ọhụrụ site na ọwa ndị ọzọ (), nke na-enye gị ohere iwepu ozi nzuzo site na usoro ndị ọzọ, sistemụ arụmọrụ, igwe mebere na nchekwa nchekwa (TEE, Trusted Execution Environment). Nsogbu a na-emetụta naanị ndị nhazi Intel. Ngwa iji gbochie nsogbu na ụnyahụ .
Nsogbu a bụ nke klaasị MDS (Microarchitectural Data Sampling) bụ ụdị emegharịrị. na mwakpo May ZombieLoad. ZombieLoad 2.0, dị ka mwakpo MDS ndị ọzọ, na-adabere na ntinye usoro nyocha nke ọwa n'akụkụ iji nweta data na nhazi microarchitectural (dịka ọmụmaatụ, Line Fill Buffer na Store Buffer), nke na-echekwa data ejiri nwa oge na-arụ ọrụ. .
Ọhụrụ ụdị mbuso agha Zombieload na ntapu nke na-eme n'oge ọrụ nke usoro maka nkwụsịtụ arụ ọrụ (TAA, TSX Asynchronous Abort), emejuputa atumatu na TSX (Transacional Synchronization Extensions), nke na-enye ngwaọrụ maka ịrụ ọrụ na ebe nchekwa azụmahịa, nke na-enye ohere ịbawanye arụmọrụ nke Ngwa nwere ọtụtụ eriri site n'iwepụ ọrụ mmekọrịta na-adịghị mkpa (mzụ ahịa atọm akwadoro nke enwere ike ịnakwere ma ọ bụ kwụsị). Ọ bụrụ na akwụsịlata, a na-atụgharịghachi ọrụ a rụrụ na mpaghara ebe nchekwa azụmahịa.
Azụmahịa ime ime na-apụta n'otu n'otu, na n'oge a eriri ndị ọzọ nwere ike ịnweta cache, nke a na-ejikwa na mpaghara ebe nchekwa azụmahịa a tụfuru. N'ime oge site na mmalite ruo n'ezie mmecha nke asynchronous azụmahịa ime ime, ọnọdụ nwere ike ibili ebe processor, n'oge speculative ogbugbu nke ọrụ, nwere ike na-agụ data si esịtidem microarchitectural buffers na nyefee ya na-speculative ọrụ. A ga-achọpụta esemokwu ahụ ma tụfuo ọrụ a na-eche n'echiche, mana data ahụ ga-anọgide na cache ma nwee ike weghachite ya site na iji usoro mgbake cache n'akụkụ.
Mwakpo ahụ gbadara imepe azụmahịa TSX yana mepụta ọnọdụ maka nkwụsịtụ asynchronous ha, n'oge ọnọdụ na-ebilite maka ịwepu ọdịnaya nke ihe nchekwa dị n'ime nke jupụtara na data sitere na ebe nchekwa na-agụ ọrụ arụrụ n'otu isi CPU. Ntugharị ahụ bụ naanị isi CPU anụ ahụ dị ugbu a (nke koodu onye na-awakpo na-agba), mana ebe ọ bụ na a na-ekerịta microarchitectural buffers n'etiti eriri dị iche iche na ọnọdụ Hyper-stringing, ọ ga-ekwe omume ịhapụ ọrụ ebe nchekwa emere na eri CPU ndị ọzọ.
Mwakpo ụdị ụfọdụ nke ọgbọ nke asatọ, itoolu na nke iri nke Intel Core processors, yana Intel Pentium Gold, Intel Celeron 5000, Intel Xeon E, Intel Xeon W na ọgbọ nke abụọ Intel Xeon Scalable. Ndị nrụpụta Intel ọhụrụ dabere na Cascade Lake microarchitecture ewepụtara n'April, nke na-adighi ike na mbuso agha RIDL na Fallout, nwekwara ike ibuso ya agha. Na mgbakwunye na Zombieload 2.0, ndị nchọpụta chọpụtakwara na ọ ga-ekwe omume ịgafe ụzọ nchebe echere na mbụ megide mwakpo MDS, dabere na iji ntuziaka VERW iji kpochapụ ọdịnaya nke microarchitectural buffers mgbe ị na-alọta site na kernel gaa na ohere onye ọrụ ma ọ bụ mgbe ị na-ebufe njikwa na. usoro ndị ọbịa.
Akuko Intel na-ekwu na na sistemu nwere ibu dị iche iche, ikike ịme mwakpo siri ike, ebe ọ bụ na mpụta sitere na ihe owuwu microarchitectural na-ekpuchi ọrụ niile dị na sistemụ na onye mwakpo enweghị ike imetụta isi mmalite data ewepụtara, ya bụ. naanị nwere ike ịchịkọta ozi na-apụta n'ihi ntanye wee gbalịa ịchọpụta ozi bara uru n'etiti data a, na-enweghị ike iji kpachapụrụ anya gbochie data jikọtara na adreesị ebe nchekwa akọwapụtara. Otú ọ dị, ndị nchọpụta bipụtara , na-agba ọsọ na Linux na Windows, ma gosipụta ike iji mwakpo iji chọpụta hash paswọọdụ onye ọrụ.
na-ebu agha site na usoro ndị ọbịa iji kpokọta data nke na-egosi na arụ ọrụ nke usoro ndị ọbịa ndị ọzọ, gburugburu ebe obibi, hypervisor na Intel SGX enclaves.
Idozi iji gbochie adịghị ike n'ime koodu kernel Linux wee tinye ya na mwepụta . ewepụtalarị mmelite kernel na microcode maka nkesa bụ isi (, , , , , ). Achọpụtara nsogbu ahụ n'April na nhazi nhazi n'etiti Intel na ndị nrụpụta sistemụ arụmọrụ.
Ụzọ kachasị mfe iji gbochie Zombieload 2.0 bụ iji gbanyụọ nkwado TSX na CPU. Ndozi a chọrọ maka kernel Linux gụnyere ọtụtụ nhọrọ nchekwa. Nhọrọ nke mbụ na-enye paramita "tsx=on/off/auto" iji jikwaa ma agbanyere ndọtị TSX na CPU (ọnụahịa akpaaka na-ewepụ TSX naanị maka CPUs adịghị ike). A na-akwado nhọrọ nchekwa nke abụọ site na paramita "tsx_async_abort=off/ful/ful, nosmt" ma dabere na ikpochapụ ihe nchekwa microarchitectural n'oge ntụgharị okwu (ọkọlọtọ nosmt na-ewepụkwa SMT/Hyper-strings). Iji lelee ma sistemụ ọ dị mfe ịnweta adịghị ike, sysfs na-enye paramita "/sys/devices/system/cpu/vulnerabilities/tsx_async_abort".
E wezụga, na microcode nke ozo () na Intel processors, nke a na-egbochikwa na nke ọhụrụ Linux kernel. adịghị ike onye na-awakpo na-enweghị ohere ịmalite ịgọnarị ọrụ, na-eme ka usoro ahụ kwụgide na steeti "Nleba Nleba Igwe".
Mwakpo gụnyere site na usoro ndị ọbịa.
isi: opennet.ru
