Boka re Vatsvagiridzi vekuchengetedza kubva kuCode timu yakaburitswa purojekiti source code kuburitswa microcode decryptor uye izvo zvinobvumira kuita chaizvo zvinorehwa nezita: chishandiso, icho chine matatu Python scripts uye inowanikwa paGitHub.
Microcode Decryptor inobvumira kugadzirisa microcode yevamwe Intel processors seAtomu, Pentium, uye Celeron yakavakirwa paGoldmont neGoldmont Plus microarchitectures, inovhura musuwo kune akasiyana mamiriro, sekunzwisisa mashandisiro akaita Intel mamwe ma processor maficha kana kuita akasiyana maficha uye kuchengetedza kugadzirisa.
Iyo Red Unlock tekinoroji yakagadzirwa nevaongorori vakafanana muna 2020 inogona kushandiswa kubvisa iyo encrypted microcode. Iko kufungidzirwa mukana wekududzira iyo microcode inobvumira kuongorora iyo yemukati chimiro cheiyo microcode uye nzira dzekushandisa x86 mirairo yemuchina. Pamusoro pezvo, vaongorori vakadzora iyo firmware yekuvandudza fomati, iyo encryption algorithm, uye kiyi yakashandiswa kuchengetedza microcode (RC4).
Kuti uone kuti ndeipi kiyi ye encryption yekushandisa, kusagadzikana muIntel TXE kwakashandiswa kugonesa isina kunyorwa debug mode, codenamed "Red Unlock" nevatsvakurudzi. Mune debug mode, takakwanisa kurodha dump ine microcode inoshanda zvakananga kubva kuCPU uye kubvisa algorithm nemakiyi kubva mairi.
Microcode Decryptor inongobvumira kutsanangura iyo microcode, asi haibvumiri kuchichinja, sezvo kutendeseka kweiyo microcode kunosimbiswa zvakare nedhijitari siginecha yakavakirwa paRSA algorithm.
Nezve kuti kukura kweMicrocode Decryptor kwakagoneka sei, vanotaura kuti zvakaitika makore matatu apfuura apo Goryachy naErmolov vakawana kusagadzikana kwakanyanya, kwakanyorwa seIntel SA-00086, iyo yakavabvumira kuita kodhi yesarudzo yavo mukati meiyo chip-yakazvimirira. kernel, iyo yaisanganisira subsystem inozivikanwa seIntel Management Injini.
Intel yakagadzirisa bhugi uye yakaburitsa chigamba, asi nekuti machipi anogona kugara achitenderedzwa kumashure kune yakapfuura firmware vhezheni obva ashandiswa, hapana nzira yekunyatso bvisa njodzi.
Mushure meizvozvo (mwedzi mishanu yapfuura), vatatu vesaenzi vakakwanisa kushandisa kusazvibata kuwana sevhisi modhi yakavakwa muIntel chips, mukugutsurira bhaisikopo iro The Matrix, vaongorori vakatumidza chishandiso chavo kuwana ichi debugger yaimbove isina kunyorwa Chip Red. Piritsi, nekuti inobvumira vaongorori kuti vaone kushanda kwemukati kwechip iyo inowanzovharwa pamiganhu.
Mutauriri weIntel akati:
"Hapafanirwe kuve nenjodzi yekuchengetedza" nekuda kwekuvapo kwechishandiso. Asi izvo, kambani yakati kubvumira vanhu vazhinji kuti vatarise Intel's microcode inogona kubatsira iyo chipmaker kuona kusazvibata kwakawanda mune ramangwana. Kune chero munhu akabudirira kuita kudaro, zvinoreva kuti anogona kuwana imwe mari kuburikidza neIntel's bug bounty chirongwa.
"Kugona kwevatsvakurudzi kuongorora microcode kunogona kugonesa kuwanikwa kwehutsva hutsva. Sezvo iyi microcode yakafumurwa, Intel inokoka vaongorori kuti vatore chikamu muchirongwa che microcode bug bounty kana paine nyaya dzawanikwa, "vakatiudza.
Nekuda kwavo, vanogadzira chishandiso ichi vakataura izvozvo
"Mukana wekuverenga CPU microcode unogona kubatsira kunzwisisa mashandisiro akaita Intel matekinoroji akaita seIntel Trusted Execution Technology (TXT) kana kudzikisira kusazvibata kwakakura seMeltdown uye Specter."
Yermolov, mumwe wemamwe masayendisiti. akawedzera kuti kuwanikwa kwechombo kunoreva kuti vanhu ikozvino unogona kuongorora XuCode, 86-bit modhi x64 kodhi mutsauko inoshandiswa kuita zvikamu zveIntel SGX iyo inotorwa se microcode update. SGX tekinoroji yeIntel yekugadzira yakachengeteka memory enclaves: Idzi inzvimbo dzakachengetedzwa izvo zvimwe zvirongwa nevashandisi, kusanganisira iyo inoshanda sisitimu kana hypervisor, haigone kupindira.
XuCode inonakidza kwazvo: iyo x86-yakananga mirairo yekutarisira SGX enclaves yakaoma zvekuti yakatsemurwa kuita nhevedzano yeXuCode mirairo inoita mashandiro anodiwa.
Iyi XuCode mirairo ndeye 86-bit x64 architecture ine zvimwe zvekuwedzera, uye yakaputsika kuita yakajairwa x86 micro-operations ne processor. Kana application ichishandisa yakakwira-level SGX rairo, processor inogona kusvetukira kune yayo XuCode kushanda.
Aya maXuCode akateedzana akachengetwa mumicrocode uye anogona kutorwa nepamusoro Python zvinyorwa uye kuongororwa neyakajairwa x86 reverse engineering kits.
Finalmente kana iwe uchifarira kuziva zvakawanda nezvazvo Nezve chishandiso, unogona kutarisa ruzivo pa chinotevera chinongedzo.