Most active commenters
  • rwmj(3)

←back to thread

Intel x86 considered harmful – survey of attacks against x86 over last 10 years

(blog.invisiblethings.org)
276 points chei0aiV | 16 comments | 27 Oct 15 14:51 UTC | HN request time: 1.176s | source | bottom
Show context
pjc50 ◴[27 Oct 15 16:01 UTC] No.10458874[source]
"System management mode" is a tremendous wart and should be removed wholesale, with Intel adopting a more ARM-style trusted boot chain with explicit cooperation from the OS or hypervisor. And while you're at it, kill UEFI and install a pony for me.

(Seriously, SMM serves either bizarre ILO features that high-end vendors like but are rarely used, or security agencies looking for a layer to hide in.)

replies(5): >>10459094 #>>10459158 #>>10459893 #>>10460557 #>>10462796 #
1. rwmj ◴[27 Oct 15 16:35 UTC] No.10459158[source]
Actually ILO is pretty useful :-)

I have an APM (ARM64) Mustang, and this takes a rather different approach, but probably not one you'll think is better. The chip advertises 8 x 64 bit cores, but there's a 9th 32 bit core which runs all the time, even when the machine is powered down (although obviously still connected to mains power). It runs a separate firmware, in its own RAM, but can access the main memory at will and invisibly to the main OS.

One way to look at this is it's brilliant that we can just put a tiny Cortex-M3 in a spare bit of silicon and have it do useful management stuff.

replies(5): >>10459253 #>>10459344 #>>10460086 #>>10460423 #>>10462384 #
2. ctstover ◴[27 Oct 15 16:45 UTC] No.10459253[source]
Terrifying! Is there a way to disable that?
replies(2): >>10459365 #>>10459503 #
3. pgeorgi ◴[27 Oct 15 16:59 UTC] No.10459344[source]
That's more or less what the Management Engine (Intel) and Platform Security Processor (AMD) are. In the latter case, it's also some smaller ARM core.
4. bravo22 ◴[27 Oct 15 17:01 UTC] No.10459365[source]
I don't know which chip OP is using but no you can't. It is usually a small CPU which is part of the GPU video decoder that is used as the 'boot' processor. It usually executes first level ROM code and fetches the first stage boot loader from flash, USB, etc.

It can also do PMU control when the machine is 'turned off'. The alternative is to use an external microcontroller. It is actually quiet useful.

What is your reason for wanting to disable it?

replies(1): >>10459523 #
5. rwmj ◴[27 Oct 15 17:16 UTC] No.10459503[source]
It's basically a fundamental part of the SoC, so I doubt it could be disabled.
6. gvb ◴[27 Oct 15 17:18 UTC] No.10459523{3}[source]
It is another "DMA hacking" vector, one that is always on. https://en.wikipedia.org/wiki/DMA_attack
replies(1): >>10462768 #
7. pjc50 ◴[27 Oct 15 18:29 UTC] No.10460086[source]
It runs a separate firmware, in its own RAM, but can access the main memory at will and invisibly to the main OS

All watched over by hypervisors of loving grace.

How do you know what the firmware does? Is it even possible to inspect it, let alone replace it? It's just another part of the attack surface - not necessarily deliberately, but if there are exploitable bugs in that firmware that can be triggered from the rest of the system, it's another security risk.

replies(2): >>10460476 #>>10464198 #
8. rsync ◴[27 Oct 15 19:21 UTC] No.10460423[source]
"but there's a 9th 32 bit core which runs all the time, even when the machine is powered down"

So it's like the situation on mobile phones, with their baseband processors. Except on a general purpose computer.

Awesome.

9. rwmj ◴[27 Oct 15 19:28 UTC] No.10460476[source]
It's possible to update it, not sure about replacing it with ones own code. I know this is "whataboutism" but here goes: Is this different from Intel ME processors with their "hidden" Sparc core?

http://www.slideshare.net/codeblue_jp/igor-skochinsky-enpub

replies(1): >>10461156 #
10. msbarnett ◴[27 Oct 15 21:09 UTC] No.10461156{3}[source]
> Is this different from Intel ME processors with their "hidden" Sparc core?

Minor quibble: The IME is not Sun's SPARC architecture, it's ARC International's ARC, the Argonaut RISC Core, which has its origins in (of all things) the Super Nintendo's SuperFX chip.

replies(3): >>10461233 #>>10461274 #>>10462237 #
11. nickpsecurity ◴[27 Oct 15 21:20 UTC] No.10461233{4}[source]
Didn't even know they had ARC processors in them. That's a trip.
12. ◴[27 Oct 15 21:27 UTC] No.10461274{4}[source]
13. voltagex_ ◴[28 Oct 15 00:48 UTC] No.10462237{4}[source]
Is this what I've got in my Lenovo X1 with vPro? The Ctrl+P shortcut to get into the config at boot doesn't work - can I poke at it any other way?
14. hornetblack ◴[28 Oct 15 01:38 UTC] No.10462384[source]
I think x86 chips with Intel Active Management has the 'Management Engine' which runs an ARC processor with a ThreadX RTOS on it. It even has it's own network interface separate from the rest of the CPU. As far as I can tell this is for Enterprise users who need to manage the PC's and Rack computers remotely, even when the OS dies.

Most motherboard vendors also thrown stuff onto enterprise motherboards for doing things remotely. They can have issues: https://www.youtube.com/watch?v=GZeUntdObCA

15. bravo22 ◴[28 Oct 15 03:54 UTC] No.10462768{4}[source]
I have to disagree.

Those core execute the codes from their local SRAM which can only be written to under very specific conditions. You can't arbitrarily write to their SRAMs.

An SOC has various bus arbitrators that are built into hardware which control the dataflow. It is part of the chip's backbone. I've never seen an architecture in which you could easily write to the aux core's SRAM. This is partially because those cores are often responsible for DRM therefore access to them is very restricted, but also because it is expensive (in terms of gates) and unnecessary to hang them off the main bus.

It is a very unlikely "DMA hacking" vector.

The peripheral can just as easily DMA to main memory and overwrite kernel code if the memory apertures are set wide open to allow peripheral to DMA anything into the host. Additionally unless you have PCIe or a similar bus with mastering capability a peripheral can't DMA.

16. kbart ◴[28 Oct 15 13:12 UTC] No.10464198[source]
In case of high end Texas Instrument's ARM MCUs + Linux, M3 is used for power management. Though the firmware is provided as a binary blob and there's no way to control or check what it actually does (as far as I know).