ulwazi ku kumishini ene-Thunderbolt interface, ehlanganiswe ngaphansi kwegama lekhodi futhi idlule zonke izingxenye zokuphepha ezinkulu ze-Thunderbolt. Ngokusekelwe ezinkingeni ezikhonjiwe, kuhlongozwa izimo eziyisishiyagalolunye zokuhlasela, zisetshenziswe uma umhlaseli enokufinyelela kwasendaweni kusistimu ngokuxhuma idivayisi eyingozi noma ngokukhohlisa i-firmware.
Izimo zokuhlasela zihlanganisa ikhono lokudala izihlonzi zemishini ye-Thunderbolt engafanele, ukuhlanganisa amadivayisi agunyaziwe, ukufinyelela okungahleliwe kumemori yohlelo nge-DMA kanye nokweqa izilungiselelo Zezinga Lokuphepha, okuhlanganisa ukukhubaza ngokuphelele zonke izindlela zokuvikela, ukuvimba ukufakwa kwezibuyekezo ze-firmware nokuhunyushwa kwesixhumi esibonakalayo kumodi ye-Thunderbolt amasistimu akhawulelwe ku-USB noma ukudlulisa i-DisplayPort.
I-Thunderbolt iyisixhumi esibonakalayo sendawo yonke sokuxhuma amadivaysi e-peripheral ahlanganisa i-PCIe (PCI Express) ne-DisplayPort interface kukhebula eyodwa. I-Thunderbolt yathuthukiswa yi-Intel ne-Apple futhi isetshenziswa kumalaptop nama-PC amaningi esimanje. Imishini ye-Thunderbolt esekelwe ku-PCIe inikezwa nge-DMA I/O, ebeka usongo lokuhlaselwa kwe-DMA ukuze ifunde futhi ibhale yonke inkumbulo yesistimu noma ithwebule idatha kumadivayisi abethelwe. Ukuze kuvinjelwe ukuhlasela okunjalo, i-Thunderbolt ihlongoze umqondo Wamazinga Okuphepha, ovumela ukusetshenziswa kwamadivayisi agunyazwe umsebenzisi kuphela futhi isebenzise ukuqinisekiswa kwe-cryptographic kokuxhumana ukuze kuvikelwe ekukhohlisweni kwe-ID.
Ukuba sengozini okuhlonziwe kwenza kube nokwenzeka ukweqa lokho kubophezela futhi kuxhume idivayisi eyingozi ngaphansi kokucasha kwegunyaziwe. Ngaphezu kwalokho, kungenzeka ukuguqula i-firmware futhi ushintshe i-SPI Flash ibe yimodi yokufunda kuphela, engasetshenziswa ukukhubaza ngokuphelele amazinga okuphepha kanye nokwenqabela ukubuyekezwa kwe-firmware (izinsiza sezilungiselelwe ukukhohlisa okunjalo. и ). Sekukonke, imininingwane ngezinkinga eziyisikhombisa idaluliwe:
- Ukusetshenziswa kwezikimu zokuqinisekisa i-firmware ezinganele;
- Ukusebenzisa isikimu sokuqinisekisa idivayisi esibuthakathaka;
- Ilayisha imethadatha kusuka kudivayisi engagunyaziwe;
- Ukutholakala kwezindlela zokubuyela emuva ezihambisanayo ezivumela ukusetshenziswa kokuhlasela kokuhlehlisa ;
- Ukusebenzisa imingcele yokumisa isilawuli esingagunyaziwe;
- Amaphutha kusixhumi esibonakalayo se-SPI Flash;
- Ukuntuleka kwezinto zokuzivikela ezingeni .
Ukuba sengozini kuthinta wonke amadivayisi ahlonyiswe nge-Thunderbolt 1 no-2 (i-Mini DisplayPort based) kanye ne-Thunderbolt 3 (based USB-C). Akukacaci ukuthi izinkinga ziyavela yini kumadivayisi ane-USB 4 ne-Thunderbolt 4, njengoba lobu buchwepheshe busanda kumenyezelwa futhi ayikho indlela yokuhlola ukuqaliswa kwabo okwamanje. Ubungozi abunakuqedwa isofthiwe futhi budinga ukuklanywa kabusha kwezingxenye zehadiwe. Kodwa-ke, kwamanye amadivaysi amasha kungenzeka ukuvimba ezinye zezinkinga ezihlobene ne-DMA usebenzisa umshini , ukwesekwa okwaqala ukusetshenziswa kusukela ngo-2019 ( ku-Linux kernel, ukuqala ngokukhululwa okungu-5.0, ungabheka ukufakwa nge-“/sys/bus/thunderbolt/devices/domainX/iommu_dma_protection”).
Iskripthi sePython sinikezwa ukuhlola amadivayisi akho , okudinga ukusebenza njengempande ukuze ufinyelele i-DMI, ithebula le-ACPI DMAR kanye ne-WMI. Ukuze uvikele amasistimu asengozini, sincoma ukuthi ungashiyi isistimu ingagadiwe noma ikumodi yokulinda, ungaxhumi izisetshenziswa zomunye umuntu ze-Thunderbolt, ungashiyi noma unike abanye idivayisi yakho, futhi uqinisekise ukuthi amadivayisi akho avikelekile ngokomzimba. Uma i-Thunderbolt ingadingeki, kuyanconywa ukuthi ukhubaze isilawuli se-Thunderbolt ku-UEFI noma i-BIOS (lokhu kungase kubangele ukuthi izimbobo ze-USB ne-DisplayPort zingasebenzi uma zisetshenziswa ngesilawuli se-Thunderbolt).
Source: opennet.ru