This is WIP write-up. § praise LLM! While playing with spectre V2 side channel, I found an issue and LLM helped me to solve it in no time, that would otherwise cost me a lot of sanity. A shared memory between the victim and attacker processes is used as a probe array to exploit cache flush/reload timing attack I tried two differnet methods of creating it: a file-backed shared memory: int fd = open("shared_file", O_RDWR); void *shared_mem = mmap((addr, size, pflags, MAP_SHARED,...
No comments yet. Log in to reply on the Fediverse. Comments will appear here.