CN112257122B - Data processing method, device, equipment and storage medium based on T2 chip - Google Patents
Data processing method, device, equipment and storage medium based on T2 chip Download PDFInfo
- Publication number
- CN112257122B CN112257122B CN202011138949.XA CN202011138949A CN112257122B CN 112257122 B CN112257122 B CN 112257122B CN 202011138949 A CN202011138949 A CN 202011138949A CN 112257122 B CN112257122 B CN 112257122B
- Authority
- CN
- China
- Prior art keywords
- data
- storage disk
- chip
- reading
- correction
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000003672 processing method Methods 0.000 title claims abstract description 23
- 238000012937 correction Methods 0.000 claims abstract description 95
- 238000000034 method Methods 0.000 claims abstract description 31
- 238000004458 analytical method Methods 0.000 claims abstract description 25
- 238000005192 partition Methods 0.000 claims abstract description 24
- 238000000605 extraction Methods 0.000 claims abstract description 15
- 230000003213 activating effect Effects 0.000 claims abstract description 14
- 230000006870 function Effects 0.000 claims description 110
- 238000012545 processing Methods 0.000 claims description 34
- 230000004913 activation Effects 0.000 claims description 4
- 238000004590 computer program Methods 0.000 claims 2
- 238000013075 data extraction Methods 0.000 abstract description 2
- 230000004048 modification Effects 0.000 description 8
- 238000012986 modification Methods 0.000 description 8
- 230000008569 process Effects 0.000 description 8
- 238000010586 diagram Methods 0.000 description 7
- 101100127285 Drosophila melanogaster unc-104 gene Proteins 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000012217 deletion Methods 0.000 description 1
- 230000037430 deletion Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000002085 persistent effect Effects 0.000 description 1
- 238000011084 recovery Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/78—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data
- G06F21/80—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data in storage media based on magnetic or optical technology, e.g. disks with sectors
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/71—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
- G06F21/72—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information in cryptographic circuits
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- Software Systems (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Mathematical Physics (AREA)
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
Abstract
The invention relates to the field of data extraction, and discloses a data processing method, device and equipment based on a T2 chip and a storage medium. The method comprises the following steps: acquiring equipment attributes in Mac equipment, and judging whether a T2 chip exists in the Mac equipment or not based on the equipment attributes; if so, acquiring a preset correction strategy function, replacing the original strategy function in the storage disk with the correction strategy function, and creating a corresponding identification file in a physical partition of the storage disk; receiving an analysis request of target data in the storage disk, and searching an identification file corresponding to the target data in the storage disk according to the analysis request; and activating the correction strategy function based on the identification file, reading target data in the storage disk according to the correction strategy function, and storing the target data in a preset extraction database.
Description
Technical Field
The present invention relates to the field of data extraction, and in particular, to a data processing method, apparatus, device and storage medium based on a T2 chip.
Background
An Apple T2 chip is introduced into the Mac equipment, the Apple T2 chip can be used for providing an encryption storage function, and encryption is realized through a 256-bit key bound with a unique identifier in the Apple T2 chip. On this basis, the encryption and decryption process of the data can be realized without inputting a password. In the process of reading data, the data are exchanged with the T2 chip, and the safety of the data can be ensured according to the encryption method of the T2 chip. However, after the Apple T2 chip is started for use, the single disk data is backed up, and only the whole disk can be backed up, so that the data cannot be recovered after the data is deleted by mistake.
The data in the disk cannot be obtained independently and can only be read and obtained through the Apple T2 chip, so that the third party system cannot open the disk under the condition that the password can not be obtained. In this case, in order to solve the problems of data backup and data recovery after file deletion by mistake, a technology capable of reading data encrypted by Apple T2 chip is required.
Disclosure of Invention
The invention mainly aims to solve the technical problems that the data encrypted by the T2 chip cannot be backed up and the data cannot be recovered after the file is deleted by mistake.
The first aspect of the invention provides a data processing method based on a T2 chip, which comprises the following steps:
Acquiring equipment attributes in Mac equipment, and judging whether a T2 chip exists in the Mac equipment or not based on the equipment attributes;
if so, acquiring a preset correction strategy function, replacing the original strategy function in the storage disk with the correction strategy function, and creating a corresponding identification file in a physical partition of the storage disk;
Receiving an analysis request of target data in the storage disk, and searching an identification file corresponding to the target data in the storage disk according to the analysis request;
and activating the correction strategy function based on the identification file, reading target data in the storage disk according to the correction strategy function, and storing the target data in a preset extraction database.
Optionally, in a first implementation manner of the first aspect of the present invention, the obtaining the device attribute in the Mac device, and determining whether the T2 chip exists in the Mac device based on the device attribute includes:
reading equipment attributes in Mac equipment, and capturing character strings corresponding to network bridge data types in the equipment attributes;
judging whether the character string contains a characteristic character string of a T2 chip or not;
If the characteristic character string is contained, confirming that the T2 chip exists in the Mac equipment;
and if the characteristic character string is not contained, confirming that the T2 chip is not present in the Mac equipment.
Optionally, in a second implementation manner of the first aspect of the present invention, the obtaining a preset correction policy function, and replacing the correction policy function with an original policy function in the storage disk includes:
Reading data interface attributes in the Mac equipment and reading interface character strings corresponding to the data interface attributes;
Judging whether the interface character string belongs to a built-in disk character string or not;
If the interface character string belongs to the storage disk, reading a disk name number of the storage disk corresponding to the interface character string;
deleting an original data block switching table containing an original strategy function in the storage disk according to the disk name number, and creating a modified data block switching table on a physical storage address of the original data block switching table;
writing a preset correction strategy function into the correction block data switching table, and loading the correction block data switching table into the storage disk.
Optionally, in a third implementation manner of the first aspect of the present invention, creating the corresponding identification file in the physical partition of the storage disk includes:
Creating corresponding identification files in each physical partition of the storage disk respectively;
and setting the size of a designated block read from the storage disk at one time of each identification file to 0x10000 bytes.
Optionally, in a fourth implementation manner of the first aspect of the present invention, the receiving the analysis request of the target data in the storage disk, and searching, according to the analysis request, the identification file corresponding to the target data in the storage disk includes:
Receiving an analysis request of target data in the storage disk, and traversing and reading a driving character string corresponding to a driving service loaded in the Mac equipment;
Reading a strategy character string corresponding to the correction strategy function, and connecting a target driving service corresponding to the correction strategy function according to the matching between the strategy character string and the driving character string;
based on the target driving service, reading a physical offset address and an identification file of the target data in the storage disk;
And setting the physical offset address as a reading starting address of the identification file.
Optionally, in a fifth implementation manner of the first aspect of the present invention, activating the correction policy function based on the identification file, and according to the correction policy function, reading target data in the storage disk, and storing the target data in a preset extraction database includes:
activating the correction policy function based on the identification file;
Judging whether cache data exist in a read-write cache area in the storage disk or not;
If so, reading the storage node name corresponding to the cache data, and judging whether the storage node name is the name corresponding to the identification file;
if the name is the corresponding name, modifying the original offset address in the read-write buffer into the physical offset address, calling the correction strategy function, and reading the target data;
And storing the target data in a preset extraction database.
Optionally, in a sixth implementation manner of the first aspect of the present invention, the modifying the original offset address in the read-write buffer into the physical offset address, calling the correction policy function, and reading the target data includes:
reading an original offset address in the read-write buffer;
reading a physical offset address in the correction strategy function, and replacing the original offset address with the physical offset address;
setting the physical block number corresponding to the read-write buffer area as a target data block number, calling the correction strategy function, and reading the target data.
The second aspect of the present invention provides a data processing apparatus based on a T2 chip, comprising:
the device comprises an acquisition module, a processing module and a processing module, wherein the acquisition module is used for acquiring equipment attributes in Mac equipment and judging whether a T2 chip exists in the Mac equipment based on the equipment attributes;
the replacing module is used for acquiring a preset correcting strategy function if the correcting strategy function exists, replacing the original strategy function in the storage disk by the correcting strategy function, and creating a corresponding identification file in a physical partition of the storage disk;
the searching module is used for receiving an analysis request of target data in the storage disk and searching an identification file corresponding to the target data in the storage disk according to the analysis request;
And the activation module is used for activating the correction strategy function based on the identification file, reading target data in the storage disk according to the correction strategy function, and storing the target data in a preset extraction database.
A third aspect of the present invention provides a data processing apparatus based on a T2 chip, comprising: a memory and at least one processor, the memory having instructions stored therein, the memory and the at least one processor being interconnected by a line; the at least one processor invokes the instructions in the memory to cause the T2 chip-based data processing apparatus to perform the T2 chip-based data processing method described above.
A fourth aspect of the present invention provides a computer readable storage medium having instructions stored therein which, when run on a computer, cause the computer to perform the above-described T2 chip-based data processing method.
Drawings
FIG. 1 is a schematic diagram of a first embodiment of a data processing method based on a T2 chip according to an embodiment of the present invention;
FIG. 2 is a diagram illustrating a second embodiment of a data processing method based on a T2 chip according to an embodiment of the present invention;
FIG. 3 is a diagram illustrating a third embodiment of a data processing method based on a T2 chip according to an embodiment of the present invention;
FIG. 4 is a schematic diagram of an embodiment of a data processing apparatus based on a T2 chip according to an embodiment of the present invention;
FIG. 5 is a schematic diagram of another embodiment of a data processing apparatus based on a T2 chip according to an embodiment of the present invention;
FIG. 6 is a schematic diagram of an embodiment of a data processing apparatus based on a T2 chip according to an embodiment of the present invention.
Detailed Description
The embodiment of the invention provides a data processing method, device and equipment based on a T2 chip and a storage medium.
The terms "first," "second," "third," "fourth" and the like in the description and in the claims and in the above drawings, if any, are used for distinguishing between similar objects and not necessarily for describing a particular sequential or chronological order. It is to be understood that the data so used may be interchanged where appropriate such that the embodiments described herein may be implemented in other sequences than those illustrated or otherwise described herein. Furthermore, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, system, article, or apparatus that comprises a list of steps or elements is not necessarily limited to those steps or elements expressly listed or inherent to such process, method, article, or apparatus.
For easy understanding, the following describes a specific flow of an embodiment of the present invention, referring to fig. 1, and a first embodiment of a data processing method based on a T2 chip in an embodiment of the present invention includes:
101. acquiring equipment attributes in Mac equipment, and judging whether a T2 chip exists in the Mac equipment based on the equipment attributes;
In this embodiment, the calling system_ profiler instruction in the Mac device obtains the system device attribute, searches the option value of "Spi Bridge Data Type" of the attribute option to find out whether the "Apple T2" character string is present, if the "Apple T2" character string is present, it indicates that the Mac device is a T2 chip present, and if the "Apple T2" character string is not present, it indicates that the Mac device is a T2 chip not present.
102. If the data exists, acquiring a preset correction strategy function, replacing the original strategy function in the storage disk with the correction strategy function, and creating a corresponding identification file in a physical partition of the storage disk;
In this embodiment, if a T2 chip exists, it is necessary to adjust the read policy function of the disk, and adjust the modification authority of the drive file. And (3) starting loading a driving stage, traversing the interface of the I/O equipment, finding the storage disk equipment under the Mac equipment, reading the I/O BSD Name attribute of the storage disk, judging whether the Name attribute is 'disk 0', and if so, confirming that the disk is a local storage disk and is not an external mobile disk. Reading the core ID number and the data block size of the disk of disk0, and confirming that the data block size is 4096 bytes when the data block size is 0 bytes. And searching a block device switching table of the disk0, wherein the block device switching table records the opening, closing, strategy routine, acquisition size and processing function corresponding to the acquisition type operation which can be called by the block device. After the block device switching table is moved out, a new block device switching table is copied and created, and the new block device switching table is provided with a correction strategy function, wherein the correction strategy function is data of contents such as a set read address, a processing operation, an output address and the like. And replacing the block device switching table to change the strategy function, wherein the T2 chip is not used for loading in the data reading process. And respectively creating a random identification file with 32-bit length random numbers in each disk partition, setting the file size to be the size of a specified block read from the encrypted disk at one time later, and setting the file size to be 0x10000 bytes.
103. Receiving an analysis request of target data in a storage disk, and searching an identification file corresponding to the target data in the storage disk according to the analysis request;
in this embodiment, an analysis request of a data block in a specified disk partition is received, a driving class name is matched to find a correction policy function, a corrected driving service is connected, a disk physical offset address of the specified data block under the read disk partition is opened, an identification file with a 32-bit length created in the specified disk partition is opened, and data reading is started from the offset address to read data totaling 0x10000 bytes.
104. And activating a correction strategy function based on the identification file, reading target data in the storage disk according to the correction strategy function, and storing the target data in a preset extraction database.
In this embodiment, the read identifier file activates the correction policy function in the execution block device switching table, determines whether data exists in the read-write buffer, and if so, obtains the storage node name associated with the data in the buffer from the record, and determines whether the storage node name is the same as the file name of the created identifier file with the length of 32 bits. If the data block is the same, the physical offset address of the identification file data block storing the name of the 32-bit random number to be read on the disk is found in the recorded data buf structure of the buffer, then the physical offset address is replaced by the physical offset address adjusted in the correction strategy function, the physical block number associated with the buffer is set as the data block number to be read, then the read operation on the disk is executed, the data of 0x10000 bytes are read, namely the data of the data block to be read in a specified scanning way, and the reading of the target data in the storage disk under the encryption condition of the T2 chip is completed.
In the embodiment of the invention, the read-write storage of the disk is reset through the adjustment and modification of the read-write strategy function of the disk, so that the disk data can still be read and backed up under the condition of encryption of the T2 chip, and the problem that a user can recover the data stored in the T2 chip under the condition of deleting the data by mistake under the condition of no decryption is solved.
Referring to fig. 2, a second embodiment of a data processing method based on a T2 chip according to an embodiment of the present invention includes:
201. reading equipment attributes in Mac equipment, and capturing character strings corresponding to network bridge data types in the equipment attributes;
in this embodiment, the call system_ profiler instruction traverses the read device attributes in the Mac device, and the corresponding string "ssk lpo Apple T2" with the attribute option "Spi Bridge Data Type" is called in the device data attributes.
202. Judging whether the character string contains a characteristic character string of the T2 chip;
In this embodiment, it is determined whether "ssk lpo Apple T2" contains the feature string of "Apple T2".
203. If the character string is not contained, confirming that the T2 chip does not exist in the Mac equipment;
In this embodiment, if the character string obtained by "Spi Bridge Data Type" does not include the "Apple T2" character string, it is considered that the Mac device does not have a T2 chip, and then the execution of other operations is stopped to terminate the operation.
204. If the character string is contained, confirming that a T2 chip exists in Mac equipment;
In this embodiment, the string obtained by "Spi Bridge Data Type" contains "Apple T2", confirming that the T2 chip is present in the Mac device.
205. If the T2 chip exists in the Mac equipment, reading the data interface attribute in the Mac equipment and reading an interface character string corresponding to the data interface attribute;
in this embodiment, the I/O interface device in the Mac device is traversed and read, and the disk storage device under the iMac is found, so as to further obtain the character string of the I/O BSD Name attribute of the device.
206. Judging whether the interface character string belongs to a built-in disk character string or not;
in this embodiment, it is determined whether the string of the I/O BSD Name attribute is a disk string "disk0".
207. If the character string belongs to the storage disk, reading a disk name number of the storage disk corresponding to the interface character string;
In this embodiment, the string of the I/O BSD Name attribute corresponds to the disk Name number I/O BSD core ID number.
208. Deleting an original data block switching table containing an original strategy function in a storage disk according to the disk name number, and creating a modified data block switching table on a physical storage address of the original data block switching table;
in this embodiment, the kernel function is called by the obtained device I/O SBD core ID number, the block device switching table of the device object is removed, and the correction data block switching table is newly added to the original physical storage address.
209. Writing a preset correction strategy function into the correction block data switching table, and loading the correction block data switching table into a storage disk;
in this embodiment, a correction policy function corresponding to the operations of opening, closing, policy routine, obtaining size, obtaining type is written in the correction data block switching table, and the correction data block switching table is loaded into the storage disk.
210. Creating corresponding identification files in each physical partition of the storage disk respectively;
In this embodiment, the data blocks of APFS partitions have different partition divisions, so that the identification files with no file name can be written into the different partition divisions.
211. The method comprises the steps of setting the size of a designated block read from a storage disk at one time of each identification file to be 0x10000 bytes;
in this embodiment, the size of bytes of each identification file in the data reading process is set to be 0x10000 bytes, and when the corresponding file of each identification file in the physical partition is read, the data size is set to be 0x10000 bytes.
212. Receiving an analysis request of target data in a storage disk, and searching an identification file corresponding to the target data in the storage disk according to the analysis request;
the method embodiment described in this embodiment is similar to the first embodiment, and reference may be made to the corresponding procedure in the foregoing method embodiment, which is not described herein.
213. And activating a correction strategy function based on the identification file, reading target data in the storage disk according to the correction strategy function, and storing the target data in a preset extraction database.
The method embodiment described in this embodiment is similar to the first embodiment, and reference may be made to the corresponding procedure in the foregoing method embodiment, which is not described herein.
In the embodiment of the invention, the read-write storage of the disk is reset through the adjustment and modification of the read-write strategy function of the disk, so that the disk data can still be read and backed up under the condition of encryption of the T2 chip, and the problem that a user can recover the data stored in the T2 chip under the condition of deleting the data by mistake under the condition of no decryption is solved.
Referring to fig. 3, a third embodiment of a data processing method based on a T2 chip according to an embodiment of the present invention includes:
301. acquiring equipment attributes in Mac equipment, and judging whether a T2 chip exists in the Mac equipment based on the equipment attributes;
the method embodiment described in this embodiment is similar to the first embodiment, and reference may be made to the corresponding procedure in the foregoing method embodiment, which is not described herein.
302. If the data exists, acquiring a preset correction strategy function, replacing the original strategy function in the storage disk with the correction strategy function, and creating a corresponding identification file in a physical partition of the storage disk;
the method embodiment described in this embodiment is similar to the first embodiment, and reference may be made to the corresponding procedure in the foregoing method embodiment, which is not described herein.
303. Receiving an analysis request of target data in the storage disk, and traversing and reading a driving character string corresponding to a driving service loaded in the Mac equipment;
in the present embodiment, the parsing request is received, and the strings "dsd", "BXI iook", "1234656856" of the driving service are read.
304. Reading a strategy character string corresponding to the correction strategy function, and connecting a target driving service corresponding to the correction strategy function according to the matching between the strategy character string and the driving character string;
in the present embodiment, the read policy string is "BXI iook", and the drive service accessing "BXI iook" is connected according to the character matching of "BXI iook".
305. Based on the target driving service, reading a physical offset address and an identification file of the target data in the storage disk;
In this embodiment, the resolution target data of the drive service at "BXI iook" is stored in the identification file of the physical offset address of the disk and the random 32-bit length random number.
306. Setting the physical offset address as a reading start address of the identification file;
In this embodiment, the physical offset address and the read address set to identify the start of the file.
307. Activating the correction policy function based on the identification file;
In this embodiment, the identification file of the physical partition where the target data is located is read, and the correction policy function is started through the identification file.
308. Judging whether cache data exist in a read-write cache area in the storage disk or not;
in this embodiment, the access read-write buffer area determines whether the byte number of the read-write buffer area is 0, and if not, there is buffer data.
309. If so, reading the storage node name corresponding to the cache data, and judging whether the storage node name is the name corresponding to the identification file;
In this embodiment, the v node name of the cache data is read, and it is determined whether the v node name is identical to the identification file "BXI iook".
310. If the name is the corresponding name, reading the original offset address in the read-write buffer area;
in this embodiment, if the names are identical, the initial physical offset address of the data in the buffer area in the storage disk is read.
311. Reading a physical offset address in the correction strategy function, and replacing the original offset address with the physical offset address;
In this embodiment, the correction policy function has a physical offset address for indicating the start address of the read data, and the physical offset address of the read data is changed to the original offset address.
312. Setting a physical block number corresponding to the read-write buffer area as a target data block number, calling the correction strategy function, and reading the target data;
In this embodiment, the physical block number "DS5422" in the read-write buffer is set as the read target data block number, and the operations of opening, closing, policy routine, acquiring size, acquiring type set in the correction policy function are called to read the target data.
313. And storing the target data in a preset extraction database.
The method embodiment described in this embodiment is similar to the first embodiment, and reference may be made to the corresponding procedure in the foregoing method embodiment, which is not described herein.
In the embodiment of the invention, the read-write storage of the disk is reset through the adjustment and modification of the read-write strategy function of the disk, so that the disk data can still be read and backed up under the condition of encryption of the T2 chip, and the problem that a user can recover the data stored in the T2 chip under the condition of deleting the data by mistake under the condition of no decryption is solved.
The data processing method based on the T2 chip in the embodiment of the present invention is described above, and the data processing device based on the T2 chip in the embodiment of the present invention is described below, referring to fig. 4, and one embodiment of the data processing device based on the T2 chip in the embodiment of the present invention includes:
an obtaining module 401, configured to obtain an equipment attribute in a Mac device, and determine whether a T2 chip exists in the Mac device based on the equipment attribute;
a replacing module 402, configured to obtain a preset correction policy function if the correction policy function exists, replace the original policy function in the storage disk with the correction policy function, and create a corresponding identification file in a physical partition of the storage disk;
The searching module 403 is configured to receive an analysis request of target data in the storage disk, and find an identification file corresponding to the target data in the storage disk according to the analysis request;
And the activation module 404 is configured to activate the correction policy function based on the identification file, read target data in the storage disk according to the correction policy function, and store the target data in a preset extraction database.
In the embodiment of the invention, the read-write storage of the disk is reset through the adjustment and modification of the read-write strategy function of the disk, so that the disk data can still be read and backed up under the condition of encryption of the T2 chip, and the problem that a user can recover the data stored in the T2 chip under the condition of deleting the data by mistake under the condition of no decryption is solved.
Referring to fig. 5, another embodiment of a data processing apparatus based on a T2 chip according to an embodiment of the present invention includes:
an obtaining module 401, configured to obtain an equipment attribute in a Mac device, and determine whether a T2 chip exists in the Mac device based on the equipment attribute;
a replacing module 402, configured to obtain a preset correction policy function if the correction policy function exists, replace the original policy function in the storage disk with the correction policy function, and create a corresponding identification file in a physical partition of the storage disk;
The searching module 403 is configured to receive an analysis request of target data in the storage disk, and find an identification file corresponding to the target data in the storage disk according to the analysis request;
And the activation module 404 is configured to activate the correction policy function based on the identification file, read target data in the storage disk according to the correction policy function, and store the target data in a preset extraction database.
The obtaining module 401 is specifically configured to:
reading equipment attributes in Mac equipment, and capturing character strings corresponding to network bridge data types in the equipment attributes;
judging whether the character string contains a characteristic character string of a T2 chip or not;
If the characteristic character string is contained, confirming that the T2 chip exists in the Mac equipment;
and if the characteristic character string is not contained, confirming that the T2 chip is not present in the Mac equipment.
Wherein, the replacing module 402 is specifically configured to:
Reading data interface attributes in the Mac equipment and reading interface character strings corresponding to the data interface attributes;
Judging whether the interface character string belongs to a built-in disk character string or not;
If the interface character string belongs to the storage disk, reading a disk name number of the storage disk corresponding to the interface character string;
deleting an original data block switching table containing an original strategy function in the storage disk according to the disk name number, and creating a modified data block switching table on a physical storage address of the original data block switching table;
writing a preset correction strategy function into the correction block data switching table, and loading the correction block data switching table into the storage disk.
Wherein, the replacing module 402 may be further specifically configured to:
Creating corresponding identification files in each physical partition of the storage disk respectively;
and setting the size of a designated block read from the storage disk at one time of each identification file to 0x10000 bytes.
Wherein, the searching module 403 is specifically configured to:
Receiving an analysis request of target data in the storage disk, and traversing and reading a driving character string corresponding to a driving service loaded in the Mac equipment;
Reading a strategy character string corresponding to the correction strategy function, and connecting a target driving service corresponding to the correction strategy function according to the matching between the strategy character string and the driving character string;
based on the target driving service, reading a physical offset address and an identification file of the target data in the storage disk;
And setting the physical offset address as a reading starting address of the identification file.
Wherein the activating module 404 includes:
An activating unit 4041, configured to activate the correction policy function based on the identification file;
a first judging unit 4042, configured to judge whether there is cache data in the read-write cache area in the storage disk;
A second judging unit 4043, configured to read a storage node name corresponding to the cache data if the cache data exists, and judge whether the storage node name is a name corresponding to the identification file;
a modifying unit 4044, configured to modify the original offset address in the read-write buffer area into the physical offset address if the name is a corresponding name, call the correction policy function, and read the target data;
A storage unit 4045 for storing the target data in a preset extraction database.
Wherein, the modification unit 4044 is specifically configured to:
reading an original offset address in the read-write buffer;
reading a physical offset address in the correction strategy function, and replacing the original offset address with the physical offset address;
setting the physical block number corresponding to the read-write buffer area as a target data block number, calling the correction strategy function, and reading the target data.
In the embodiment of the invention, the read-write storage of the disk is reset through the adjustment and modification of the read-write strategy function of the disk, so that the disk data can still be read and backed up under the condition of encryption of the T2 chip, and the problem that a user can recover the data stored in the T2 chip under the condition of deleting the data by mistake under the condition of no decryption is solved.
The data processing apparatus based on the T2 chip in the embodiment of the present invention is described in detail from the point of view of the modularized functional entity in fig. 4 and fig. 5, and the data processing device based on the T2 chip in the embodiment of the present invention is described in detail from the point of view of hardware processing.
Fig. 6 is a schematic structural diagram of a data processing device based on a T2 chip according to an embodiment of the present invention, where the data processing device 600 based on a T2 chip may have a relatively large difference due to configuration or performance, and may include one or more processors (central processing units, CPU) 610 (e.g., one or more processors) and a memory 620, and one or more storage mediums 630 (e.g., one or more mass storage devices) storing application programs 633 or data 632. Wherein the memory 620 and the storage medium 630 may be transitory or persistent storage. The program stored in the storage medium 630 may include one or more modules (not shown), each of which may include a series of instruction operations on the T2 chip-based data processing apparatus 600. Still further, the processor 610 may be configured to communicate with the storage medium 630 and execute a series of instruction operations in the storage medium 630 on the T2 chip-based data processing device 600.
The T2 chip based data processing apparatus 600 may also include one or more power supplies 640, one or more wired or wireless network interfaces 650, one or more input/output interfaces 660, and/or one or more operating systems 631, such as Windows Serve, mac OS X, unix, linux, freeBSD, and the like. It will be appreciated by those skilled in the art that the T2 chip based data processing apparatus structure shown in fig. 6 does not constitute a limitation of the T2 chip based data processing apparatus, and may include more or less components than illustrated, or may combine certain components, or may be arranged in different components.
The present invention also provides a computer readable storage medium, which may be a non-volatile computer readable storage medium, and may also be a volatile computer readable storage medium, where instructions are stored in the computer readable storage medium, when the instructions are executed on a computer, cause the computer to perform the steps of the data processing method based on a T2 chip.
It will be clearly understood by those skilled in the art that, for convenience and brevity of description, the specific working process of the system or apparatus and unit described above may refer to the corresponding process in the foregoing method embodiment, which is not repeated herein.
The integrated units, if implemented in the form of software functional units and sold or used as stand-alone products, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention may be embodied essentially or in part or all of the technical solution or in part in the form of a software product stored in a storage medium, including instructions for causing a computer device (which may be a personal computer, a server, or a network device, etc.) to perform all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a read-only memory (ROM), a random access memory (random access memory, RAM), a magnetic disk, or an optical disk, or other various media capable of storing program codes.
The above embodiments are only for illustrating the technical solution of the present invention, and not for limiting the same; although the invention has been described in detail with reference to the foregoing embodiments, it will be understood by those of ordinary skill in the art that: the technical scheme described in the foregoing embodiments can be modified or some technical features thereof can be replaced by equivalents; such modifications and substitutions do not depart from the spirit and scope of the technical solutions of the embodiments of the present invention.
Claims (9)
1. The data processing method based on the T2 chip is characterized by comprising the following steps:
Acquiring equipment attributes in Mac equipment, and judging whether a T2 chip exists in the Mac equipment or not based on the equipment attributes;
If the data exists, acquiring a preset correction strategy function, replacing the original strategy function in the storage disk with the correction strategy function, and creating a corresponding identification file in a physical partition of the storage disk, wherein the correction strategy function is data for setting a reading address, processing operation and output address;
Receiving an analysis request of target data in the storage disk, and searching an identification file corresponding to the target data in the storage disk according to the analysis request;
Activating the correction strategy function based on the identification file, reading target data in the storage disk according to the correction strategy function, and storing the target data in a preset extraction database;
wherein the obtaining a preset correction policy function, and replacing the correction policy function with the original policy function in the storage disk includes:
Reading data interface attributes in the Mac equipment and reading interface character strings corresponding to the data interface attributes;
Judging whether the interface character string belongs to a built-in disk character string or not;
If the interface character string belongs to the storage disk, reading a disk name number of the storage disk corresponding to the interface character string;
deleting an original data block switching table containing an original strategy function in the storage disk according to the disk name number, and creating a modified data block switching table on a physical storage address of the original data block switching table;
Writing a preset correction strategy function in a correction block data switching table, and loading the correction block data switching table into the storage disk.
2. The T2 chip-based data processing method according to claim 1, wherein the acquiring the device attribute in the Mac device, and determining whether the T2 chip is present in the Mac device based on the device attribute, comprises:
reading equipment attributes in Mac equipment, and capturing character strings corresponding to network bridge data types in the equipment attributes;
judging whether the character string contains a characteristic character string of a T2 chip or not;
If the characteristic character string is contained, confirming that the T2 chip exists in the Mac equipment;
and if the characteristic character string is not contained, confirming that the T2 chip is not present in the Mac equipment.
3. The T2 chip based data processing method of claim 1, wherein creating a corresponding identification file in a physical partition of the storage disk comprises:
Creating corresponding identification files in each physical partition of the storage disk respectively;
and setting the size of a designated block read from the storage disk at one time of each identification file to 0x10000 bytes.
4. The data processing method based on the T2 chip of claim 1, wherein the receiving the parsing request of the target data in the storage disk, and according to the parsing request, searching the identification file corresponding to the target data in the storage disk includes:
Receiving an analysis request of target data in the storage disk, and traversing and reading a driving character string corresponding to a driving service loaded in the Mac equipment;
Reading a strategy character string corresponding to the correction strategy function, and connecting a target driving service corresponding to the correction strategy function according to the matching between the strategy character string and the driving character string;
based on the target driving service, reading a physical offset address and an identification file of the target data in the storage disk;
And setting the physical offset address as a reading starting address of the identification file.
5. The T2 chip-based data processing method according to claim 4, wherein activating the correction policy function based on the identification file, and reading target data in the storage disk according to the correction policy function, and storing the target data in a preset extraction database comprises:
activating the correction policy function based on the identification file;
Judging whether cache data exist in a read-write cache area in the storage disk or not;
If so, reading the storage node name corresponding to the cache data, and judging whether the storage node name is the name corresponding to the identification file;
if the name is the corresponding name, modifying the original offset address in the read-write buffer into the physical offset address, calling the correction strategy function, and reading the target data;
And storing the target data in a preset extraction database.
6. The method for processing data based on a T2 chip as claimed in claim 5, wherein said modifying the original offset address in the read-write buffer into the physical offset address, invoking the correction policy function, and reading the target data comprises:
reading an original offset address in the read-write buffer;
reading a physical offset address in the correction strategy function, and replacing the original offset address with the physical offset address;
setting the physical block number corresponding to the read-write buffer area as a target data block number, calling the correction strategy function, and reading the target data.
7. A data processing device based on a T2 chip, wherein the data processing device based on the T2 chip comprises:
the device comprises an acquisition module, a processing module and a processing module, wherein the acquisition module is used for acquiring equipment attributes in Mac equipment and judging whether a T2 chip exists in the Mac equipment based on the equipment attributes;
The replacing module is used for acquiring a preset correcting strategy function if the correcting strategy function exists, replacing the original strategy function in the storage disk with the correcting strategy function, and creating a corresponding identification file in a physical partition of the storage disk, wherein the correcting strategy function is data for setting a reading address, processing operation and output address;
the searching module is used for receiving an analysis request of target data in the storage disk and searching an identification file corresponding to the target data in the storage disk according to the analysis request;
the activation module is used for activating the correction strategy function based on the identification file, reading target data in the storage disk according to the correction strategy function, and storing the target data in a preset extraction database;
wherein, the replacement module is further specifically configured to:
Reading data interface attributes in the Mac equipment and reading interface character strings corresponding to the data interface attributes;
Judging whether the interface character string belongs to a built-in disk character string or not;
If the interface character string belongs to the storage disk, reading a disk name number of the storage disk corresponding to the interface character string;
deleting an original data block switching table containing an original strategy function in the storage disk according to the disk name number, and creating a modified data block switching table on a physical storage address of the original data block switching table;
Writing a preset correction strategy function in a correction block data switching table, and loading the correction block data switching table into the storage disk.
8. A T2 chip-based data processing apparatus, characterized in that the T2 chip-based data processing apparatus comprises: a memory and at least one processor, the memory having instructions stored therein, the memory and the at least one processor being interconnected by a line;
the at least one processor invoking the instructions in the memory to cause the T2 chip-based data processing apparatus to perform the T2 chip-based data processing method of any of claims 1-6.
9. A computer readable storage medium having stored thereon a computer program, characterized in that the computer program, when executed by a processor, implements the T2 chip based data processing method according to any of claims 1-6.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011138949.XA CN112257122B (en) | 2020-10-22 | 2020-10-22 | Data processing method, device, equipment and storage medium based on T2 chip |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011138949.XA CN112257122B (en) | 2020-10-22 | 2020-10-22 | Data processing method, device, equipment and storage medium based on T2 chip |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN112257122A CN112257122A (en) | 2021-01-22 |
| CN112257122B true CN112257122B (en) | 2024-06-28 |
Family
ID=74263505
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011138949.XA Active CN112257122B (en) | 2020-10-22 | 2020-10-22 | Data processing method, device, equipment and storage medium based on T2 chip |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112257122B (en) |
Family Cites Families (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103870769B (en) * | 2014-02-20 | 2017-02-15 | 北京深思数盾科技股份有限公司 | Method and system for protecting magnetic disk |
| DK201670616A1 (en) * | 2016-06-12 | 2018-01-22 | Apple Inc | Devices and Methods for Accessing Prevalent Device Functions |
| US10673626B2 (en) * | 2018-03-30 | 2020-06-02 | Spyrus, Inc. | Threshold secret share authentication proof and secure blockchain voting with hardware security modules |
| CN108763401A (en) * | 2018-05-22 | 2018-11-06 | 平安科技(深圳)有限公司 | A kind of reading/writing method and equipment of file |
| US10810248B2 (en) * | 2018-09-24 | 2020-10-20 | Salesforce.Com, Inc. | Upgrading a database from a first version to a second version |
| CN109254735A (en) * | 2018-10-11 | 2019-01-22 | 北京明朝万达科技股份有限公司 | The access control method and device of movable storage device |
| CN111143116A (en) * | 2018-11-06 | 2020-05-12 | 深圳市茁壮网络股份有限公司 | Method and device for processing bad blocks of disk |
| CN110297781B (en) * | 2019-07-02 | 2023-05-02 | 四川效率源信息安全技术股份有限公司 | Method for recovering deleted data in APFS (advanced File System) based on copy-on-write |
| CN110929195B (en) * | 2019-11-21 | 2023-03-24 | 望海康信(北京)科技股份公司 | Data caching strategy determining method and device and electronic equipment |
| CN110941514B (en) * | 2019-11-25 | 2022-05-20 | 湖北工业大学 | Data backup method, data recovery method, computer equipment and storage medium |
| CN111597075B (en) * | 2020-05-11 | 2023-04-07 | 成都艾勃科技有限公司 | Method for recovering data from data storage device encrypted by hardware |
-
2020
- 2020-10-22 CN CN202011138949.XA patent/CN112257122B/en active Active
Non-Patent Citations (2)
| Title |
|---|
| macOS Security;Drew Smith;Apple macOS and iOS System Administration;20200501;全文 * |
| 自研Mac芯明年启用5nm;办公自动化;20200401(第07期);全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN112257122A (en) | 2021-01-22 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US7676481B2 (en) | Serialization of file system item(s) and associated entity(ies) | |
| US6615224B1 (en) | High-performance UNIX file undelete | |
| US7818302B2 (en) | System and method for performing file system checks on an active file system | |
| US7483929B2 (en) | Systems and methods for storing, backing up and recovering computer data files | |
| US7024403B2 (en) | Filter driver for identifying disk files by analysis of content | |
| US8751768B2 (en) | Data storage reclamation systems and methods | |
| US7730090B2 (en) | Architecture for performing file system checking on an active file system | |
| US8954690B2 (en) | Systems and methods for managing unstructured data | |
| US7577808B1 (en) | Efficient backup data retrieval | |
| EP1480132B1 (en) | System and method for identifying and storing changes made to a table | |
| EP1967954A1 (en) | A method for deleting virus program and a method to get back the data destroyed by the virus. | |
| CN112579202B (en) | Method, device, equipment and storage medium for editing server program of Windows system | |
| WO2021129151A1 (en) | File backup method and apparatus, and terminal device | |
| US20040143609A1 (en) | System and method for data extraction in a non-native environment | |
| US7895164B1 (en) | Efficient checkpoint process | |
| CN112115002A (en) | Method and device for recovering file from damaged or non-trusted mechanical hard disk | |
| CN103197987A (en) | Data backup method, data recovery method and cloud storage system | |
| CN116522368A (en) | Firmware decryption analysis method for Internet of things equipment, electronic equipment and medium | |
| CN113190178B (en) | Traceless data deletion method and traceless data deletion system in FAT32 file system | |
| CN112257122B (en) | Data processing method, device, equipment and storage medium based on T2 chip | |
| US20050131960A1 (en) | Method and system of accessing at least one target file in a computer system with an operating system with file locking implemented at file-open time | |
| US7634521B1 (en) | Technique for scanning stealthed, locked, and encrypted files | |
| JP4527697B2 (en) | Leaked personal information search system, leaked personal information search method, leaked personal information search device and program | |
| RU2580014C2 (en) | System and method for changing mask of encrypted region during breakdown in computer system | |
| US8886902B1 (en) | Disk backup set access |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant |