CN102830990A - Computer system starting method and computer terminal - Google Patents
Computer system starting method and computer terminal Download PDFInfo
- Publication number
- CN102830990A CN102830990A CN2012102543696A CN201210254369A CN102830990A CN 102830990 A CN102830990 A CN 102830990A CN 2012102543696 A CN2012102543696 A CN 2012102543696A CN 201210254369 A CN201210254369 A CN 201210254369A CN 102830990 A CN102830990 A CN 102830990A
- Authority
- CN
- China
- Prior art keywords
- routine
- program
- checking
- stage1
- main usefulness
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Stored Programmes (AREA)
Abstract
The invention discloses a computer system starting method and a computer terminal. The computer system starting method comprises the following steps of: operating a program self-detection hardware state of a BIOS (Basic Input-Output System) after starting; reading and executing a MBR (Master Boot Record) program in a disk after self-detection; in an MBR program executing program, guiding and loading a trusted guide program; guiding and loading a main starting program stored in the disk after loading the trusted guiding program; in a process of loading the trusted guiding program, reading the main starting program stored in the disk so as to carry out credibility verification; when the credibility verification is not passed, reading the corresponding standby starting program in the disk to replace the main starting program which is not verified; and in a process of loading the main starting program stored in the disk, completing the starting program. According to the computer system starting method and the computer terminal provided by the invention, the starting process is safe and trusted.
Description
Technical field
The present invention relates to the device start technical field, relate in particular to a kind of computer system starting method and terminal.
Background technology
In computer system, start-up course is the basis of all behaviors of system.The physical equipment and the state of operating system own of not only load operation system of start-up course itself, responsible initializing computer system, start-up system is kept necessary trusted process of normal operation and relevant service routine simultaneously.Because any errors and omissions of start-up course all possibly make operating system get into uncertain precarious position, therefore guarantee that the safety of start-up course is crucial.
In the linux system platform, as shown in Figure 1, the existing computer system start-up course mainly comprises following flow process:
GRUB is a multiboot manager; It can select which system of guiding when a plurality of operating systems coexist; It can be written into the kernel file and the initialization operation system (like Linux) of operating system, perhaps gives operating system (like Windows) guiding power and accomplishes guiding.
GRUB is the software that except that the BIOS program curing, moves at first, is responsible for being written into real operating system, is appreciated that to be a subminiature OS (Operating System, operating system).
The operation of general GRUB is totally two stages, mainly is divided into the operation of phase one Programm tage1 and the operation of subordinate phase Programm tage2.Stage1 is positioned at the MBR sector as the MBR (Main Boot Record, MBR) of starting outfit.
Having comprised the treatment scheme that can carry out user interactions among the stage2, in fact is exactly a small-sized OS.Can select to determine the operating system version and the correlation parameter that are written into through stage2, stage2 also provides some specific functions in addition, like encryption, network and optical disk start-up etc.
Step 105 ', the start that stage1 loads loads stage1_5 earlier, gets into the cmain of stage1_5;
Step 106 ', the file system of supporting through stage1_5 drives, and loads stage2 through file system;
When stage1_5 is loaded, give the ability that GRUB reads file system directories, can from file system directories, find out the position of stage2 can not find under the situation of stage2.
Therefore, if GRUB supports stage1_5, then the start of stage1 loading directly removes to load stage2, but loads stage1_5 earlier, and the file system driving of supporting through stage1_5 then loads stage2 through file system.
Wherein, if multisystem provides the user to select the operating system that will get into, surpass the non-selected entering default system of setting-up time the user; If single system then can or can not be pointed out the user, get into this unique operating system.
Stage1 is positioned at the MBR sector, specifically is positioned at 0 sector of 0 cylinder, 0 magnetic track, and size is 512 bytes (388 syllabified codes+58 byte BIOS parameter block BPB information+64 byte partition tables+2 byte flag 55AA).Start is positioned at 0 cylinder, 0 magnetic track, 1 sector.If support stage1_5, stage1_5 is positioned at 2 sectors of 0 cylinder, 0 magnetic track, and at this time stage2 just can be written into file mode, otherwise stage2 is positioned at 2 sectors of 0 cylinder, 0 magnetic track.These all are that GRUB is just ready in the system of being installed to.
Existing computer starting method has following defective:
1) there is hidden danger in the upgrading of GRUB and kernel file, can cause bust when use in the outfield;
Present existing GRUB edition upgrading is adopt to rewrite operations such as MBR subregion, replacement stage2 and menu file to realize, need be in this process with software download to terminal, and replace by force, kernel file also is same flow process.If unpredictable problems such as file corruption in transmission course, occur, can cause equipment veneer normally not start after the upgrading by force.
When 2) GRUB starts failure, there is not subsequent use startup function;
The veneer of present most x86 frameworks does not all carry out main-apparatus protection for the GRUB part, promptly when GRUB starts failure, because this locality does not have subsequent use GRUB, causes single board starting unusual, and necessary manual intervention prolongs the time of dealing with problems.
Summary of the invention
The present invention provides a kind of computer system starting method and terminal, and is credible in order to guarantee the computer system starting process safe.
The present invention provides a kind of computer system starting method, comprising:
Start back operation basic input-output system BIOS program self check hardware state;
Read and carry out the MBR MBR program in the disk after the self check, in the MBR program process, Bootstrap Loading trusted bootstrap program, and after having loaded the trusted bootstrap program, the start-up routine of the main usefulness of Bootstrap Loading disk storage;
Said trusted bootstrap program is in loading procedure, and the start-up routine of the main usefulness of reading disk storage carries out the credibility checking; During not through checking, the start-up routine of the main usefulness of checking is not passed through in corresponding subsequent use start-up routine replacement in the reading disk;
The startup journey of the main usefulness of said disk storage is accomplished start-up course in loading procedure.
The present invention also provides a kind of terminal, comprising:
Self-test unit is used to start back operation basic input-output system BIOS program self check hardware state;
Start guidance unit, be used for reading and carrying out after the self check MBR MBR program of disk, in the MBR program process, Bootstrap Loading trusted bootstrap program, and after having loaded the trusted bootstrap program, the start-up routine of the main usefulness of Bootstrap Loading disk storage;
Said trusted bootstrap program is in loading procedure, and the start-up routine of the main usefulness of reading disk storage carries out the credibility checking; During not through checking, the start-up routine of the main usefulness of checking is not passed through in corresponding subsequent use start-up routine replacement in the reading disk;
The startup journey of the main usefulness of said disk storage is accomplished start-up course in loading procedure.
Utilize computer system starting method provided by the invention and terminal; Has following beneficial effect: at first carry out MBR after accomplishing self check; This MBR program implementation at first Bootstrap Loading trusted bootstrap program reboots the normal required program that starts that loads; Thereby realize the start-up routine in each stage in the start-up course is carried out credibility checking, utilize the subsequent use start-up routine of storing to replace when credible in that start-up routine is dangerous, thereby guaranteed the secure and trusted of start-up course; The embodiment of the invention subsequent use start-up routine that automaticallyes switch, credible start-up course do not need artificial the intervention, have effectively avoided the system upgrade potential safety hazard to cause the problem that can not normally start.
Description of drawings
Fig. 1 is existing computer system starting process flow diagram;
Fig. 2 is a computer system starting method process flow diagram of the present invention;
Fig. 3 is an embodiment of the invention disk partition form synoptic diagram;
Fig. 4 is a computer system starting method process flow diagram in the embodiment of the invention;
Fig. 5 is an embodiment of the invention terminal structural drawing.
Embodiment
Provide computer system starting method and terminal to illustrate in greater detail below in conjunction with accompanying drawing and embodiment to the present invention.
The embodiment of the invention is utilized the notion of credible transmission, and a kind of scheme of safe guidance is provided, and is as shown in Figure 2, and the computer system starting method that the embodiment of the invention provides comprises:
BIOS is one group of program that is cured in the computing machine on the mainboard on the rom chip, and program, the system of the most important basic input and output of its in store computing machine is provided with information, start back self-check program and system's self-triggered program.Its major function provides the bottom, the most directly hardware setting and control for computing machine.
Main frame reads BIOS, and after understanding main host hardware information, main frame just begins to attempt the load operation system.What main frame at first read is exactly the MBR MBR program in the disk.
Said trusted bootstrap program is in loading procedure, and the start-up routine of the main usefulness of reading disk storage carries out the credibility checking; During not through checking, the start-up routine of the main usefulness of checking is not passed through in corresponding subsequent use start-up routine replacement in the reading disk;
The startup journey of the main usefulness of said disk storage is accomplished start-up course in loading procedure.
It is first sector on the hard disk that the MBR program is positioned at, i.e. disk 0 cylinder 0 magnetic track 0 sector, the start-up course of vectoring computer from here on.
The MBR program that carry out the back is accomplished in embodiment of the invention self check, Bootstrap Loading trusted bootstrap program at first, thus article one that system's control is normally given the trusted bootstrap program is instructed.After having loaded the trusted bootstrap program, the start-up routine that reboots the main usefulness that loads disk storage is accomplished start-up course, promptly begins normal start-up course.
The start-up routine of the main usefulness of being verified in the embodiment of the invention is specially the start-up routine that each stage need load in the existing start-up course.
MBR program implementation in the embodiment of the invention; Made before normal the startup; At first the program of start-up course is carried out credibility checking through the trusted bootstrap program, and the embodiment of the invention backs up to the program in the start-up course, thereby at start-up routine during not through checking; Utilize the start-up routine of backup to replace incredible start-up routine; Thereby realized trusted recovery, after accomplishing trusted recovery, again system's control has been given the start-up routine of main usefulness, thereby guaranteed the secure and trusted of start-up course; The embodiment of the invention subsequent use start-up routine that automaticallyes switch, credible start-up course do not need artificial the intervention, have improved the efficient of fault recovery in the start-up course.
For the former start-up routine of not upgrading, backed up former start-up routine in the embodiment of the invention, the trusted bootstrap program is used to verify former start-up routine.If computing machine carries out start-up routine upgrading, the start-up routine after the backup upgrading in escalation process then, the trusted bootstrap process is used to verify that the master after the upgrading uses start-up routine.Thereby effectively avoided the system upgrade potential safety hazard to cause the problem that can not normally start.
Preferably, the embodiment of the invention is applied to the startup of (SuSE) Linux OS.Further preferably, can be applicable to the startup of (SuSE) Linux OS under the X86 framework.
Description by the background technology part can be found out; Start-up course is the basis of all behaviors of system; The normal operation of GRUB is the critical behavior before (SuSE) Linux OS starts, and we can say that the startup of guaranteeing GRUB is safely the most important thing of whole operation system loads.
Multiboot manager GRUB is responsible for being written into real operating system, and the operation of GRUB is totally two stages, mainly is divided into the operation of phase one Programm tage1 and the operation of subordinate phase Programm tage2.Stage1 is used to guide the loading of the required program of start-up course, and stage2 is in order to draw more senior function, loads a specific operating system to allow the user, the loading of stage2 can be guided out operating system kernel file in the operation of program.
For credible all the time in the GRUB vectoring phase, the assurance system preferably, carries out credibility checking start-up routine in the safety in this stage in the embodiment of the invention, comprise the phase one Programm tage1 of multiboot manager GRUB.
Having write down the partition boot sector of each start-up routine in the MBR program, is 0 sector of 0 cylinder, 0 magnetic track like the partition boot sector of stage1; The partition boot sector of start is 0 cylinder, 0 magnetic track, 1 sector; If support stage1_5, the partition boot sector of stage1_5 is 2 sectors of 0 cylinder, 0 magnetic track, if do not support stage1_5, then the partition boot sector of stage2 is 2 sectors of 0 cylinder, 0 magnetic track.
Active and standby in the embodiment of the invention with the partition boot sector that comprises this start-up routine in the start-up routine; Thereby make the MBR program can be according to partition boot sector; Load each start-up routine by the normal flow process that starts, when loading start-up routine, need put it into internal memory and operation.
Preferably, in the MBR program process, the start-up routine of the main usefulness of Bootstrap Loading disk storage comprises:
Partition boot sector according to the stage1 that writes down in the MBR program; Read the stage1 of main usefulness and be loaded into internal memory; Be that the partition boot sector that has write down stage1 in the MBR program is 0 cylinder, 0 magnetic track the 0th sector; Then arrive the master and use the start-up routine deposit position, searching partition boot sector information is the start-up routine and the loading of 0 cylinder, 0 magnetic track the 0th sector;
Said stage1 in being loaded into the process of internal memory, the program that the Bootstrap Loading start-up course is required.
Preferably, the start-up routine of the main usefulness of present embodiment reading disk storage carries out the credibility checking, specifically comprises:
All information of the start-up routine of the main usefulness of reading disk storage are verified the integrality and the correctness of the start-up routine of said main usefulness; And/or
Partition boot sector in the start-up routine of the main usefulness of reading disk storage, checking whether with the MBR program in partition boot sector in the start-up routine of the main usefulness that writes down consistent.
The integrality and the correctness of checking start-up routine can guarantee that program code is correct.
For start-up routine; The partition boot sector of record start-up routine among the MBR; Load corresponding start-up routine as guidance information, need therefore to verify whether the partition boot sector information that writes down in the start-up routine of main usefulness is correct, guarantees that start-up routine can normally move.
Particularly, subsequent use start-up routine according to setting rule calculating digest value and being kept in advance in the disk, is then verified the integrality and the correctness of the start-up routine of main usefulness, specifically comprises:
All information to the start-up routine of the main usefulness that reads are calculated digest value according to setting rule;
Confirm whether whether said digest value consistent with the digest value of the corresponding subsequent use start-up routine of preserving, if consistent, then checking is passed through, otherwise checking is not passed through.
Particularly, the partition boot sector in the start-up routine of the main usefulness of reading disk storage, checking whether with the MBR program in partition boot sector in the start-up routine of the main usefulness that writes down consistent, specifically comprise:
According to the digest value of the partition boot sector in the start-up routine of the main usefulness of setting rule calculating disk storage, and the digest value of the partition boot sector in the start-up routine of the main usefulness that writes down in the MBR program;
If two digest value unanimities calculating, then checking is passed through, otherwise checking is not passed through.
Specifically can adopt the digest value of any calculation procedure in the existing digest value algorithm.
Preferably right, to following start-up routine, lead the integrality and the verification of correctness of the start-up routine of usefulness:
The phase one Programm tage1 of multiboot manager GRUB, said stage1 is used to guide the loading of the required program of start-up course;
Program in the kernel file of operating system.
Preferably right, to following start-up routine, verify the partition boot sector in the start-up routine of main usefulness, whether with the MBR program in partition boot sector in the start-up routine of the main usefulness that writes down consistent:
The phase one Programm tage1 of multiboot manager GRUB verifies promptly whether the partition boot sector that writes down among the stage1 is 0 sector of 0 cylinder, 0 magnetic track;
Required program in the start-up course that under the guiding of stage1, is loaded.
Preferably, when computer system was supported working procedure stage1_5, the following program that is loaded under the guiding to stage1 was carried out the partition boot sector checking:
Programm tart is used for loading procedure stage1_5, verifies promptly whether the partition boot sector that writes down among the start is 1 sector of 0 cylinder, 0 magnetic track;
Programm tage1_5 is used for the subordinate phase Programm tage2 through file system loading GRUB, verifies promptly whether the partition boot sector that writes down among the stage1_5 is 2 sectors of 0 cylinder, 0 magnetic track.
When computer system is not supported working procedure stage1_5, the following following program that loads of the guiding of stage1 is carried out the partition boot sector checking:
Programm tart is used for disk sector form loading procedure stage2, verifies promptly whether the partition boot sector that writes down among the start is 1 sector of 0 cylinder, 0 magnetic track;
Programm tage2 verifies promptly whether the partition boot sector that writes down among the stage2 is 2 sectors of 0 cylinder, 0 magnetic track.
Provide the preferred embodiment of computer system of the present invention below.
As shown in Figure 3, in the present embodiment, deposit the MBR program in disk 0 cylinder 0 magnetic track 0 sector; The MBR program is stage1 in the prior art; The MBR program is different from MBR program of the prior art in the present embodiment, is called pre-service MBR, and stage1 and other start-up routines leave other sectors except that MBR sector (disk 0 cylinder 0 magnetic track 0 sector) in; Disk to comprise 64 sectors is an example, leaves other 63 reserve sectors in.
As shown in Figure 4, the present embodiment computer system starting method comprises following flow process:
Step 401 starts back operation basic input-output system BIOS program self check hardware state;
Step 402 reads and carries out the start-up routine that MBR MBR program designation in the disk loads the main usefulness of storing in trusted bootstrap program and the disk after the self check;
Step 403, trusted bootstrap program in loading procedure, execution in step 403a ~ 403d;
Step 403a, the main stage1 that uses of reading disk storage, whether checking is main correct with stage1; If correct, execution in step 403b, otherwise execution in step 403b '; Whether the digest value of wherein specifically verifying stage1 is consistent with the digest value of the subsequent use stage1 of calculated in advance;
Step 403b ' shows that error message gets into trusted recovery, adopts the stage1 replacement of backing up in the disk not pass through the stage1 of checking, execution in step 403b;
Step 403b, whether the partition boot sector of checking start-up routine is correct, if correct; Execution in step 403c, otherwise, execution in step 403c '; The start-up routine of concrete checking, and mode how to verify the partition boot sector of start-up routine sees before and states the description of embodiment, no longer repeats here;
Step 403c ' shows that error message gets into trusted recovery, adopts partition boot sector replacement correct in the disk not pass through the partition boot sector of checking, execution in step 403c;
Step 403c, whether the program in the kernel file of verification operation system is correct, if correct, execution in step 404, otherwise, execution in step 403d;
Step 403d shows that error message gets into trusted recovery, adopts the program in the kernel file correct in the disk to replace through the program in the kernel file of checking, execution in step 404;
Step 404 is transferred system's control the stage1 of main usefulness to, promptly according to the partition boot sector of the stage1 that writes down in the MBR program; Read the stage1 of main usefulness and be loaded into internal memory, carry out the stage1 that is loaded into internal memory, under the guiding of stage1, load the required program of start-up course; Thereby get into normal bootup process; Particularly, after the trusted bootstrap program is complete, the stage1 file of main usefulness is reloaded to internal memory 0x7c00 place.
The embodiment of the invention has proposed a kind of believable startup guidance mode; The difference main with the normal guidance mode is; Before control is transferred to next directing assembly, at first carry out credible checking, to determine whether to carry out the transfer of control to starting each stage.
The embodiment of the invention utilizes the mode of credible transmission to guarantee the success of GRUB guiding (SuSE) Linux OS; May occur starting under the unusual situation when detecting current bootup process, use trusted file to replace insincere file, guarantee that bootup process is normal;
With respect to prior art what major advantage is arranged
When 1) being applied to the X86 framework, guarantee the secure and trusted of Linux start-up course under the X86 framework;
When 2) providing GRUB to start failure, the subsequent use start-up routine that automaticallyes switch, and the information of misprint file;
3) credible start-up course does not need artificial the intervention, and programming automation is carried out.
Based on same inventive concept; A kind of terminal also is provided in the embodiment of the invention; Because the principle of dealing with problems in this terminal is similar with a kind of computer system starting method, so the enforcement at this terminal can repeat part and repeat no more referring to the enforcement of method.
The terminal that the embodiment of the invention provides, as shown in Figure 5, comprising:
Self-test unit 501 is used to start back operation basic input-output system BIOS program self check hardware state;
Said trusted bootstrap program is in loading procedure, and the start-up routine of the main usefulness of reading disk storage carries out the credibility checking; During not through checking, the start-up routine of the main usefulness of checking is not passed through in corresponding subsequent use start-up routine replacement in the reading disk;
The startup journey of the main usefulness of said disk storage is accomplished start-up course in loading procedure.
Preferably; Said start-up routine comprises the phase one Programm tage1 of multiboot manager GRUB, and said stage1 is used to guide the loading of the required program of start-up course, then in the MBR program process; The start-up routine of the main usefulness of Bootstrap Loading disk storage comprises:
According to the partition boot sector of the stage1 that writes down in the MBR program, read the stage1 of main usefulness and be loaded into internal memory;
Said stage1 in being loaded into the process of internal memory, the program that the Bootstrap Loading start-up course is required.
Preferably, the start-up routine of the main usefulness of reading disk storage carries out the credibility checking, specifically comprises:
All information of the start-up routine of the main usefulness of reading disk storage are verified the integrality and the correctness of the start-up routine of said main usefulness; And/or
Partition boot sector in the start-up routine of the main usefulness of reading disk storage, checking whether with the MBR program in partition boot sector in the start-up routine that writes down consistent.
Preferably, subsequent use start-up routine according to setting rule calculating digest value and being kept in advance in the disk, is then verified the integrality and the correctness of the start-up routine of main usefulness, specifically comprises:
All information to the start-up routine of the main usefulness that reads are calculated digest value according to setting rule;
Confirm whether whether said digest value consistent with the digest value of the corresponding subsequent use start-up routine of preserving, if consistent, then checking is passed through, otherwise checking is not passed through.
Preferably, said start-up routine comprises following program:
The phase one Programm tage1 of multiboot manager GRUB, said stage1 is used to guide the loading of the required program of start-up course;
Program in the kernel file of operating system.
Preferably, the partition boot sector in the start-up routine of the main usefulness of reading disk storage, whether checking is consistent with the partition boot sector of the start-up routine that writes down in the MBR program, specifically comprises:
According to the digest value of the partition boot sector in the start-up routine of the main usefulness of setting rule calculating disk storage, and the digest value of the partition boot sector of the start-up routine that writes down in the MBR program;
If two digest value unanimities calculating, then checking is passed through, otherwise checking is not passed through.
Preferably, said start-up routine comprises following program:
The phase one Programm tage1 of multiboot manager GRUB, said stage1 is used to guide the loading of the required program of start-up course;
Required program in the start-up course that under the guiding of stage1, is loaded.
Those skilled in the art should understand that embodiments of the invention can be provided as method, system or computer program.Therefore, the present invention can adopt the form of the embodiment of complete hardware embodiment, complete software implementation example or combination software and hardware aspect.And the present invention can be employed in the form that one or more computer-usable storage medium (including but not limited to magnetic disk memory, CD-ROM, optical memory etc.) that wherein include computer usable program code go up the computer program of implementing.
The present invention is that reference is described according to the process flow diagram and/or the block scheme of method, equipment (system) and the computer program of the embodiment of the invention.Should understand can be by the flow process in each flow process in computer program instructions realization flow figure and/or the block scheme and/or square frame and process flow diagram and/or the block scheme and/or the combination of square frame.Can provide these computer program instructions to the processor of multi-purpose computer, special purpose computer, Embedded Processor or other programmable data processing device to produce a machine, make the instruction of carrying out through the processor of computing machine or other programmable data processing device produce to be used for the device of the function that is implemented in flow process of process flow diagram or a plurality of flow process and/or square frame of block scheme or a plurality of square frame appointments.
These computer program instructions also can be stored in ability vectoring computer or the computer-readable memory of other programmable data processing device with ad hoc fashion work; Make the instruction that is stored in this computer-readable memory produce the manufacture that comprises command device, this command device is implemented in the function of appointment in flow process of process flow diagram or a plurality of flow process and/or square frame of block scheme or a plurality of square frame.
These computer program instructions also can be loaded on computing machine or other programmable data processing device; Make on computing machine or other programmable devices and to carry out the sequence of operations step producing computer implemented processing, thereby the instruction of on computing machine or other programmable devices, carrying out is provided for being implemented in the step of the function of appointment in flow process of process flow diagram or a plurality of flow process and/or square frame of block scheme or a plurality of square frame.
Although described the preferred embodiments of the present invention, in a single day those skilled in the art get the basic inventive concept could of cicada, then can make other change and modification to these embodiment.So accompanying claims is intended to be interpreted as all changes and the modification that comprises preferred embodiment and fall into the scope of the invention.
Obviously, those skilled in the art can carry out various changes and modification to the present invention and not break away from the spirit and scope of the present invention.Like this, belong within the scope of claim of the present invention and equivalent technologies thereof if of the present invention these are revised with modification, then the present invention also is intended to comprise these changes and modification interior.
Claims (15)
1. a computer system starting method is characterized in that, comprising:
Start back operation basic input-output system BIOS program self check hardware state;
Read and carry out the MBR MBR program in the disk after the self check, in the MBR program process, Bootstrap Loading trusted bootstrap program, and after having loaded the trusted bootstrap program, the start-up routine of the main usefulness of Bootstrap Loading disk storage;
Said trusted bootstrap program is in loading procedure, and the start-up routine of the main usefulness of reading disk storage carries out the credibility checking; During not through checking, the start-up routine of the main usefulness of checking is not passed through in corresponding subsequent use start-up routine replacement in the reading disk;
The startup journey of the main usefulness of said disk storage is accomplished start-up course in loading procedure.
2. the method for claim 1 is characterized in that, said start-up routine comprises the phase one Programm tage1 of multiboot manager GRUB, and then in the MBR program process, the start-up routine of the main usefulness of Bootstrap Loading disk storage comprises:
According to the partition boot sector of the stage1 that writes down in the MBR program, read the stage1 of main usefulness and be loaded into internal memory;
Said stage1 in being loaded into the process of internal memory, the program that the Bootstrap Loading start-up course is required.
3. according to claim 1 or claim 2 method is characterized in that, the start-up routine of the main usefulness of reading disk storage carries out credibility to be verified, specifically comprises:
All information of the start-up routine of the main usefulness of reading disk storage are verified the integrality and the correctness of the start-up routine of said main usefulness; And/or
Whether the partition boot sector in the start-up routine of the main usefulness of reading disk storage, checking be consistent with the partition boot sector of the start-up routine that writes down in the MBR program.
4. method as claimed in claim 3 is characterized in that, subsequent use start-up routine according to setting rule calculating digest value and being kept in advance in the disk, is then verified the integrality and the correctness of the start-up routine of main usefulness, specifically comprises:
All information to the start-up routine of the main usefulness that reads are calculated digest value according to setting rule;
Confirm whether whether said digest value consistent with the digest value of the corresponding subsequent use start-up routine of preserving, if consistent, then checking is passed through, otherwise checking is not passed through.
5. method as claimed in claim 4 is characterized in that, said start-up routine comprises following program:
The phase one Programm tage1 of multiboot manager GRUB, said stage1 is used to guide the loading of the required program of start-up course;
Program in the kernel file of operating system.
6. method as claimed in claim 3 is characterized in that, the partition boot sector in the start-up routine of the main usefulness of reading disk storage, and whether checking is consistent with the partition boot sector of the start-up routine that writes down in the MBR program, specifically comprises:
According to the digest value of the partition boot sector in the start-up routine of the main usefulness of setting rule calculating disk storage, and the digest value of the partition boot sector of the start-up routine that writes down in the MBR program;
If two digest value unanimities calculating, then checking is passed through, otherwise checking is not passed through.
7. method as claimed in claim 6 is characterized in that, said start-up routine comprises following program:
The phase one Programm tage1 of multiboot manager GRUB, said stage1 is used to guide the loading of the required program of start-up course;
Required program in the start-up course that under the guiding of stage1, is loaded.
8. method as claimed in claim 7 is characterized in that, when computer system is supported working procedure stage1_5, the following program that the stage1 guiding is loaded is down carried out the partition boot sector checking:
Programm tart is used for loading procedure stage1_5;
Programm tage1_5 is used for the subordinate phase Programm tage2 through file system loading GRUB;
When computer system was not supported working procedure stage1_5, the following program that is loaded under the guiding to stage1 was carried out the partition boot sector checking, specifically comprises:
Programm tart is used for disk sector form loading procedure stage2;
Programm tage2.
9. a terminal is characterized in that, comprising:
Self-test unit is used to start back operation basic input-output system BIOS program self check hardware state;
Start guidance unit, be used for reading and carrying out after the self check MBR MBR program of disk, in the MBR program process, Bootstrap Loading trusted bootstrap program, and after having loaded the trusted bootstrap program, the start-up routine of the main usefulness of Bootstrap Loading disk storage;
Said trusted bootstrap program is in loading procedure, and the start-up routine of the main usefulness of reading disk storage carries out the credibility checking; During not through checking, the start-up routine of the main usefulness of checking is not passed through in corresponding subsequent use start-up routine replacement in the reading disk;
The startup journey of the main usefulness of said disk storage is accomplished start-up course in loading procedure.
10. terminal as claimed in claim 9 is characterized in that, said start-up routine comprises the phase one Programm tage1 of multiboot manager GRUB, and then in the MBR program process, the start-up routine of the main usefulness of Bootstrap Loading disk storage comprises:
According to the partition boot sector of the stage1 that writes down in the MBR program, read the stage1 of main usefulness and be loaded into internal memory;
Said stage1 in being loaded into the process of internal memory, the program that the Bootstrap Loading start-up course is required.
11., it is characterized in that the start-up routine of the main usefulness of reading disk storage carries out the credibility checking, specifically comprises like claim 9 or 10 described terminals:
All information of the start-up routine of the main usefulness of reading disk storage are verified the integrality and the correctness of the start-up routine of said main usefulness; And/or
Whether the partition boot sector in the start-up routine of the main usefulness of reading disk storage, checking be consistent with the partition boot sector of the start-up routine that writes down in the MBR program.
12. terminal as claimed in claim 11 is characterized in that, subsequent use start-up routine according to setting rule calculating digest value and being kept in advance in the disk, is then verified the integrality and the correctness of the start-up routine of main usefulness, specifically comprises:
All information to the start-up routine of the main usefulness that reads are calculated digest value according to setting rule;
Confirm whether whether said digest value consistent with the digest value of the corresponding subsequent use start-up routine of preserving, if consistent, then checking is passed through, otherwise checking is not passed through.
13. terminal as claimed in claim 12 is characterized in that, said start-up routine comprises following program:
The phase one Programm tage1 of multiboot manager GRUB, said stage1 is used to guide the loading of the required program of start-up course;
Program in the kernel file of operating system.
14. terminal as claimed in claim 11 is characterized in that, the partition boot sector in the start-up routine of the main usefulness of reading disk storage, and whether checking is consistent with the partition boot sector of the start-up routine that writes down in the MBR program, specifically comprises:
According to the digest value of the partition boot sector in the start-up routine of the main usefulness of setting rule calculating disk storage, and the digest value of the partition boot sector of the start-up routine that writes down in the MBR program;
If two digest value unanimities calculating, then checking is passed through, otherwise checking is not passed through.
15. terminal as claimed in claim 14 is characterized in that, said start-up routine comprises following program:
The phase one Programm tage1 of multiboot manager GRUB, said stage1 is used to guide the loading of the required program of start-up course;
Required program in the start-up course that under the guiding of stage1, is loaded.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2012102543696A CN102830990A (en) | 2012-07-20 | 2012-07-20 | Computer system starting method and computer terminal |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2012102543696A CN102830990A (en) | 2012-07-20 | 2012-07-20 | Computer system starting method and computer terminal |
Publications (1)
Publication Number | Publication Date |
---|---|
CN102830990A true CN102830990A (en) | 2012-12-19 |
Family
ID=47334139
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN2012102543696A Pending CN102830990A (en) | 2012-07-20 | 2012-07-20 | Computer system starting method and computer terminal |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN102830990A (en) |
Cited By (14)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103823692A (en) * | 2013-12-31 | 2014-05-28 | 北京华虹集成电路设计有限责任公司 | Computer operating system starting method |
CN103955649A (en) * | 2014-05-23 | 2014-07-30 | 四川九成信息技术有限公司 | Method for safely starting terminal equipment |
CN104573499A (en) * | 2014-09-10 | 2015-04-29 | 中电科技(北京)有限公司 | Executable program file protection system and method on basis of UEFI (Unified Extensible Firmware Interface) |
CN104751062A (en) * | 2013-12-31 | 2015-07-01 | 研祥智能科技股份有限公司 | Method and device improving operation system reliability |
CN105027080A (en) * | 2013-03-14 | 2015-11-04 | 密克罗奇普技术公司 | Boot sequencing for multi boot devices |
CN105589713A (en) * | 2015-09-22 | 2016-05-18 | 杭州华三通信技术有限公司 | Electronic equipment and starting method therefor |
CN107679425A (en) * | 2017-09-26 | 2018-02-09 | 天津麒麟信息技术有限公司 | A kind of credible startup method of the joint full disk encryption based on firmware and USBkey |
CN108153616A (en) * | 2016-12-06 | 2018-06-12 | 北京京存技术有限公司 | A kind of storage chip startup program detection method and device |
CN109684849A (en) * | 2017-10-18 | 2019-04-26 | 佳能株式会社 | Information processing unit, its control method and storage medium |
CN110366038A (en) * | 2019-07-11 | 2019-10-22 | 四川长虹电器股份有限公司 | The method of multiversion software hardware compatibility multiple technologies state |
CN110737477A (en) * | 2018-07-18 | 2020-01-31 | 鼎桥通信技术有限公司 | system starting method and device |
CN110737478A (en) * | 2018-07-18 | 2020-01-31 | 鼎桥通信技术有限公司 | system start control method and system |
CN112579365A (en) * | 2021-01-11 | 2021-03-30 | 华盛星晖(北京)科技有限公司 | Protection system and method suitable for interactive all-in-one machine system |
CN112579338A (en) * | 2020-12-30 | 2021-03-30 | 浪潮电子信息产业股份有限公司 | Starting method and system of equipment and storage medium |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101241437A (en) * | 2007-02-08 | 2008-08-13 | 环达电脑(上海)有限公司 | Method for selecting operating system to be started through basic input output system |
US20090271603A1 (en) * | 2008-04-28 | 2009-10-29 | Hon Hai Precision Industry Co., Ltd. | Embedded system and startup method thereof |
CN102262548A (en) * | 2010-05-28 | 2011-11-30 | 宏碁股份有限公司 | Switching method of startup model |
CN102270287A (en) * | 2011-07-13 | 2011-12-07 | 中国人民解放军海军计算技术研究所 | Trusted software base providing active security service |
-
2012
- 2012-07-20 CN CN2012102543696A patent/CN102830990A/en active Pending
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101241437A (en) * | 2007-02-08 | 2008-08-13 | 环达电脑(上海)有限公司 | Method for selecting operating system to be started through basic input output system |
US20090271603A1 (en) * | 2008-04-28 | 2009-10-29 | Hon Hai Precision Industry Co., Ltd. | Embedded system and startup method thereof |
CN102262548A (en) * | 2010-05-28 | 2011-11-30 | 宏碁股份有限公司 | Switching method of startup model |
CN102270287A (en) * | 2011-07-13 | 2011-12-07 | 中国人民解放军海军计算技术研究所 | Trusted software base providing active security service |
Cited By (23)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105027080A (en) * | 2013-03-14 | 2015-11-04 | 密克罗奇普技术公司 | Boot sequencing for multi boot devices |
CN105027080B (en) * | 2013-03-14 | 2020-03-13 | 密克罗奇普技术公司 | Start-up sequence for multiple start-up devices |
CN104751062B (en) * | 2013-12-31 | 2019-03-19 | 研祥智能科技股份有限公司 | A kind of method and device improving operating system reliability |
CN103823692A (en) * | 2013-12-31 | 2014-05-28 | 北京华虹集成电路设计有限责任公司 | Computer operating system starting method |
CN104751062A (en) * | 2013-12-31 | 2015-07-01 | 研祥智能科技股份有限公司 | Method and device improving operation system reliability |
CN103955649A (en) * | 2014-05-23 | 2014-07-30 | 四川九成信息技术有限公司 | Method for safely starting terminal equipment |
CN103955649B (en) * | 2014-05-23 | 2017-03-08 | 南方电网科学研究院有限责任公司 | A kind of method of clean boot terminal unit |
CN104573499A (en) * | 2014-09-10 | 2015-04-29 | 中电科技(北京)有限公司 | Executable program file protection system and method on basis of UEFI (Unified Extensible Firmware Interface) |
CN104573499B (en) * | 2014-09-10 | 2019-01-15 | 中电科技(北京)有限公司 | A kind of executable program file protection system and method based on UEFI |
CN105589713A (en) * | 2015-09-22 | 2016-05-18 | 杭州华三通信技术有限公司 | Electronic equipment and starting method therefor |
CN108153616A (en) * | 2016-12-06 | 2018-06-12 | 北京京存技术有限公司 | A kind of storage chip startup program detection method and device |
CN107679425A (en) * | 2017-09-26 | 2018-02-09 | 天津麒麟信息技术有限公司 | A kind of credible startup method of the joint full disk encryption based on firmware and USBkey |
CN107679425B (en) * | 2017-09-26 | 2020-09-04 | 麒麟软件有限公司 | Trusted boot method based on firmware and USBKey combined full disk encryption |
CN109684849A (en) * | 2017-10-18 | 2019-04-26 | 佳能株式会社 | Information processing unit, its control method and storage medium |
CN110737477A (en) * | 2018-07-18 | 2020-01-31 | 鼎桥通信技术有限公司 | system starting method and device |
CN110737478A (en) * | 2018-07-18 | 2020-01-31 | 鼎桥通信技术有限公司 | system start control method and system |
CN110737477B (en) * | 2018-07-18 | 2023-01-31 | 鼎桥通信技术有限公司 | System starting method and device |
CN110737478B (en) * | 2018-07-18 | 2023-05-26 | 鼎桥通信技术有限公司 | System starting control method and system |
CN110366038A (en) * | 2019-07-11 | 2019-10-22 | 四川长虹电器股份有限公司 | The method of multiversion software hardware compatibility multiple technologies state |
CN110366038B (en) * | 2019-07-11 | 2021-08-06 | 四川长虹电器股份有限公司 | Method for multi-version software equipment to be compatible with multiple technical states |
CN112579338A (en) * | 2020-12-30 | 2021-03-30 | 浪潮电子信息产业股份有限公司 | Starting method and system of equipment and storage medium |
CN112579338B (en) * | 2020-12-30 | 2023-03-24 | 浪潮电子信息产业股份有限公司 | Starting method and system of equipment and storage medium |
CN112579365A (en) * | 2021-01-11 | 2021-03-30 | 华盛星晖(北京)科技有限公司 | Protection system and method suitable for interactive all-in-one machine system |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN102830990A (en) | Computer system starting method and computer terminal | |
CN104850762B (en) | Prevent the undesirable method of the movement of computer, computer program and computer | |
CN106933708B (en) | Method and device for facilitating storage system recovery and storage system | |
US9703635B2 (en) | Method, computer program, and computer for restoring set of variables | |
KR101856284B1 (en) | Backing up firmware during initialization of device | |
US20130290778A1 (en) | Restoring from a legacy os environment to a uefi pre-boot environment | |
CN110413230B (en) | Embedded system construction method and storage medium | |
CN105378663A (en) | Updating boot code | |
CN114398145A (en) | Method for operating non-root Linux by Jailhouse based on X86 platform | |
CN104572387A (en) | Method and device for debugging terminal in engineering mode | |
CN108874582A (en) | A kind of system recovery method, device and terminal | |
CN104461402B (en) | A kind of method for adjusting disk order under Linux system between multi-controller | |
CN106990985A (en) | Apparatus and method based on BMC renewals and standby system UEFI firmwares | |
CN110780942A (en) | System starting method and device, node equipment and computer readable storage medium | |
CN102495812A (en) | Hard disk data protection and recovery method of Linux platform | |
WO2015184732A1 (en) | Bootstrap storage method, bootstrap fault recovery method and device, and computer storage medium | |
CN106843764B (en) | Method and system for creating soft independent redundant disk array | |
CN110908722B (en) | Method and device applied to starting of operating system, electronic equipment and storage medium | |
CN100476745C (en) | Method for implementing automatic fault-tolerance of image file in Linux operating system booting process | |
EP4097593A1 (en) | Firmware corruption recovery | |
CN111273928A (en) | Self-upgrading bootloader design method | |
US10592425B2 (en) | Virtualizing NVDIMM WPQ flushing with minimal overhead | |
CN106528114A (en) | Android firmware application, android firmware and firmware upgrading method | |
CN111742297A (en) | Firmware starting method, equipment and computer readable storage medium | |
CN102541585A (en) | Remote upgrade method and embedded system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C12 | Rejection of a patent application after its publication | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20121219 |