Zenbleed

This could be a problem you care about. Zenbleed:

We now know that basic operations like strlen, memcpy and strcmp will use the vector registers - so we can effectively spy on those operations happening anywhere on the system! It doesn’t matter if they’re happening in other virtual machines, sandboxes, containers, processes, whatever!

Comments

  • linveolinveo Hosting ProviderOG

    The blog post did a great job explaining what the problem is even to someone like me that does not work on low level programming. This is very interesting stuff.

    linveo.com | Shared Hosting | KVM VPS | Dedicated Servers

  • We now know that basic operations like strlen, memcpy and strcmp will use the vector registers - so we can effectively spy on those operations happening anywhere on the system! It doesn’t matter if they’re happening in other virtual machines, sandboxes, containers, processes, whatever!

    This works because the register file is shared by everything on the same physical core. In fact, two hyperthreads even share the same physical register file.

    Mentally strong provider always provisions dedicated cores, so that Zenbleed cannot affect across customers.

    Thanked by (1)hornet
  • @yoursunny said:
    Mentally strong provider always provisions dedicated cores, so that Zenbleed cannot affect across customers.

    Mentally strong customers always use Atom and Pentium, so that Zenbleed cannot affect them at all.

  • NeoonNeoon OGSenpai

    @yoursunny said:

    We now know that basic operations like strlen, memcpy and strcmp will use the vector registers - so we can effectively spy on those operations happening anywhere on the system! It doesn’t matter if they’re happening in other virtual machines, sandboxes, containers, processes, whatever!

    This works because the register file is shared by everything on the same physical core. In fact, two hyperthreads even share the same physical register file.

    Mentally strong provider always provisions dedicated cores, so that Zenbleed cannot affect across customers.

    Even if you have dedicated cores, does not mean they got pinned.

  • skorousskorous OGSenpai

    Some of us need to be able to do floating-point operations though.

  • @yoursunny said:

    We now know that basic operations like strlen, memcpy and strcmp will use the vector registers - so we can effectively spy on those operations happening anywhere on the system! It doesn’t matter if they’re happening in other virtual machines, sandboxes, containers, processes, whatever!

    This works because the register file is shared by everything on the same physical core. In fact, two hyperthreads even share the same physical register file.

    Mentally strong provider always provisions dedicated cores, so that Zenbleed cannot affect across customers.

    haha

Sign In or Register to comment.