Boka re vaongorori kubva kuFree University yeAmsterdam vakazivisa kuburikidza ne blog post mudziyo unonzi "casper" izvo zvinoratidza kuti ndizvo yakagadzirirwa kuona macode snippets muLinux kernel iyo inogona kushandiswa kushandisa Specter class vulnerabilities inokonzerwa nekufungidzira kodhi kuuraya ne processor.
Kune avo vasingazive nezverudzi urwu rwekurwisa, vanofanirwa kuzviziva kirasi kusasimba senge Specter v1 inobvumira kuona zviri mukati mendangariro, imwe script (magajeti) anodiwa mune yakasarudzika kodhi, zvichitungamira kune fungidziro yekuitwa kwemirairo.
Ku optimize, processor inotanga kumhanyisa michina yakadaro nenzira yekufungidzirakana, yobva yaona kuti kufanotaura kwebazi hakuna kururamiswa uye kudzosera mashandiro kumamiriro avo ekutanga, asi data rakagadziriswa panguva yekufungidzira rinogara mu cache uye microarchitecture buffers uye rinowanikwa kuti ribviswe uchishandisa nzira dzakasiyana siyana dzekutemesa data kuburikidza nechitatu- maparty channels.
Gadget Scan Tools zvichibva pamaitiro yaimbovepo nokuda kweSpectr vulnerabilitye akaratidza mwero wakanyanya wekunyepa kwenhema, nepo midziyo chaiyo yakawanda yakarasika (miedzo yakaratidza kuti 99% yezvishandiso zvakaonekwa nemidziyo yakadaro zvaisagona kushandiswa pakurwisa, uye 33% yezvishandiso hazvina kucherechedzwa midziyo inokwanisa kutungamira kurwisa).
Kuunza Kasper, yenguva pfupi (kana yekufungidzira) yekuuraya mudziyo scanner. Inoshandisa mitemo yekuongorora huwori kuenzanisira munhu anorwisa anokwanisa kushandisa zvisina tsarukano software/hardware kusazvibata munzira inofamba.
About Casper
Kuvandudza mhando yekuzivikanwa kwemidziyo ine dambudziko, Kasper anoenzanisira kusasimba kunogona kushandiswa nemunhu anorwisa panhanho imwe neimwe yeSpecter-class kurwisa: matambudziko anoteedzerwa kubvumidza kudzora data (semuenzaniso, kutsiviwa kweanorwisa dhata kuita madiki maumbirwo zvimiro kuti zvipe hunotevera kufungidzira kuuraya) uchishandisa LVI-kirasi kurwisa, kuwana ruzivo rwakadzama (semuenzaniso, kana buffer yabuda mumiganhu kana ndangariro inoshandiswa mushure mekunge yasunungurwa), uye inoburitsa ruzivo rwakadzama (semuenzaniso, nekupatsanura mamiriro e processor cache kana kushandisa iyo MDS nzira).
Muenzaniso munhu anorwisa anokwanisa kudzora data (semuenzaniso, kuburikidza nememory massage kana LVI kukosha jekiseni), kuwana zvakavanzika (semuenzaniso, kuburikidza-ye-ye-ma-boundary kuwana kana kushandisa mushure memahara) uye kuburitsa zvakavanzika izvi (semuenzaniso, kuburikidza ne-cache-based, MDS- yakavakirwa, kana chiteshi kukakavara-kwakavakirwa pakavanda nzira).
Pakuita bvunzo, kernel contacts runtime library by Kasper uye ona kuti vanoshanda padanho reLLVM. Munguva yekusimbisa, kufungidzira kwekodhi kuuraya kunoteedzerwa neyekutarisa yekudzorera michina, iyo inonyatso shandisa zvisizvo kufanotaura forogo yekodhi, mushure mezvo inodzokera kumamiriro ayo epakutanga forogo isati yatanga.
Kasper anoedzawo kuenzanisira kwakasiyana-siyana software uye hardware kushaya simba, inoongorora pesvedzero yezvivakwa uye microarchitectural mhedzisiro uye inoita bvunzo dzisinganzwisisiki dzezvingangoitika zveanorwisa. Pakuongororwa kwekuyerera kwekuuraya, chiteshi cheDataFlowSanitizer cheLinux kernel chinoshandiswa, uye kune bvunzo dzinotyisa, yakagadziridzwa vhezheni yesyzkaller package.
Nekuda kweizvozvo, Kasper akawana 1.379 michina yaimbozivikanwa muLinux kernel yakaomeswa. Isu takasimbisa zvatakawana nekuratidza kuguma-ku-kuguma-kwe-pfungwa kushandiswa kweimwe yemidziyo yakawanikwa.
Ndichiri kuongorora Linux kernel neKasper, 1379 michina yaimbove isingazivikanwe yakaonekwa, izvo zvinogona kutungamira mukudonha kwedata panguva yekufungidzira kuurayiwa kwemirairo.
Zvinocherechedzwa kuti zvimwe chete zvimwe zvacho zvinogona kuunza matambudziko chaiwo, asi kuratidza kuti kune njodzi chaiyo, uye kwete yekufungidzira chete, prototype inoshanda yekubata yakagadziridzwa kune imwe yematambudziko kodhi snippets, izvo zvakaita kuti kudonha kweruzivo rwe kernel memory.
Finalmente kana iwe uchifarira kuziva zvakawanda nezvazvo nezveKasper, iwe unofanirwa kuziva izvozvo iyo kodhi kodhi Iyo yakagoverwa pasi peiyo Apache 2.0 rezinesi.
mabviro: https://www.vusec.net