CN106528145A - Instance system and version management method for agent in instance system - Google Patents
Instance system and version management method for agent in instance system Download PDFInfo
- Publication number
- CN106528145A CN106528145A CN201610972350.3A CN201610972350A CN106528145A CN 106528145 A CN106528145 A CN 106528145A CN 201610972350 A CN201610972350 A CN 201610972350A CN 106528145 A CN106528145 A CN 106528145A
- Authority
- CN
- China
- Prior art keywords
- behalf
- installation directory
- version number
- installation
- instance system
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F8/00—Arrangements for software engineering
- G06F8/70—Software maintenance or management
- G06F8/71—Version control; Configuration management
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F8/00—Arrangements for software engineering
- G06F8/60—Software deployment
- G06F8/61—Installation
Landscapes
- Engineering & Computer Science (AREA)
- Software Systems (AREA)
- General Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Computer Security & Cryptography (AREA)
- Stored Programmes (AREA)
Abstract
The invention provides an instance system and a version management method for an agent in the instance system. Simple and easily-maintained management of brand-new installation, upgrading or rollback of the agent in the instance system is realized through specific naming and corresponding symbolic links of an agent installation directory. Meanwhile, executable programs in the agent installation directory are strictly checked, thereby ensuring possibly tampered programs not to be executed.
Description
Technical field
The present invention relates to the method for edition management of instance system and instance system agency.
Background technology
Certain operating system (such as Android operation system) (is for example located plus the necessary hardware run needed for the operating system
Reason device, memory etc.), an instance system can be considered as, various applications can be run in instance system, and (application is referred in reality
The software run in the operating system of example system or program).Several instance systems (are for example divided according to certain framework mode
Cloth) centralized management, cloud system can be formed.Generally cloud system provides the user service by the daily operation of operator.
Generally, if instance system is located in cloud system, one can be arranged in the operating system of instance system there is operation
The software or program of system root (root) authority, the behavior to user's access instances system are managed, and the software or program can
With referred to as agency (agency herein is the translation of English words agent).As the business of cloud system is continually changing, agency may Jing
Often need upgrading or roll back to former version (the problems such as stability of redaction may cause rollback).For the version of agency
This management, conventional way are the record agency version informations currently and before in certain file (such as version files).
For the record for acting on behalf of version information, the correctness and promptness not only guaranteed by information record, it is also contemplated that letter
The security of breath, it is impossible to deleted by the thread of the general authority of only operating system by mistake.Therefore, version information file is often stored in
In the Reading Sections (such as the system subregions of Android system) of operating system, by with operating system root authority when needing to change
Thread by Reading Sections carry be writeable subregion, file modification finish after again carry be Reading Sections.If revision is believed
During breath, lucky another thread is Reading Sections writeable subregion carry, can cause the inconsistent of version information record.This requires
The synchronization of carry is realized during the version information of the modification agency of the thread with operating system root authority, it is ensured that carry is into writeable point
Area, revision message file, again carry be atomic operation into Reading Sections, will not be interrupted by thread scheduling mechanism.
It is related to the operation acted on behalf of, no matter brand-new install, upgrade or rollback, is required for the version information that upgrades in time.Such as
During fruit revision message file by power-off etc. burst factor disturbed, the inconsistent of version information can be caused, to it is this kind of not
Consistent process is bothered very much, needs operating system to have perfect transaction rollback mechanism.In addition, proxy management user's access instances
During the behavior of system, the sensitive informations such as user's payment, pecuniary exchange are may relate to, the reliability to acting on behalf of has very strict
Require.If the partial code of agency is distorted by hacker, the serious problems such as user's property loss are likely to result in.Prior art for
, there is great potential safety hazard in the reliability of the not strict verification agency of the version management of agency.
In specification " background technology " part disclosure, contribute to the technology skilled artisan understands that the present invention
Scheme, but should not think that these contents necessarily belong to prior art or common knowledge accordingly.
The content of the invention
For the defect for overcoming " background technology " part to be reflected, present invention offer instance system and instance system agency
Method for edition management.
Instance system, including installation directory is acted on behalf of, the described title for acting on behalf of installation directory includes the version number acted on behalf of, institute
The installation directory of acting on behalf of stated is made up of executable program, configuration file and installation script, and described installation script can specified
The Symbolic Links for pointing to the program or file of acting on behalf of installation directory are set up under catalogue.
Further, the installation directory of acting on behalf of of different editions number is located under same parent directory.
The method for edition management of instance system agency, including:
1) version number acted on behalf of installation directory, obtain current agent pointed to by Symbolic Links under assigned catalogue;
2) instructed according to version management, find that version number is satisfactory acts on behalf of installation directory on instance system;
3) verify the satisfactory signature and check value for acting on behalf of each executable program in installation directory of version number and deposit
Whether the signature of identical executable program stored on storage server is consistent with check value, the signature of all executable programs and school
Test value and be all unanimously just considered as and act on behalf of installation directory verification and pass through.
Further, 2) described in version management instruction in include agency version number when, the brand-new installation of agency
Or upgrading find highest version number on instance system act on behalf of installation directory, the rollback of agency find on instance system version number with
Current agent version number closest to and act on behalf of installation directory less than current version number.
In technical solution of the present invention, the word such as " including ", " being used for " should be understood according to open language mode, " by ...
The words such as composition " should be understood according to closed expression way.Those skilled in the art are by reading this specification and combining existing
The content that technology or common knowledge can be known, repeats no more in this specification.
Instance system and the method for edition management of instance system agency that the present invention is provided, by the spy for acting on behalf of installation directory
Name and corresponding Symbolic Links, realize the simple easy care of the brand-new installation of agency, upgrading or rollback in instance system calmly
Management.Meanwhile, strict verification is carried out to acting on behalf of the executable program in installation directory, it is ensured that do not perform the journey that may be tampered
Sequence.
Description of the drawings
Rough schematic views of the Fig. 1 for specific embodiment medium cloud system architecture.
Fig. 2 is the flow chart of the method for edition management of instance system agency in specific embodiment.
Specific embodiment
Below embodiments of the present invention are further illustrated.It should be noted that the scope of the present invention is not
It is confined to described concrete technical scheme.Any technology essential factor in described concrete technical scheme is carried out identical or is waited
The technical scheme obtained with replacement or those skilled in the art are on the basis of described concrete technical scheme without creation
Property the technical scheme that is obtained with of work, should all be contemplated as falling within protection scope of the present invention.
Certain operating system, can plus the necessary hardware (such as processor, memory etc.) run needed for the operating system
To constitute an instance system.Several instance systems are managed concentratedly according to certain framework mode, cloud system can be formed.
The operating system of instance system can be chosen for Android (Android) system.Generally, control node, reality are provided with cloud system
Example three parts of system and storage server, rough schematic views of the Fig. 1 for cloud system framework.Instance system and storage server that
This independence, all by control node control and management, the solid two-way arrow in Fig. 1 represents control and administrative relationships, and dotted line is two-way
Arrow represents correspondence.Control node can select the control server with X86-based, and storage server is independent
High-performance storage server, with higher configuration (such as big internal memory of 8 core processors, 64G etc.).Operator is to storage server
Take strict physical isolation and technology protection measure, it is ensured that the data stored in storage server are safe.Actual cloud
In system, the quantity of control node, instance system and storage server is far above one, for simple displaying, control section in Fig. 1
Each of point, instance system and storage server has drawn one.One is arranged in the operating system of instance system there is operating system
The software or program of root (root) authority, the behavior to user's access instances system are managed, and the software or program can claim
For agency.
As the business of cloud system is continually changing, agency is frequently necessary to upgrade or roll back to former version (redaction
Stability the problems such as may cause rollback).In order to tackle the frequent change for acting on behalf of version, can store in storage server all
Related different editions number act on behalf of installation file (including executable program and configuration file), can be from when instance system needs
Storage server download agent installation file, but the Internet resources of cloud system can be so taken, possible speed of download more slowly can not
Satisfaction is actually needed.
In technical solution of the present invention, the installation directory of acting on behalf of of related different editions number instance system sheet is stored in into
Ground, each is acted on behalf of installation directory and is made up of executable program, configuration file and installation script.Act on behalf of the program in installation directory
Version number information is not all contained with file, but acts on behalf of the title of installation directory and have to comply with specific naming rule, wrapped in title
Include the version number of agency.The title for acting on behalf of installation directory is defined as into Agent-vX.Y or Agent-vX.Y.Z for example, wherein
X, Y, Z be 0-9 in arbitrary numeral.With being continuously increased for version number's complexity, the number of plies of v numerals below can also
Constantly extend.If version number is not very many, the title of installation directory is acted on behalf of using Agent-vX.Y, wherein X is big
Version number, Y are minor release/point release, for example Agent-v1.10.
The executable program and configuration file acted on behalf of in installation directory is used for the installation of agency, the verification of executable program
Deng.And the function of installation script core the most, being can be under assigned catalogue (for android system, typically after its execution
It is /system/bin catalogues) set up the Symbolic Links for pointing to the program or file of acting on behalf of installation directory that installation script is located.Symbol
Number link, also known as soft link, is the special file of a class, this class file contain alternative document pathname (absolute path or
Relative path).The installation process of agency, is first carried out acting on behalf of the installation script in installation directory, by installation script in specified mesh
Symbolic Links are set up under record, installing positioned at particular agent pointed by Symbolic Links is subsequently accessed and started by the Symbolic Links
Executable program in catalogue.
Instance system locally stored different editions number act on behalf of installation directory, may be located under same parent directory, so
It is easy to search in instance system and acts on behalf of installation directory.Under parent directory, title meets the catalogue of specific naming rule and is just considered
Act on behalf of installation directory.
Based on example discussed above system, it is possible to achieve the method for edition management of instance system agency.Instance system generation
The flow process of the method for edition management of reason as shown in Fig. 2 including:
S201:The version number acted on behalf of installation directory, obtain current agent pointed to by Symbolic Links under assigned catalogue.
Specifically, as the basis for acting on behalf of version management, first have to determine the version of the current agency for running of instance system
Number.In technical solution of the present invention, the installation process of agency can set up Symbolic Links, the symbolic link under specified catalogue
Connect and point to the program or file acted on behalf of positioned at some in installation directory.As the title for acting on behalf of installation directory includes what is acted on behalf of
Version number, analyzes the title for acting on behalf of installation directory that the program or file of Symbolic Links sensing are located, you can obtain current agent
Version number.
S202:Instructed according to version management, find that version number is satisfactory acts on behalf of installation directory on instance system.
Specifically, version management instruction is probably derived from the control node of cloud system, it is also possible to be directed to user.Version
This management instruction may relate to brand-new installation, upgrading or the rollback acted on behalf of.If including agency's in version management instruction
Version number, then according to the version number find on instance system version number it is consistent act on behalf of installation directory.If version management refers to
Do not include in order that agency's peace of highest version number on instance system is found in the version number of agency, the then brand-new installation acted on behalf of or upgrading
Dress catalogue, the rollback of agency find on instance system version number and current agent version number closest to and less than current version number
Act on behalf of installation directory.Current technology is accustomed to version number as edition upgrading is improved constantly, and it is rational so to arrange.
S203:The satisfactory signature and check value for acting on behalf of each executable program in installation directory of verification version number with
Whether the signature of the identical executable program stored in storage server consistent with check value, the signature of all executable programs and
Check value is all unanimously just considered as to act on behalf of installation directory and verify and passes through.
Specifically, after finding that version number is satisfactory and acting on behalf of installation directory, further to acting on behalf of in installation directory
Each executable program is verified.Each executable program is prior to generate digital signature and school in storage server
Test value (check value can be using MD5, Message Digest Algorithm 5).For each acted on behalf of on instance system under installation directory
Executable program, checks its digital signature and check value whether numeral with the identical executable program stored in storage server
Signature is identical with check value, and digital signature is identical with check value, and the executable program verification passes through.Act on behalf of in installation directory
All executable programs are all verified and are passed through, be just considered as act on behalf of installation directory verification pass through, this can be run and acted on behalf of in installation directory
Program.If certain executable program verification does not pass through, it is meant that the program there may be security risk, it is impossible to risk fortune
OK, delete the program and identical executable program is downloaded from storage server.Although this may lose time or cause
Other problemses, but be worth from from the point of view of security.
Technical solution of the present invention, will act on behalf of installation directory and name according to specific naming rule, so write special journey
Sequence (can be independent program, it is also possible to by the program embedded agency or other software) is capable of achieving to acting on behalf of version information
Automatic management, not only can know it is current act on behalf of version number, can also carry out brand-new installation, upgrading or rollback of agency etc.
Operation.The simple easy care of the management method, it is not easy to produce mistake, it is to avoid the sky high cost of traditional method for edition management.
Meanwhile, guarantee to act on behalf of the reliability of executable program in installation directory by strict verification scheme, exist and be tampered equivalent risk
Program will not run, instance system agency it is safe.
Those skilled in the art can construct its other party on the basis of concrete technical scheme described above, completely
Case.It is numerous to list herein.
Claims (4)
1. instance system, it is characterised in that described instance system includes acting on behalf of installation directory, described installation directory of acting on behalf of
Title includes the version number acted on behalf of, and described installation directory of acting on behalf of is made up of executable program, configuration file and installation script, institute
The installation script stated can set up the Symbolic Links for pointing to the program or file of acting on behalf of installation directory under assigned catalogue.
2. instance system according to claim 1, it is characterised in that the installation directory of acting on behalf of of different editions number is located at
Under same parent directory.
3. the method for edition management that instance system is acted on behalf of, it is characterised in that described method includes:
1) version number acted on behalf of installation directory, obtain current agent pointed to by Symbolic Links under assigned catalogue;
2) instructed according to version management, find that version number is satisfactory acts on behalf of installation directory on instance system;
3) the satisfactory signature and check value for acting on behalf of each executable program in installation directory of version number is verified with storage clothes
Whether the signature of the identical executable program stored on business device is consistent with check value, the signature and check value of all executable programs
All unanimously just it is considered as to act on behalf of installation directory and verify and passes through.
4. method according to claim 3, it is characterised in that do not include agency's in the version management instruction described in 2)
During version number, what highest version number on instance system was found in the brand-new installation of agency or upgrading acts on behalf of installation directory, and agency's returns
Rolling find version number and current agent version number on instance system closest to and act on behalf of installation directory less than current version number.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610972350.3A CN106528145A (en) | 2016-10-28 | 2016-10-28 | Instance system and version management method for agent in instance system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610972350.3A CN106528145A (en) | 2016-10-28 | 2016-10-28 | Instance system and version management method for agent in instance system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN106528145A true CN106528145A (en) | 2017-03-22 |
Family
ID=58349508
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610972350.3A Pending CN106528145A (en) | 2016-10-28 | 2016-10-28 | Instance system and version management method for agent in instance system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106528145A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109977663A (en) * | 2019-03-14 | 2019-07-05 | 四川长虹电器股份有限公司 | The method for preventing Android intelligent terminal equipment from proposing power by malice root |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040194078A1 (en) * | 2003-03-27 | 2004-09-30 | You-Wei Shen | Method for upgrading software components without system shutdown |
| CN101770366A (en) * | 2009-11-27 | 2010-07-07 | 山东中创软件商用中间件股份有限公司 | Storing and managing method for eclipse inserter based on Web service |
| CN102855144A (en) * | 2011-06-27 | 2013-01-02 | 北大方正集团有限公司 | Version processing method and device used for single-version software |
| CN103440147A (en) * | 2013-08-20 | 2013-12-11 | 天脉聚源(北京)传媒科技有限公司 | Control method and device of software using version |
| CN104281504A (en) * | 2014-10-30 | 2015-01-14 | 广东欧珀移动通信有限公司 | MD5-code-based method and system applied to backup and reduction of application program data |
| CN104391729A (en) * | 2014-12-19 | 2015-03-04 | 北京奇虎科技有限公司 | Root privilege based procedure upgrading method and device |
-
2016
- 2016-10-28 CN CN201610972350.3A patent/CN106528145A/en active Pending
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040194078A1 (en) * | 2003-03-27 | 2004-09-30 | You-Wei Shen | Method for upgrading software components without system shutdown |
| CN101770366A (en) * | 2009-11-27 | 2010-07-07 | 山东中创软件商用中间件股份有限公司 | Storing and managing method for eclipse inserter based on Web service |
| CN102855144A (en) * | 2011-06-27 | 2013-01-02 | 北大方正集团有限公司 | Version processing method and device used for single-version software |
| CN103440147A (en) * | 2013-08-20 | 2013-12-11 | 天脉聚源(北京)传媒科技有限公司 | Control method and device of software using version |
| CN104281504A (en) * | 2014-10-30 | 2015-01-14 | 广东欧珀移动通信有限公司 | MD5-code-based method and system applied to backup and reduction of application program data |
| CN104391729A (en) * | 2014-12-19 | 2015-03-04 | 北京奇虎科技有限公司 | Root privilege based procedure upgrading method and device |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109977663A (en) * | 2019-03-14 | 2019-07-05 | 四川长虹电器股份有限公司 | The method for preventing Android intelligent terminal equipment from proposing power by malice root |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104793946B (en) | Dispositions method and system are applied based on cloud computing platform | |
| CN104008340B (en) | Virus scanning and killing method and device | |
| US9602347B2 (en) | Method, system and program for browser to switch IE kernel | |
| US10216510B2 (en) | Silent upgrade of software with dependencies | |
| Rossel | Continuous Integration, Delivery, and Deployment: Reliable and faster software releases with automating builds, tests, and deployment | |
| US9864736B2 (en) | Information processing apparatus, control method, and recording medium | |
| CN107506221A (en) | Application program updating method, apparatus and equipment | |
| CN103559065B (en) | Method and system for OTA (Over-the-Air Technology) upgrade | |
| CN106897053B (en) | Code publishing method and device | |
| US20120254118A1 (en) | Recovery of tenant data across tenant moves | |
| US20150142764A1 (en) | Language tag management on international data storage | |
| CN106789249B (en) | Hot updating method, client and server | |
| CN103678487A (en) | Method and device for generating web page snapshot | |
| US9081619B2 (en) | Provisioning a web hosting resource using a cloud service | |
| US9513762B1 (en) | Static content updates | |
| Negus | Docker Containers (includes Content Update Program) Build and Deploy with Kubernetes, Flannel, Cockpit, and Atomic | |
| US20190080016A1 (en) | Systems and methods for updating data pipelines | |
| CN103677937A (en) | Method and device for upgrading and running software | |
| CN108509435A (en) | The method and apparatus of instance system carry telefile | |
| CN117693734A (en) | Front-end item processing method, device, equipment, management system and storage medium | |
| US20100318967A1 (en) | Supplementary deployment actions | |
| CN113569257B (en) | User authority management method and device in gray level release | |
| US10796023B2 (en) | Techniques for maintaining image integrity in containerized applications | |
| US20220012230A1 (en) | Management system, acquisition device, and management method | |
| US10803093B2 (en) | Systems and methods for enabling a file management label to persist on a data file |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20170322 |
|
| WD01 | Invention patent application deemed withdrawn after publication |