Koox cilmi-baarayaal ah oo ka socda jaamacadaha Maraykanka, Australia iyo Israel ayaa soo jeediyay farsamo cusub oo dhanka kanaalka ah si looga faa'iidaysto nuglaanta heerka Specter-ka ee daalacashada ku salaysan mishiinka Chromium. Weerarka, oo loo yaqaan Spook.js, wuxuu kuu oggolaanayaa inaad ka gudubto habka go'doominta goobta adoo socodsiinaya koodka JavaScript oo aad akhrido waxa ku jira dhammaan goobta ciwaanka ee habka hadda socda, i.e. xogta laga helo boggaga ku socda tabsyada kale, laakiin lagu farsameeyay isla habraacii.
Maaddaama Chrome uu ku wado goobo kala duwan habraacyo kala duwan, awoodda lagu fulinayo weerarrada la taaban karo waxay ku kooban tahay adeegyada u oggolaanaya isticmaaleyaasha kala duwan inay martigeliyaan bogaggooda. Habka ayaa u ogolaanaya, laga bilaabo bogga uu weeraryahanku fursad u helay inuu ku dhejiyo koodkiisa JavaScript, si loo go'aamiyo joogitaanka boggaga kale ee uu furay isticmaaluhu isla goobtaas oo uu ka soo saaro macluumaadka qarsoodiga ah, tusaale ahaan, aqoonsiga ama faahfaahinta bangiga oo la beddelay. iyada oo loo marayo nidaamka otomaatig-buuxinta beeraha ee foomamka shabakadda. Mudaaharaad ahaan, waxaa la tusay sida aad ugu weerari karto qof kale boggiisa adeegga Tumblr haddii mulkiiluhu furo blog-ka weeraryahannada ee lagu hayo isla adeegga tab kale.
Ikhtiyaarka kale ee loo isticmaalo habka waa weerar lagu daro browserka, kaas oo u oggolaanaya, marka la rakibayo ku-darka uu xakameynayo weerarka, si loo soo saaro xogta kale ee lagu daro. Tusaale ahaan, waxaan ku tusineynaa sida adoo ku rakibaya daroogo xaasidnimo leh waxaad ka soo saari kartaa macluumaadka sirta ah maamulaha sirta ah ee LastPass.
Cilmi baadhayaashu waxay daabaceen nooc ka faa'iidaysi ah oo ka shaqeeya Chrome 89 nidaamyada leh CPUIntel i7-6700K iyo i7-7600U. Marka la abuurayo ka faa'iidaysiga, noocyada koodka JavaScript ee ay Google hore u daabacday ayaa loo isticmaalay in lagu fuliyo weerarrada Specter-class. Waxaa la xusay in cilmi-baarayaashu ay awoodeen in ay diyaariyaan faa'iidooyin shaqo oo loogu talagalay nidaamyada ku salaysan Intel iyo Apple M1 Processor, taas oo suurtogal ka dhigaysa in la habeeyo akhriska xusuusta oo ku socota xawaare dhan 500 bytes halkii ilbiriqsi iyo sax ahaan 96%. Waxaa loo maleynayaa in habka uu sidoo kale khuseeyo processor-yada AMD, laakiin ma aysan suurtagal ahayn in la diyaariyo ka faa'iidaysi buuxda.
Weerarku waa mid lagu dabaqi karo daalacashada kasta oo ku salaysan mishiinka Chromium, oo ay ku jiraan Google Chrome, Microsoft Edge iyo Brave. Cilmi-baadhayaashu waxay sidoo kale aaminsan yihiin in habka loo habeyn karo si uu ula shaqeeyo Firefox, laakiin maadaama matoorka Firefox uu aad uga duwan yahay Chrome, shaqada abuurista ka faa'iidaysigaas ayaa u hadhay mustaqbalka.
Si looga ilaaliyo weerarrada ku salaysan browserka ee la xidhiidha fulinta malo-awaalka ah ee tilmaamaha, Chrome waxa ay fulisaa kala-soocida ciwaanka --go'doominta sanduuqa-sanduuqa waxa ay u ogolaataa JavaScript in ay ku shaqeyso oo keliya tilmaame 32-bit ah oo ay la wadaagto xusuusta gacan-ku-haynta ee 4GB ee isku urursan. Si loo helo dhammaan habka ciwaanka meesha ciwaanka ah iyo in laga gudbo xaddidaadda 32-bit, cilmi-baarayaashu waxay adeegsadeen farsamo loo yaqaan 'Type Confusion', taas oo ku qasbeysa mashiinka JavaScript inuu ka shaqeeyo shay leh nooc aan sax ahayn, taas oo suurtogal ka dhigaysa in la sameeyo 64-bit. tilmaame ku salaysan isku-darka laba qiime oo 32-bit ah.
Nuxurka weerarku waa in marka shay xaasidnimo ah oo si gaar ah loogu nashqadeeyey matoorka JavaScript, la abuuray shuruudo u horseedaya fulinta malo-awaal ah tilmaamaha gelaya arrayga. Shayga waxaa loo doortaa si ay meelaha weeraryahanku gacanta ku hayaan la dhigo meesha 64-bit tilmaame lagu isticmaalo. Mar haddii nooca shayga xaasidnimadu aanu u dhigmin nooca array-ga la farsamaynayo, xaaladaha caadiga ah marka la eego ficilladan waxa lagu xannibaa Chrome iyada oo loo marayo hab lagu dhimo koodka loo isticmaalo gelitaanka arrays. Si loo xalliyo dhibaatadan, koodka weerarka Jaahwareerka Nooca waxaa lagu dhejiyaa shuruudo "haddii", kaas oo aan ku shaqeynin xaaladaha caadiga ah, laakiin waxaa lagu fuliyaa qaab male-awaal ah, haddii processor-ku si khaldan u saadaaliyo laamo dheeraad ah.
Natiijo ahaan, processor-ku wuxuu si mala-awaal ah u gelayaa tilmaame 64-bit ah oo la soo saaray oo dib ugu rogaa gobolka ka dib markii la go'aamiyay saadaasha fashilantay, laakiin raadadka fulinta ayaa ku sii jira kaydka la wadaago waxaana lagu soo celin karaa iyada oo la adeegsanayo habab lagu ogaanayo khasnado dhinaca-kanaalka ah oo falanqaynaya isbeddellada waqtiyada la geli karo xogta la kaydiyay iyo kuwa aan la kaydin Si loo falanqeeyo waxa ku jira khasnadda xaaladaha saxsanaanta ku filan ee saacada laga heli karo JavaScript, hab ay Google soo jeedisay ayaa la isticmaalaa, kaas oo khiyaameeya istaraatijiyadda ka saarista kaydka Tree-PLRU ee loo isticmaalo soo-saareyaasha una ogolaato, iyada oo la kordhinayo tirada wareegyada, si weyn u kordhiya farqiga u dhexeeya wakhtiga marka qiimihiisu jiro iyo ka maqan yahay kaydka.
Source: opennet.ru