Soo-saareyaal badan oo kala duwan oo ah Armv8-A (Cortex-A) naqshadaha nuglaanshadeeda gaarka ah ee weerarrada kanaalka-dhinacyada iyadoo la adeegsanayo algorithms-ka xisaabinta mala-awaalka ah. ARM lafteeda ayaa ka warbixisay tan oo waxay bixisay balastar iyo hagitaan si loo yareeyo baylahda la helay. Khatartu maaha mid aad u weyn, laakiin lama dayaci karo, sababtoo ah soo-saareyaasha ku salaysan qaab dhismeedka ARM ayaa meel walba yaal, taas oo ka dhigaysa khatarta daadinta aan la qiyaasi karin marka la eego cawaaqibka.
Nuglaanta ay heleen khubarada Google ee qaab-dhismeedka ARM waxaa loo magacaabay Speculation-Line Speculation (SLS) oo si rasmi ah loo qoondeeyay CVE-2020-13844. Marka loo eego ARM, dayacanka SLS waa nooc ka mid ah dayacanka Specter, kaas oo (oo ay weheliso nuglaanta Meltdown) si weyn loo yaqaan Janaayo 2018. Si kale haddii loo dhigo, tani waa nuglaanta caadiga ah ee hababka xisaabinta mala-awaalka ah ee leh weerarka kanaalka.
Xisaabinta male-awaalka ahi waxay u baahan tahay in xogta hore loo habeeyo iyadoo la raacayo dhawr laamood oo suurtagal ah, in kasta oo kuwan dambe laga yaabo in la tuuro sidii aan loo baahnayn. Weerrarada kanaalka-dhinacyadu waxay oggolaadaan in xogta dhexe ee noocaas ah la xado ka hor inta aan gebi ahaanba la burburin. Natiijo ahaan, waxaan leenahay soo-saareyaal awood leh iyo halista daadinta xogta.
Weerarka Khadka Toosan ee Processor-rada ku saleysan ARM wuxuu keenaa processor-ka, mar kasta oo uu isbeddel ku yimaado qulqulka tilmaamaha, inuu u beddelo fulinta tilmaamaha laga helo xusuusta si toos ah, halkii uu raaci lahaa tilmaamaha qulqulka tilmaamaha cusub. Sida iska cad, tani maahan xaaladda ugu wanaagsan ee doorashada tilmaamaha si loo fuliyo, kaas oo uu ka faa'iidaysan karo weeraryahan.
Markay tahay ammaanteeda, ARM kaliya ma aysan sii dayn hagidda horumariyaha si ay uga fogaato halista daadinta iyadoo loo marayo weerarka Khadka Toosan, laakiin waxay sidoo kale bixisay dhejisyo nidaamyada hawlgalka waaweyn sida FreeBSD, OpenBSD, Firmware-A iyo OP-TEE la aamini karo, oo loo sii daayay balastarrada GCC iyo LLVM compilers.
Shirkadda ayaa sidoo kale sheegtay in adeegsiga balastarrada aysan saameyn doonin waxqabadka aaladaha ARM, sida ku dhacday x86-ku-xiran aaladaha Intel ee xannibaadda dayacanka Specter iyo Meltdown. Si kastaba ha ahaatee, waxaan awood u yeelan doonaa inaan arrintan wax ka baranno ilo dhinac saddexaad ah, taas oo siin doonta sawir ujeedo ah nuglaanta cusub.
Source: 3dnews.ru