Iqembu labacwaningi baseGraz University of Technology (Austria), phambilini elaziwa ngokuthuthukisa ukuhlasela kwe-MDS, NetSpectre, Throwhammer kanye neZombieLoad, lidalule imininingwane yokuhlasela okusha kwesiteshi eseceleni (i-CVE-2021-46778) kumugqa wokuhlela i-AMD. , esetshenziselwa ukuhlela ukukhishwa kwemiyalo kumayunithi ahlukene okwenziwa e-CPU. Ukuhlasela, okubizwa nge-SQUIP, kukuvumela ukuthi unqume idatha esetshenziswe ekubalweni kwenye inqubo noma umshini obonakalayo noma uhlele umzila wokuxhumana ofihliwe phakathi kwezinqubo noma imishini ebonakalayo ekuvumela ukuthi ushintshisane ngokudlula idatha ngokudlula izindlela zokulawula ukufinyelela kwesistimu.
Ama-CPU e-AMD asuselwe ku-2000st, 5000nd, kanye nesizukulwane sesithathu se-Zen microarchitectures (AMD Ryzen 3000-XNUMX, AMD Ryzen Threadripper, AMD Athlon XNUMX, AMD EPYC) ayathinteka uma kusetshenziswa i-Simultaneous Multithreading Technology (SMT). Ama-Intel processors awakwazi ukuhlasela, njengoba esebenzisa ulayini wesihleli esisodwa, kuyilapho amaphrosesa e-AMD asengozini esebenzisa imigqa ehlukene yeyunithi ngayinye yokwenza. Njengendlela yokusebenza ukuze uvimbele ukuvuza kolwazi, i-AMD yancoma ukuthi onjiniyela basebenzise ama-algorithms ahlala enza izibalo zezibalo ngesikhathi esingashintshi, kungakhathaliseki ukuthi yiluphi uhlobo lwedatha ecutshungulwayo, futhi bagweme ukuhlanganisa idatha eyimfihlo.
Ukuhlasela kusekelwe ekuhlolweni kwezinga lokuvela kombango (izinga lombango) emigqeni ehlukene yabahleli futhi kwenziwa ngesilinganiso sokubambezeleka lapho kuqala imisebenzi yokuhlola eyenziwa kwenye intambo ye-SMT ku-CPU efanayo ebonakalayo. Ukuze kuhlaziywe okuqukethwe, kusetshenziswe indlela ye-Prime + Probe, okusho ukugcwalisa umugqa ngesethi yereferensi yamanani nokunquma izinguquko ngokulinganisa isikhathi sokufinyelela kuzo lapho kugcwalisa kabusha.
Ngesikhathi sokuhlolwa, abacwaningi bakwazile ukudala kabusha ngokuphelele ukhiye oyimfihlo we-4096-bit RSA osetshenziswe ukudala amasiginesha edijithali kusetshenziswa ilabhulali ye-cryptographic ye-mbedTLS 3.0, esebenzisa i-algorithm ye-Montgomery ukuphakamisa inombolo kumodulo yamandla. Kuthathe imikhondo engu-50500 ukuthola ukhiye. Isikhathi sokuhlasela sesiphelele sithathe imizuzu engama-38. Izinhlobonhlobo zokuhlasela ziyaboniswa ezinikeza ukuvuza phakathi kwezinqubo ezihlukene nemishini ebonakalayo elawulwa i-hypervisor ye-KVM. Kuboniswa futhi ukuthi indlela ingasetshenziswa ukuhlela ukudluliswa kwedatha eyimfihlo phakathi kwemishini ebonakalayo ngenani elingu-0.89 Mbit/s naphakathi kwezinqubo ngenani elingu-2.70 Mbit/s ngenani lephutha elingaphansi kuka-0.8%.
Source: opennet.ru