CN102830990A - Computer system starting method and computer terminal - Google Patents

Computer system starting method and computer terminal Download PDF

Info

Publication number
CN102830990A
CN102830990A CN2012102543696A CN201210254369A CN102830990A CN 102830990 A CN102830990 A CN 102830990A CN 2012102543696 A CN2012102543696 A CN 2012102543696A CN 201210254369 A CN201210254369 A CN 201210254369A CN 102830990 A CN102830990 A CN 102830990A
Authority
CN
China
Prior art keywords
routine
program
checking
stage1
main usefulness
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN2012102543696A
Other languages
Chinese (zh)
Inventor
谭鹏
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Datang Mobile Communications Equipment Co Ltd
Original Assignee
Datang Mobile Communications Equipment Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Datang Mobile Communications Equipment Co Ltd filed Critical Datang Mobile Communications Equipment Co Ltd
Priority to CN2012102543696A priority Critical patent/CN102830990A/en
Publication of CN102830990A publication Critical patent/CN102830990A/en
Pending legal-status Critical Current

Links

Images

Landscapes

  • Stored Programmes (AREA)

Abstract

The invention discloses a computer system starting method and a computer terminal. The computer system starting method comprises the following steps of: operating a program self-detection hardware state of a BIOS (Basic Input-Output System) after starting; reading and executing a MBR (Master Boot Record) program in a disk after self-detection; in an MBR program executing program, guiding and loading a trusted guide program; guiding and loading a main starting program stored in the disk after loading the trusted guiding program; in a process of loading the trusted guiding program, reading the main starting program stored in the disk so as to carry out credibility verification; when the credibility verification is not passed, reading the corresponding standby starting program in the disk to replace the main starting program which is not verified; and in a process of loading the main starting program stored in the disk, completing the starting program. According to the computer system starting method and the computer terminal provided by the invention, the starting process is safe and trusted.

Description

A kind of computer system starting method and terminal
Technical field
The present invention relates to the device start technical field, relate in particular to a kind of computer system starting method and terminal.
Background technology
In computer system, start-up course is the basis of all behaviors of system.The physical equipment and the state of operating system own of not only load operation system of start-up course itself, responsible initializing computer system, start-up system is kept necessary trusted process of normal operation and relevant service routine simultaneously.Because any errors and omissions of start-up course all possibly make operating system get into uncertain precarious position, therefore guarantee that the safety of start-up course is crucial.
In the linux system platform, as shown in Figure 1, the existing computer system start-up course mainly comprises following flow process:
Step 101 after system powers on, is moved BIOS (Basic Input Output System, Basic Input or Output System (BIOS)) self check hardware state earlier;
Step 102 is read the MBR (Main Boot Record MBR) of hard disk, is specially the phase one Programm tage1 that reads GRUB (GRand Unified Bootloader), and stage1 is a bootstrap loader.
GRUB is a multiboot manager; It can select which system of guiding when a plurality of operating systems coexist; It can be written into the kernel file and the initialization operation system (like Linux) of operating system, perhaps gives operating system (like Windows) guiding power and accomplishes guiding.
GRUB is the software that except that the BIOS program curing, moves at first, is responsible for being written into real operating system, is appreciated that to be a subminiature OS (Operating System, operating system).
The operation of general GRUB is totally two stages, mainly is divided into the operation of phase one Programm tage1 and the operation of subordinate phase Programm tage2.Stage1 is positioned at the MBR sector as the MBR (Main Boot Record, MBR) of starting outfit.
Having comprised the treatment scheme that can carry out user interactions among the stage2, in fact is exactly a small-sized OS.Can select to determine the operating system version and the correlation parameter that are written into through stage2, stage2 also provides some specific functions in addition, like encryption, network and optical disk start-up etc.
Step 103 begins to carry out the stage1 of GRUB, and the execution of stage1 can load and executive routine start;
Step 104 judges whether GRUB supports stage1_5, if do not support execution in step 105, otherwise execution in step 105 ';
Step 105, the start that stage1 loads is with the disk sector form but not file system form loader stage2.
Step 105 ', the start that stage1 loads loads stage1_5 earlier, gets into the cmain of stage1_5;
Step 106 ', the file system of supporting through stage1_5 drives, and loads stage2 through file system;
When stage1_5 is loaded, give the ability that GRUB reads file system directories, can from file system directories, find out the position of stage2 can not find under the situation of stage2.
Therefore, if GRUB supports stage1_5, then the start of stage1 loading directly removes to load stage2, but loads stage1_5 earlier, and the file system driving of supporting through stage1_5 then loads stage2 through file system.
Step 107, calling program run_menu is with the operating system of confirming to get into;
Wherein, if multisystem provides the user to select the operating system that will get into, surpass the non-selected entering default system of setting-up time the user; If single system then can or can not be pointed out the user, get into this unique operating system.
Step 108, calling program boot_func is to call corresponding kernel file start-up operation operation.
Stage1 is positioned at the MBR sector, specifically is positioned at 0 sector of 0 cylinder, 0 magnetic track, and size is 512 bytes (388 syllabified codes+58 byte BIOS parameter block BPB information+64 byte partition tables+2 byte flag 55AA).Start is positioned at 0 cylinder, 0 magnetic track, 1 sector.If support stage1_5, stage1_5 is positioned at 2 sectors of 0 cylinder, 0 magnetic track, and at this time stage2 just can be written into file mode, otherwise stage2 is positioned at 2 sectors of 0 cylinder, 0 magnetic track.These all are that GRUB is just ready in the system of being installed to.
Existing computer starting method has following defective:
1) there is hidden danger in the upgrading of GRUB and kernel file, can cause bust when use in the outfield;
Present existing GRUB edition upgrading is adopt to rewrite operations such as MBR subregion, replacement stage2 and menu file to realize, need be in this process with software download to terminal, and replace by force, kernel file also is same flow process.If unpredictable problems such as file corruption in transmission course, occur, can cause equipment veneer normally not start after the upgrading by force.
When 2) GRUB starts failure, there is not subsequent use startup function;
The veneer of present most x86 frameworks does not all carry out main-apparatus protection for the GRUB part, promptly when GRUB starts failure, because this locality does not have subsequent use GRUB, causes single board starting unusual, and necessary manual intervention prolongs the time of dealing with problems.
Summary of the invention
The present invention provides a kind of computer system starting method and terminal, and is credible in order to guarantee the computer system starting process safe.
The present invention provides a kind of computer system starting method, comprising:
Start back operation basic input-output system BIOS program self check hardware state;
Read and carry out the MBR MBR program in the disk after the self check, in the MBR program process, Bootstrap Loading trusted bootstrap program, and after having loaded the trusted bootstrap program, the start-up routine of the main usefulness of Bootstrap Loading disk storage;
Said trusted bootstrap program is in loading procedure, and the start-up routine of the main usefulness of reading disk storage carries out the credibility checking; During not through checking, the start-up routine of the main usefulness of checking is not passed through in corresponding subsequent use start-up routine replacement in the reading disk;
The startup journey of the main usefulness of said disk storage is accomplished start-up course in loading procedure.
The present invention also provides a kind of terminal, comprising:
Self-test unit is used to start back operation basic input-output system BIOS program self check hardware state;
Start guidance unit, be used for reading and carrying out after the self check MBR MBR program of disk, in the MBR program process, Bootstrap Loading trusted bootstrap program, and after having loaded the trusted bootstrap program, the start-up routine of the main usefulness of Bootstrap Loading disk storage;
Said trusted bootstrap program is in loading procedure, and the start-up routine of the main usefulness of reading disk storage carries out the credibility checking; During not through checking, the start-up routine of the main usefulness of checking is not passed through in corresponding subsequent use start-up routine replacement in the reading disk;
The startup journey of the main usefulness of said disk storage is accomplished start-up course in loading procedure.
Utilize computer system starting method provided by the invention and terminal; Has following beneficial effect: at first carry out MBR after accomplishing self check; This MBR program implementation at first Bootstrap Loading trusted bootstrap program reboots the normal required program that starts that loads; Thereby realize the start-up routine in each stage in the start-up course is carried out credibility checking, utilize the subsequent use start-up routine of storing to replace when credible in that start-up routine is dangerous, thereby guaranteed the secure and trusted of start-up course; The embodiment of the invention subsequent use start-up routine that automaticallyes switch, credible start-up course do not need artificial the intervention, have effectively avoided the system upgrade potential safety hazard to cause the problem that can not normally start.
Description of drawings
Fig. 1 is existing computer system starting process flow diagram;
Fig. 2 is a computer system starting method process flow diagram of the present invention;
Fig. 3 is an embodiment of the invention disk partition form synoptic diagram;
Fig. 4 is a computer system starting method process flow diagram in the embodiment of the invention;
Fig. 5 is an embodiment of the invention terminal structural drawing.
Embodiment
Provide computer system starting method and terminal to illustrate in greater detail below in conjunction with accompanying drawing and embodiment to the present invention.
The embodiment of the invention is utilized the notion of credible transmission, and a kind of scheme of safe guidance is provided, and is as shown in Figure 2, and the computer system starting method that the embodiment of the invention provides comprises:
Step 201 starts back operation basic input-output system BIOS program self check hardware state;
BIOS is one group of program that is cured in the computing machine on the mainboard on the rom chip, and program, the system of the most important basic input and output of its in store computing machine is provided with information, start back self-check program and system's self-triggered program.Its major function provides the bottom, the most directly hardware setting and control for computing machine.
Main frame reads BIOS, and after understanding main host hardware information, main frame just begins to attempt the load operation system.What main frame at first read is exactly the MBR MBR program in the disk.
Step 202 reads and carries out the MBR MBR program in the disk after the self check, in the MBR program process, and Bootstrap Loading trusted bootstrap program, and after having loaded the trusted bootstrap program, the start-up routine of the main usefulness of Bootstrap Loading disk storage;
Said trusted bootstrap program is in loading procedure, and the start-up routine of the main usefulness of reading disk storage carries out the credibility checking; During not through checking, the start-up routine of the main usefulness of checking is not passed through in corresponding subsequent use start-up routine replacement in the reading disk;
The startup journey of the main usefulness of said disk storage is accomplished start-up course in loading procedure.
It is first sector on the hard disk that the MBR program is positioned at, i.e. disk 0 cylinder 0 magnetic track 0 sector, the start-up course of vectoring computer from here on.
The MBR program that carry out the back is accomplished in embodiment of the invention self check, Bootstrap Loading trusted bootstrap program at first, thus article one that system's control is normally given the trusted bootstrap program is instructed.After having loaded the trusted bootstrap program, the start-up routine that reboots the main usefulness that loads disk storage is accomplished start-up course, promptly begins normal start-up course.
The start-up routine of the main usefulness of being verified in the embodiment of the invention is specially the start-up routine that each stage need load in the existing start-up course.
MBR program implementation in the embodiment of the invention; Made before normal the startup; At first the program of start-up course is carried out credibility checking through the trusted bootstrap program, and the embodiment of the invention backs up to the program in the start-up course, thereby at start-up routine during not through checking; Utilize the start-up routine of backup to replace incredible start-up routine; Thereby realized trusted recovery, after accomplishing trusted recovery, again system's control has been given the start-up routine of main usefulness, thereby guaranteed the secure and trusted of start-up course; The embodiment of the invention subsequent use start-up routine that automaticallyes switch, credible start-up course do not need artificial the intervention, have improved the efficient of fault recovery in the start-up course.
For the former start-up routine of not upgrading, backed up former start-up routine in the embodiment of the invention, the trusted bootstrap program is used to verify former start-up routine.If computing machine carries out start-up routine upgrading, the start-up routine after the backup upgrading in escalation process then, the trusted bootstrap process is used to verify that the master after the upgrading uses start-up routine.Thereby effectively avoided the system upgrade potential safety hazard to cause the problem that can not normally start.
Preferably, the embodiment of the invention is applied to the startup of (SuSE) Linux OS.Further preferably, can be applicable to the startup of (SuSE) Linux OS under the X86 framework.
Description by the background technology part can be found out; Start-up course is the basis of all behaviors of system; The normal operation of GRUB is the critical behavior before (SuSE) Linux OS starts, and we can say that the startup of guaranteeing GRUB is safely the most important thing of whole operation system loads.
Multiboot manager GRUB is responsible for being written into real operating system, and the operation of GRUB is totally two stages, mainly is divided into the operation of phase one Programm tage1 and the operation of subordinate phase Programm tage2.Stage1 is used to guide the loading of the required program of start-up course, and stage2 is in order to draw more senior function, loads a specific operating system to allow the user, the loading of stage2 can be guided out operating system kernel file in the operation of program.
For credible all the time in the GRUB vectoring phase, the assurance system preferably, carries out credibility checking start-up routine in the safety in this stage in the embodiment of the invention, comprise the phase one Programm tage1 of multiboot manager GRUB.
Having write down the partition boot sector of each start-up routine in the MBR program, is 0 sector of 0 cylinder, 0 magnetic track like the partition boot sector of stage1; The partition boot sector of start is 0 cylinder, 0 magnetic track, 1 sector; If support stage1_5, the partition boot sector of stage1_5 is 2 sectors of 0 cylinder, 0 magnetic track, if do not support stage1_5, then the partition boot sector of stage2 is 2 sectors of 0 cylinder, 0 magnetic track.
Active and standby in the embodiment of the invention with the partition boot sector that comprises this start-up routine in the start-up routine; Thereby make the MBR program can be according to partition boot sector; Load each start-up routine by the normal flow process that starts, when loading start-up routine, need put it into internal memory and operation.
Preferably, in the MBR program process, the start-up routine of the main usefulness of Bootstrap Loading disk storage comprises:
Partition boot sector according to the stage1 that writes down in the MBR program; Read the stage1 of main usefulness and be loaded into internal memory; Be that the partition boot sector that has write down stage1 in the MBR program is 0 cylinder, 0 magnetic track the 0th sector; Then arrive the master and use the start-up routine deposit position, searching partition boot sector information is the start-up routine and the loading of 0 cylinder, 0 magnetic track the 0th sector;
Said stage1 in being loaded into the process of internal memory, the program that the Bootstrap Loading start-up course is required.
Preferably, the start-up routine of the main usefulness of present embodiment reading disk storage carries out the credibility checking, specifically comprises:
All information of the start-up routine of the main usefulness of reading disk storage are verified the integrality and the correctness of the start-up routine of said main usefulness; And/or
Partition boot sector in the start-up routine of the main usefulness of reading disk storage, checking whether with the MBR program in partition boot sector in the start-up routine of the main usefulness that writes down consistent.
The integrality and the correctness of checking start-up routine can guarantee that program code is correct.
For start-up routine; The partition boot sector of record start-up routine among the MBR; Load corresponding start-up routine as guidance information, need therefore to verify whether the partition boot sector information that writes down in the start-up routine of main usefulness is correct, guarantees that start-up routine can normally move.
Particularly, subsequent use start-up routine according to setting rule calculating digest value and being kept in advance in the disk, is then verified the integrality and the correctness of the start-up routine of main usefulness, specifically comprises:
All information to the start-up routine of the main usefulness that reads are calculated digest value according to setting rule;
Confirm whether whether said digest value consistent with the digest value of the corresponding subsequent use start-up routine of preserving, if consistent, then checking is passed through, otherwise checking is not passed through.
Particularly, the partition boot sector in the start-up routine of the main usefulness of reading disk storage, checking whether with the MBR program in partition boot sector in the start-up routine of the main usefulness that writes down consistent, specifically comprise:
According to the digest value of the partition boot sector in the start-up routine of the main usefulness of setting rule calculating disk storage, and the digest value of the partition boot sector in the start-up routine of the main usefulness that writes down in the MBR program;
If two digest value unanimities calculating, then checking is passed through, otherwise checking is not passed through.
Specifically can adopt the digest value of any calculation procedure in the existing digest value algorithm.
Preferably right, to following start-up routine, lead the integrality and the verification of correctness of the start-up routine of usefulness:
The phase one Programm tage1 of multiboot manager GRUB, said stage1 is used to guide the loading of the required program of start-up course;
Program in the kernel file of operating system.
Preferably right, to following start-up routine, verify the partition boot sector in the start-up routine of main usefulness, whether with the MBR program in partition boot sector in the start-up routine of the main usefulness that writes down consistent:
The phase one Programm tage1 of multiboot manager GRUB verifies promptly whether the partition boot sector that writes down among the stage1 is 0 sector of 0 cylinder, 0 magnetic track;
Required program in the start-up course that under the guiding of stage1, is loaded.
Preferably, when computer system was supported working procedure stage1_5, the following program that is loaded under the guiding to stage1 was carried out the partition boot sector checking:
Programm tart is used for loading procedure stage1_5, verifies promptly whether the partition boot sector that writes down among the start is 1 sector of 0 cylinder, 0 magnetic track;
Programm tage1_5 is used for the subordinate phase Programm tage2 through file system loading GRUB, verifies promptly whether the partition boot sector that writes down among the stage1_5 is 2 sectors of 0 cylinder, 0 magnetic track.
When computer system is not supported working procedure stage1_5, the following following program that loads of the guiding of stage1 is carried out the partition boot sector checking:
Programm tart is used for disk sector form loading procedure stage2, verifies promptly whether the partition boot sector that writes down among the start is 1 sector of 0 cylinder, 0 magnetic track;
Programm tage2 verifies promptly whether the partition boot sector that writes down among the stage2 is 2 sectors of 0 cylinder, 0 magnetic track.
Provide the preferred embodiment of computer system of the present invention below.
As shown in Figure 3, in the present embodiment, deposit the MBR program in disk 0 cylinder 0 magnetic track 0 sector; The MBR program is stage1 in the prior art; The MBR program is different from MBR program of the prior art in the present embodiment, is called pre-service MBR, and stage1 and other start-up routines leave other sectors except that MBR sector (disk 0 cylinder 0 magnetic track 0 sector) in; Disk to comprise 64 sectors is an example, leaves other 63 reserve sectors in.
As shown in Figure 4, the present embodiment computer system starting method comprises following flow process:
Step 401 starts back operation basic input-output system BIOS program self check hardware state;
Step 402 reads and carries out the start-up routine that MBR MBR program designation in the disk loads the main usefulness of storing in trusted bootstrap program and the disk after the self check;
Step 403, trusted bootstrap program in loading procedure, execution in step 403a ~ 403d;
Step 403a, the main stage1 that uses of reading disk storage, whether checking is main correct with stage1; If correct, execution in step 403b, otherwise execution in step 403b '; Whether the digest value of wherein specifically verifying stage1 is consistent with the digest value of the subsequent use stage1 of calculated in advance;
Step 403b ' shows that error message gets into trusted recovery, adopts the stage1 replacement of backing up in the disk not pass through the stage1 of checking, execution in step 403b;
Step 403b, whether the partition boot sector of checking start-up routine is correct, if correct; Execution in step 403c, otherwise, execution in step 403c '; The start-up routine of concrete checking, and mode how to verify the partition boot sector of start-up routine sees before and states the description of embodiment, no longer repeats here;
Step 403c ' shows that error message gets into trusted recovery, adopts partition boot sector replacement correct in the disk not pass through the partition boot sector of checking, execution in step 403c;
Step 403c, whether the program in the kernel file of verification operation system is correct, if correct, execution in step 404, otherwise, execution in step 403d;
Step 403d shows that error message gets into trusted recovery, adopts the program in the kernel file correct in the disk to replace through the program in the kernel file of checking, execution in step 404;
Step 404 is transferred system's control the stage1 of main usefulness to, promptly according to the partition boot sector of the stage1 that writes down in the MBR program; Read the stage1 of main usefulness and be loaded into internal memory, carry out the stage1 that is loaded into internal memory, under the guiding of stage1, load the required program of start-up course; Thereby get into normal bootup process; Particularly, after the trusted bootstrap program is complete, the stage1 file of main usefulness is reloaded to internal memory 0x7c00 place.
The embodiment of the invention has proposed a kind of believable startup guidance mode; The difference main with the normal guidance mode is; Before control is transferred to next directing assembly, at first carry out credible checking, to determine whether to carry out the transfer of control to starting each stage.
The embodiment of the invention utilizes the mode of credible transmission to guarantee the success of GRUB guiding (SuSE) Linux OS; May occur starting under the unusual situation when detecting current bootup process, use trusted file to replace insincere file, guarantee that bootup process is normal;
With respect to prior art what major advantage is arranged
When 1) being applied to the X86 framework, guarantee the secure and trusted of Linux start-up course under the X86 framework;
When 2) providing GRUB to start failure, the subsequent use start-up routine that automaticallyes switch, and the information of misprint file;
3) credible start-up course does not need artificial the intervention, and programming automation is carried out.
Based on same inventive concept; A kind of terminal also is provided in the embodiment of the invention; Because the principle of dealing with problems in this terminal is similar with a kind of computer system starting method, so the enforcement at this terminal can repeat part and repeat no more referring to the enforcement of method.
The terminal that the embodiment of the invention provides, as shown in Figure 5, comprising:
Self-test unit 501 is used to start back operation basic input-output system BIOS program self check hardware state;
Start guidance unit 502; Be used for reading and carrying out after the self check MBR MBR program of disk, in the MBR program process, Bootstrap Loading trusted bootstrap program; And after having loaded the trusted bootstrap program, the start-up routine of the main usefulness of Bootstrap Loading disk storage;
Said trusted bootstrap program is in loading procedure, and the start-up routine of the main usefulness of reading disk storage carries out the credibility checking; During not through checking, the start-up routine of the main usefulness of checking is not passed through in corresponding subsequent use start-up routine replacement in the reading disk;
The startup journey of the main usefulness of said disk storage is accomplished start-up course in loading procedure.
Preferably; Said start-up routine comprises the phase one Programm tage1 of multiboot manager GRUB, and said stage1 is used to guide the loading of the required program of start-up course, then in the MBR program process; The start-up routine of the main usefulness of Bootstrap Loading disk storage comprises:
According to the partition boot sector of the stage1 that writes down in the MBR program, read the stage1 of main usefulness and be loaded into internal memory;
Said stage1 in being loaded into the process of internal memory, the program that the Bootstrap Loading start-up course is required.
Preferably, the start-up routine of the main usefulness of reading disk storage carries out the credibility checking, specifically comprises:
All information of the start-up routine of the main usefulness of reading disk storage are verified the integrality and the correctness of the start-up routine of said main usefulness; And/or
Partition boot sector in the start-up routine of the main usefulness of reading disk storage, checking whether with the MBR program in partition boot sector in the start-up routine that writes down consistent.
Preferably, subsequent use start-up routine according to setting rule calculating digest value and being kept in advance in the disk, is then verified the integrality and the correctness of the start-up routine of main usefulness, specifically comprises:
All information to the start-up routine of the main usefulness that reads are calculated digest value according to setting rule;
Confirm whether whether said digest value consistent with the digest value of the corresponding subsequent use start-up routine of preserving, if consistent, then checking is passed through, otherwise checking is not passed through.
Preferably, said start-up routine comprises following program:
The phase one Programm tage1 of multiboot manager GRUB, said stage1 is used to guide the loading of the required program of start-up course;
Program in the kernel file of operating system.
Preferably, the partition boot sector in the start-up routine of the main usefulness of reading disk storage, whether checking is consistent with the partition boot sector of the start-up routine that writes down in the MBR program, specifically comprises:
According to the digest value of the partition boot sector in the start-up routine of the main usefulness of setting rule calculating disk storage, and the digest value of the partition boot sector of the start-up routine that writes down in the MBR program;
If two digest value unanimities calculating, then checking is passed through, otherwise checking is not passed through.
Preferably, said start-up routine comprises following program:
The phase one Programm tage1 of multiboot manager GRUB, said stage1 is used to guide the loading of the required program of start-up course;
Required program in the start-up course that under the guiding of stage1, is loaded.
Those skilled in the art should understand that embodiments of the invention can be provided as method, system or computer program.Therefore, the present invention can adopt the form of the embodiment of complete hardware embodiment, complete software implementation example or combination software and hardware aspect.And the present invention can be employed in the form that one or more computer-usable storage medium (including but not limited to magnetic disk memory, CD-ROM, optical memory etc.) that wherein include computer usable program code go up the computer program of implementing.
The present invention is that reference is described according to the process flow diagram and/or the block scheme of method, equipment (system) and the computer program of the embodiment of the invention.Should understand can be by the flow process in each flow process in computer program instructions realization flow figure and/or the block scheme and/or square frame and process flow diagram and/or the block scheme and/or the combination of square frame.Can provide these computer program instructions to the processor of multi-purpose computer, special purpose computer, Embedded Processor or other programmable data processing device to produce a machine, make the instruction of carrying out through the processor of computing machine or other programmable data processing device produce to be used for the device of the function that is implemented in flow process of process flow diagram or a plurality of flow process and/or square frame of block scheme or a plurality of square frame appointments.
These computer program instructions also can be stored in ability vectoring computer or the computer-readable memory of other programmable data processing device with ad hoc fashion work; Make the instruction that is stored in this computer-readable memory produce the manufacture that comprises command device, this command device is implemented in the function of appointment in flow process of process flow diagram or a plurality of flow process and/or square frame of block scheme or a plurality of square frame.
These computer program instructions also can be loaded on computing machine or other programmable data processing device; Make on computing machine or other programmable devices and to carry out the sequence of operations step producing computer implemented processing, thereby the instruction of on computing machine or other programmable devices, carrying out is provided for being implemented in the step of the function of appointment in flow process of process flow diagram or a plurality of flow process and/or square frame of block scheme or a plurality of square frame.
Although described the preferred embodiments of the present invention, in a single day those skilled in the art get the basic inventive concept could of cicada, then can make other change and modification to these embodiment.So accompanying claims is intended to be interpreted as all changes and the modification that comprises preferred embodiment and fall into the scope of the invention.
Obviously, those skilled in the art can carry out various changes and modification to the present invention and not break away from the spirit and scope of the present invention.Like this, belong within the scope of claim of the present invention and equivalent technologies thereof if of the present invention these are revised with modification, then the present invention also is intended to comprise these changes and modification interior.

Claims (15)

1. a computer system starting method is characterized in that, comprising:
Start back operation basic input-output system BIOS program self check hardware state;
Read and carry out the MBR MBR program in the disk after the self check, in the MBR program process, Bootstrap Loading trusted bootstrap program, and after having loaded the trusted bootstrap program, the start-up routine of the main usefulness of Bootstrap Loading disk storage;
Said trusted bootstrap program is in loading procedure, and the start-up routine of the main usefulness of reading disk storage carries out the credibility checking; During not through checking, the start-up routine of the main usefulness of checking is not passed through in corresponding subsequent use start-up routine replacement in the reading disk;
The startup journey of the main usefulness of said disk storage is accomplished start-up course in loading procedure.
2. the method for claim 1 is characterized in that, said start-up routine comprises the phase one Programm tage1 of multiboot manager GRUB, and then in the MBR program process, the start-up routine of the main usefulness of Bootstrap Loading disk storage comprises:
According to the partition boot sector of the stage1 that writes down in the MBR program, read the stage1 of main usefulness and be loaded into internal memory;
Said stage1 in being loaded into the process of internal memory, the program that the Bootstrap Loading start-up course is required.
3. according to claim 1 or claim 2 method is characterized in that, the start-up routine of the main usefulness of reading disk storage carries out credibility to be verified, specifically comprises:
All information of the start-up routine of the main usefulness of reading disk storage are verified the integrality and the correctness of the start-up routine of said main usefulness; And/or
Whether the partition boot sector in the start-up routine of the main usefulness of reading disk storage, checking be consistent with the partition boot sector of the start-up routine that writes down in the MBR program.
4. method as claimed in claim 3 is characterized in that, subsequent use start-up routine according to setting rule calculating digest value and being kept in advance in the disk, is then verified the integrality and the correctness of the start-up routine of main usefulness, specifically comprises:
All information to the start-up routine of the main usefulness that reads are calculated digest value according to setting rule;
Confirm whether whether said digest value consistent with the digest value of the corresponding subsequent use start-up routine of preserving, if consistent, then checking is passed through, otherwise checking is not passed through.
5. method as claimed in claim 4 is characterized in that, said start-up routine comprises following program:
The phase one Programm tage1 of multiboot manager GRUB, said stage1 is used to guide the loading of the required program of start-up course;
Program in the kernel file of operating system.
6. method as claimed in claim 3 is characterized in that, the partition boot sector in the start-up routine of the main usefulness of reading disk storage, and whether checking is consistent with the partition boot sector of the start-up routine that writes down in the MBR program, specifically comprises:
According to the digest value of the partition boot sector in the start-up routine of the main usefulness of setting rule calculating disk storage, and the digest value of the partition boot sector of the start-up routine that writes down in the MBR program;
If two digest value unanimities calculating, then checking is passed through, otherwise checking is not passed through.
7. method as claimed in claim 6 is characterized in that, said start-up routine comprises following program:
The phase one Programm tage1 of multiboot manager GRUB, said stage1 is used to guide the loading of the required program of start-up course;
Required program in the start-up course that under the guiding of stage1, is loaded.
8. method as claimed in claim 7 is characterized in that, when computer system is supported working procedure stage1_5, the following program that the stage1 guiding is loaded is down carried out the partition boot sector checking:
Programm tart is used for loading procedure stage1_5;
Programm tage1_5 is used for the subordinate phase Programm tage2 through file system loading GRUB;
When computer system was not supported working procedure stage1_5, the following program that is loaded under the guiding to stage1 was carried out the partition boot sector checking, specifically comprises:
Programm tart is used for disk sector form loading procedure stage2;
Programm tage2.
9. a terminal is characterized in that, comprising:
Self-test unit is used to start back operation basic input-output system BIOS program self check hardware state;
Start guidance unit, be used for reading and carrying out after the self check MBR MBR program of disk, in the MBR program process, Bootstrap Loading trusted bootstrap program, and after having loaded the trusted bootstrap program, the start-up routine of the main usefulness of Bootstrap Loading disk storage;
Said trusted bootstrap program is in loading procedure, and the start-up routine of the main usefulness of reading disk storage carries out the credibility checking; During not through checking, the start-up routine of the main usefulness of checking is not passed through in corresponding subsequent use start-up routine replacement in the reading disk;
The startup journey of the main usefulness of said disk storage is accomplished start-up course in loading procedure.
10. terminal as claimed in claim 9 is characterized in that, said start-up routine comprises the phase one Programm tage1 of multiboot manager GRUB, and then in the MBR program process, the start-up routine of the main usefulness of Bootstrap Loading disk storage comprises:
According to the partition boot sector of the stage1 that writes down in the MBR program, read the stage1 of main usefulness and be loaded into internal memory;
Said stage1 in being loaded into the process of internal memory, the program that the Bootstrap Loading start-up course is required.
11., it is characterized in that the start-up routine of the main usefulness of reading disk storage carries out the credibility checking, specifically comprises like claim 9 or 10 described terminals:
All information of the start-up routine of the main usefulness of reading disk storage are verified the integrality and the correctness of the start-up routine of said main usefulness; And/or
Whether the partition boot sector in the start-up routine of the main usefulness of reading disk storage, checking be consistent with the partition boot sector of the start-up routine that writes down in the MBR program.
12. terminal as claimed in claim 11 is characterized in that, subsequent use start-up routine according to setting rule calculating digest value and being kept in advance in the disk, is then verified the integrality and the correctness of the start-up routine of main usefulness, specifically comprises:
All information to the start-up routine of the main usefulness that reads are calculated digest value according to setting rule;
Confirm whether whether said digest value consistent with the digest value of the corresponding subsequent use start-up routine of preserving, if consistent, then checking is passed through, otherwise checking is not passed through.
13. terminal as claimed in claim 12 is characterized in that, said start-up routine comprises following program:
The phase one Programm tage1 of multiboot manager GRUB, said stage1 is used to guide the loading of the required program of start-up course;
Program in the kernel file of operating system.
14. terminal as claimed in claim 11 is characterized in that, the partition boot sector in the start-up routine of the main usefulness of reading disk storage, and whether checking is consistent with the partition boot sector of the start-up routine that writes down in the MBR program, specifically comprises:
According to the digest value of the partition boot sector in the start-up routine of the main usefulness of setting rule calculating disk storage, and the digest value of the partition boot sector of the start-up routine that writes down in the MBR program;
If two digest value unanimities calculating, then checking is passed through, otherwise checking is not passed through.
15. terminal as claimed in claim 14 is characterized in that, said start-up routine comprises following program:
The phase one Programm tage1 of multiboot manager GRUB, said stage1 is used to guide the loading of the required program of start-up course;
Required program in the start-up course that under the guiding of stage1, is loaded.
CN2012102543696A 2012-07-20 2012-07-20 Computer system starting method and computer terminal Pending CN102830990A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2012102543696A CN102830990A (en) 2012-07-20 2012-07-20 Computer system starting method and computer terminal

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2012102543696A CN102830990A (en) 2012-07-20 2012-07-20 Computer system starting method and computer terminal

Publications (1)

Publication Number Publication Date
CN102830990A true CN102830990A (en) 2012-12-19

Family

ID=47334139

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2012102543696A Pending CN102830990A (en) 2012-07-20 2012-07-20 Computer system starting method and computer terminal

Country Status (1)

Country Link
CN (1) CN102830990A (en)

Cited By (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103823692A (en) * 2013-12-31 2014-05-28 北京华虹集成电路设计有限责任公司 Computer operating system starting method
CN103955649A (en) * 2014-05-23 2014-07-30 四川九成信息技术有限公司 Method for safely starting terminal equipment
CN104573499A (en) * 2014-09-10 2015-04-29 中电科技(北京)有限公司 Executable program file protection system and method on basis of UEFI (Unified Extensible Firmware Interface)
CN104751062A (en) * 2013-12-31 2015-07-01 研祥智能科技股份有限公司 Method and device improving operation system reliability
CN105027080A (en) * 2013-03-14 2015-11-04 密克罗奇普技术公司 Boot sequencing for multi boot devices
CN105589713A (en) * 2015-09-22 2016-05-18 杭州华三通信技术有限公司 Electronic equipment and starting method therefor
CN107679425A (en) * 2017-09-26 2018-02-09 天津麒麟信息技术有限公司 A kind of credible startup method of the joint full disk encryption based on firmware and USBkey
CN108153616A (en) * 2016-12-06 2018-06-12 北京京存技术有限公司 A kind of storage chip startup program detection method and device
CN109684849A (en) * 2017-10-18 2019-04-26 佳能株式会社 Information processing unit, its control method and storage medium
CN110366038A (en) * 2019-07-11 2019-10-22 四川长虹电器股份有限公司 The method of multiversion software hardware compatibility multiple technologies state
CN110737477A (en) * 2018-07-18 2020-01-31 鼎桥通信技术有限公司 system starting method and device
CN110737478A (en) * 2018-07-18 2020-01-31 鼎桥通信技术有限公司 system start control method and system
CN112579365A (en) * 2021-01-11 2021-03-30 华盛星晖(北京)科技有限公司 Protection system and method suitable for interactive all-in-one machine system
CN112579338A (en) * 2020-12-30 2021-03-30 浪潮电子信息产业股份有限公司 Starting method and system of equipment and storage medium

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101241437A (en) * 2007-02-08 2008-08-13 环达电脑(上海)有限公司 Method for selecting operating system to be started through basic input output system
US20090271603A1 (en) * 2008-04-28 2009-10-29 Hon Hai Precision Industry Co., Ltd. Embedded system and startup method thereof
CN102262548A (en) * 2010-05-28 2011-11-30 宏碁股份有限公司 Switching method of startup model
CN102270287A (en) * 2011-07-13 2011-12-07 中国人民解放军海军计算技术研究所 Trusted software base providing active security service

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101241437A (en) * 2007-02-08 2008-08-13 环达电脑(上海)有限公司 Method for selecting operating system to be started through basic input output system
US20090271603A1 (en) * 2008-04-28 2009-10-29 Hon Hai Precision Industry Co., Ltd. Embedded system and startup method thereof
CN102262548A (en) * 2010-05-28 2011-11-30 宏碁股份有限公司 Switching method of startup model
CN102270287A (en) * 2011-07-13 2011-12-07 中国人民解放军海军计算技术研究所 Trusted software base providing active security service

Cited By (23)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105027080A (en) * 2013-03-14 2015-11-04 密克罗奇普技术公司 Boot sequencing for multi boot devices
CN105027080B (en) * 2013-03-14 2020-03-13 密克罗奇普技术公司 Start-up sequence for multiple start-up devices
CN104751062B (en) * 2013-12-31 2019-03-19 研祥智能科技股份有限公司 A kind of method and device improving operating system reliability
CN103823692A (en) * 2013-12-31 2014-05-28 北京华虹集成电路设计有限责任公司 Computer operating system starting method
CN104751062A (en) * 2013-12-31 2015-07-01 研祥智能科技股份有限公司 Method and device improving operation system reliability
CN103955649A (en) * 2014-05-23 2014-07-30 四川九成信息技术有限公司 Method for safely starting terminal equipment
CN103955649B (en) * 2014-05-23 2017-03-08 南方电网科学研究院有限责任公司 A kind of method of clean boot terminal unit
CN104573499A (en) * 2014-09-10 2015-04-29 中电科技(北京)有限公司 Executable program file protection system and method on basis of UEFI (Unified Extensible Firmware Interface)
CN104573499B (en) * 2014-09-10 2019-01-15 中电科技(北京)有限公司 A kind of executable program file protection system and method based on UEFI
CN105589713A (en) * 2015-09-22 2016-05-18 杭州华三通信技术有限公司 Electronic equipment and starting method therefor
CN108153616A (en) * 2016-12-06 2018-06-12 北京京存技术有限公司 A kind of storage chip startup program detection method and device
CN107679425A (en) * 2017-09-26 2018-02-09 天津麒麟信息技术有限公司 A kind of credible startup method of the joint full disk encryption based on firmware and USBkey
CN107679425B (en) * 2017-09-26 2020-09-04 麒麟软件有限公司 Trusted boot method based on firmware and USBKey combined full disk encryption
CN109684849A (en) * 2017-10-18 2019-04-26 佳能株式会社 Information processing unit, its control method and storage medium
CN110737477A (en) * 2018-07-18 2020-01-31 鼎桥通信技术有限公司 system starting method and device
CN110737478A (en) * 2018-07-18 2020-01-31 鼎桥通信技术有限公司 system start control method and system
CN110737477B (en) * 2018-07-18 2023-01-31 鼎桥通信技术有限公司 System starting method and device
CN110737478B (en) * 2018-07-18 2023-05-26 鼎桥通信技术有限公司 System starting control method and system
CN110366038A (en) * 2019-07-11 2019-10-22 四川长虹电器股份有限公司 The method of multiversion software hardware compatibility multiple technologies state
CN110366038B (en) * 2019-07-11 2021-08-06 四川长虹电器股份有限公司 Method for multi-version software equipment to be compatible with multiple technical states
CN112579338A (en) * 2020-12-30 2021-03-30 浪潮电子信息产业股份有限公司 Starting method and system of equipment and storage medium
CN112579338B (en) * 2020-12-30 2023-03-24 浪潮电子信息产业股份有限公司 Starting method and system of equipment and storage medium
CN112579365A (en) * 2021-01-11 2021-03-30 华盛星晖(北京)科技有限公司 Protection system and method suitable for interactive all-in-one machine system

Similar Documents

Publication Publication Date Title
CN102830990A (en) Computer system starting method and computer terminal
CN104850762B (en) Prevent the undesirable method of the movement of computer, computer program and computer
CN106933708B (en) Method and device for facilitating storage system recovery and storage system
US9703635B2 (en) Method, computer program, and computer for restoring set of variables
KR101856284B1 (en) Backing up firmware during initialization of device
US20130290778A1 (en) Restoring from a legacy os environment to a uefi pre-boot environment
CN110413230B (en) Embedded system construction method and storage medium
CN105378663A (en) Updating boot code
CN114398145A (en) Method for operating non-root Linux by Jailhouse based on X86 platform
CN104572387A (en) Method and device for debugging terminal in engineering mode
CN108874582A (en) A kind of system recovery method, device and terminal
CN104461402B (en) A kind of method for adjusting disk order under Linux system between multi-controller
CN106990985A (en) Apparatus and method based on BMC renewals and standby system UEFI firmwares
CN110780942A (en) System starting method and device, node equipment and computer readable storage medium
CN102495812A (en) Hard disk data protection and recovery method of Linux platform
WO2015184732A1 (en) Bootstrap storage method, bootstrap fault recovery method and device, and computer storage medium
CN106843764B (en) Method and system for creating soft independent redundant disk array
CN110908722B (en) Method and device applied to starting of operating system, electronic equipment and storage medium
CN100476745C (en) Method for implementing automatic fault-tolerance of image file in Linux operating system booting process
EP4097593A1 (en) Firmware corruption recovery
CN111273928A (en) Self-upgrading bootloader design method
US10592425B2 (en) Virtualizing NVDIMM WPQ flushing with minimal overhead
CN106528114A (en) Android firmware application, android firmware and firmware upgrading method
CN111742297A (en) Firmware starting method, equipment and computer readable storage medium
CN102541585A (en) Remote upgrade method and embedded system

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C12 Rejection of a patent application after its publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20121219