CN106991326A - The upgrade method and its equipment of a kind of equipment firmware - Google Patents
The upgrade method and its equipment of a kind of equipment firmware Download PDFInfo
- Publication number
- CN106991326A CN106991326A CN201710123239.1A CN201710123239A CN106991326A CN 106991326 A CN106991326 A CN 106991326A CN 201710123239 A CN201710123239 A CN 201710123239A CN 106991326 A CN106991326 A CN 106991326A
- Authority
- CN
- China
- Prior art keywords
- file
- upgrade
- equipment
- identification mark
- file identification
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
- G06F21/572—Secure firmware programming, e.g. of basic input output system [BIOS]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F8/00—Arrangements for software engineering
- G06F8/60—Software deployment
- G06F8/65—Updates
Landscapes
- Engineering & Computer Science (AREA)
- General Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Stored Programmes (AREA)
Abstract
The present invention is applied to firmware upgrade technical field there is provided a kind of upgrade method of equipment firmware and its equipment, and method includes:Obtain the upgrade file of equipment firmware;The file verification code included in upgrade file is extracted, according to default checking algorithm and file verification code, judges whether upgrade file is complete;If the upgrade file is complete, the first file identification mark included in upgrade file is extracted, is identified according to default identification marking identifying algorithm and the first file identification, judge whether to perform the updating operation of equipment firmware;If judged result performs updating operation to perform the updating operation of equipment firmware by upgrade file.Verified by integrality and legitimacy to upgrade file, existing DFU technology is solved when upgrade file damage or mistake, equipment will be caused to delay machine, can not normal work, and the legitimacy of upgrade file can not be confirmed, cause the security of equipment low, the problem of being easily tampered.
Description
Technical field
The invention belongs to the upgrade method and its equipment of firmware upgrade technical field, more particularly to a kind of equipment firmware.
Background technology
With the fast development of technology, the renewal of each equipment firmware system, updating operation are also more and more frequent.And it is existing
The upgrade technique of equipment firmware, it is solid so as to realize mainly by obtaining the system file in upgrade file, replacement equipment firmware
Part is upgraded.But when upgrade file is damaged or during mistake, the upgrade file, which is directly replaced, then easily causes equipment to be delayed machine, it is impossible to
Normal work.On the other hand, when criminal modifies to the fixer system of equipment, equipment can not confirm upgrade file
Legitimacy, causes the security of equipment low, is easily distorted by criminal.
The content of the invention
The purpose of the embodiment of the present invention is the upgrade method and its equipment for providing a kind of equipment firmware, it is intended to solve existing
DFU technology when upgrade file damage or mistake when, by the upgrade file directly replace then easily cause equipment to be delayed
Machine, it is impossible to normal work, and when criminal modifies to the fixer system of equipment, equipment can not confirm upgrade file
Legitimacy, cause the security of equipment low, the problem of being easily tampered.
In a first aspect, the embodiment of the present invention provides a kind of upgrade method of equipment firmware, the upgrading side of the equipment firmware
Method includes:
Obtain the upgrade file of equipment firmware;The upgrade file includes the first file identification and identified and file verification
Code;
The file verification code included in the upgrade file is extracted, according to default checking algorithm and the file
Check code, judges whether the upgrade file is complete;
If the upgrade file is complete, first file identification mark included in the upgrade file, root are extracted
Identified according to default identification marking identifying algorithm and first file identification, judge whether to perform the upgrading behaviour of equipment firmware
Make;
If judged result is performs the updating operation of equipment firmware, updating operation is performed by the upgrade file.
Second aspect, the embodiment of the present invention provides a kind of equipment, and the equipment includes:
Upgrade file acquiring unit, the upgrade file for obtaining equipment firmware;The upgrade file includes the first file
Identification marking and file verification code;
Upgrade file complete checks unit, the file verification code included for extracting in the upgrade file, according to
Default checking algorithm and file verification code, judge whether the upgrade file is complete;
First file identification identifies verification unit, if complete for the upgrade file, extracts in the upgrade file
Comprising the first file identification mark, identified, sentenced according to default identification marking identifying algorithm and first file identification
The disconnected updating operation for whether performing equipment firmware;
Upgrading execution unit, if passing through the upgrading text for judged result to perform the updating operation of equipment firmware
Part performs updating operation.
The upgrade method and its equipment for implementing a kind of equipment firmware provided in an embodiment of the present invention have the advantages that:
The embodiment of the present invention is by obtaining the upgrade file of equipment firmware;The upgrade file includes the first file identification mark
Know and file verification code;Extract included in the upgrade file the file verification code, according to default checking algorithm with
And the file verification code, judge whether the upgrade file is complete;If the upgrade file is complete, the upgrading text is extracted
First file identification mark included in part, according to default identification marking identifying algorithm and first file identification
Mark, judges whether to perform the updating operation of equipment firmware;If judged result passes through to perform the updating operation of equipment firmware
The upgrade file performs updating operation, so as to when equipment carries out firmware upgrade, be detected by default checking algorithm
The integrality of upgrade file, it is to avoid carry out updating operation using the file of defect or mistake as upgrade file, cause equipment can not
Normal work.On the other hand, the legitimacy of upgrade file is detected by default identification marking identifying algorithm, equipment is improved and consolidates
The security of part updating operation, it is to avoid distorted by criminal.
Brief description of the drawings
Technical scheme in order to illustrate the embodiments of the present invention more clearly, below will be to embodiment or description of the prior art
In required for the accompanying drawing that uses be briefly described, it should be apparent that, drawings in the following description are only some of the present invention
Embodiment, for those of ordinary skill in the art, without having to pay creative labor, can also be according to these
Accompanying drawing obtains other accompanying drawings.
Fig. 1 is a kind of flow chart of the upgrade method of equipment firmware provided in an embodiment of the present invention;
Fig. 2 is a kind of flow chart of the upgrade method for equipment firmware that another embodiment of the present invention is provided;
Fig. 3 is a kind of structured flowchart of equipment provided in an embodiment of the present invention;
Fig. 4 is a kind of structured flowchart for equipment that another embodiment of the present invention is provided.
Embodiment
In order to make the purpose , technical scheme and advantage of the present invention be clearer, it is right below in conjunction with drawings and Examples
The present invention is further elaborated.It should be appreciated that the specific embodiments described herein are merely illustrative of the present invention, and
It is not used in the restriction present invention.
The embodiment of the present invention is carried out before updating operation is carried out by default checking algorithm to the integrality of upgrade file
Verification, and the file identification mark of upgrade file is verified by default identification marking identifying algorithm, judge upgrading
Whether file is legal, existing DFU technology is solved when upgrade file damage or mistake, by the upgrade file
Directly replacing then easily causes equipment to be delayed machine, it is impossible to normal work, and when criminal repaiies to the fixer system of equipment
When changing, equipment can not confirm the legitimacy of upgrade file, cause the security of equipment low, the problem of being easily tampered.
In embodiments of the present invention, the executive agent of flow is the equipment of pending firmware upgrade operation.The equipment is specific
Preserved for its fixer system by erasable memory module, the operation such as fixer system upgrading, modification, illustrative can be carried out
Ground, such as computer equipment, intelligent mobile terminal equipment.Fig. 1 shows the upgrading of equipment firmware provided in an embodiment of the present invention
The implementation process figure of method, details are as follows:
In S101, the upgrade file of equipment firmware is obtained;The upgrade file include the first file identification identify and
File verification code.
In the present embodiment, the mode of the upgrade file of equipment acquisition equipment firmware includes but is not limited to:Pass through communication network
Network receives upgrade file, or directly obtains upgrade file by the physical interface of equipment.
In the present embodiment, when equipment receives file, first determine whether this document whether be equipment firmware upgrading text
Part, if so, then performing firmware upgrade file verification flow;If it is not, then forwarded, handled according to the particular content of file,
The operation such as storage.
In the present embodiment, the upgrade file of the equipment firmware acquired is loaded onto in the internal memory of equipment, in order to
It is quick to read and handle.Alternatively, judge whether the unit type corresponding to the upgrade file of equipment firmware matches with itself.By
It is often relevant with unit type in the upgrade file of equipment firmware, thus can first judge the upgrade file whether with equipment of itself type
Number matching, if so, then perform firmware upgrade file verification flow;If it is not, then abandoning the upgrade file.
Alternatively, in the present embodiment, upgrade file is handled by AES.Equipment is receiving the upgrade file
Afterwards, operation will be decrypted to upgrade file by the key of agreement, extracts the upgrading data message of upgrade file, the ascending series
It is believed that breath includes updated contents information and file verification code, the corresponding file verification code of the upgrade file is then obtained.
In the present embodiment, identified in each upgrade file comprising file identification.Wherein, this document identification marking has
Uniqueness, each each self-corresponding file identification mark of upgrade file is equal different.This document identification marking includes but is not limited to:Version
This number, sequence number and identification code etc. can be used for the information that represents file identity.
In S102, extract the file verification code included in the upgrade file, according to default checking algorithm with
And the file verification code, judge whether the upgrade file is complete.
In the present embodiment, upgrade file in generation by load document check code.Therefore, equipment is receiving the upgrading
After file, the file verification code of the upgrade file will be obtained by default file verification code extracting rule.
In the present embodiment, by default checking algorithm and file verification code, judge whether the upgrade file is complete
It is whole.If the upgrade file is complete, S103 steps are performed, the verification operation of file identification mark is carried out.Alternatively, if described
Upgrade file is imperfect, then reacquires the upgrade file.
Alternatively, in the present embodiment, the default checking algorithm is specially:By file complete checks algorithm to upgrading
Updated contents information in file carries out verification operation, generates the corresponding full identity code of the updated contents information, and this is complete
Identification code is matched with the file verification code extracted.If the match is successful, then it represents that the upgrade file is complete;Otherwise, it means that
Upgrade file defect or mistake.
In S103, if the upgrade file is complete, extracts first file included in the upgrade file and know
Do not identify, identified according to default identification marking identifying algorithm and first file identification, judge whether that performing equipment consolidates
The updating operation of part.
In the present embodiment, after judged result represents that upgrade file is complete, by the version of further detection upgrade file
Information and legitimacy.
In the present embodiment, equipment is received after the upgrade file, will by default file identification marker extraction algorithm,
Obtain the first file identification mark in upgrade file.Illustratively, this document identification marking extraction algorithm can be:According to about
Fixed extraction regulation, the information for obtaining a certain field in upgrade file is identified as the first file identification of upgrade file.
In the present embodiment, equipment is recognized the first file identification mark by default identification marking identifying algorithm
Card operation.According to authentication result, judge whether to perform the updating operation of equipment firmware.When first file identification mark passes through
Certification, then it represents that the upgrade file is effective upgrade file, can carry out firmware upgrade operation, perform S104 associative operation;Instead
It, then it represents that the upgrade file is invalid upgrade file, then stops this updating operation, and abandon the upgrade file.
In S104, if judged result performs liter to perform the updating operation of equipment firmware by the upgrade file
Level operation.
In the present embodiment, when judge upgrade file can as equipment effective upgrade file when, then perform updating operation.
The system version information of equipment firmware is updated to the system version information in upgrade file, the fixer system pair of equipment is loaded onto
In the memory module answered.
Above as can be seen that a kind of upgrade method of equipment firmware provided in an embodiment of the present invention is by obtaining equipment firmware
Upgrade file;The upgrade file includes the first file identification and identified and file verification code;Extract in the upgrade file
Comprising the file verification code, according to default checking algorithm and the file verification code, judge that the upgrade file is
It is no complete;If the upgrade file is complete, first file identification mark included in the upgrade file is extracted, according to
Default identification marking identifying algorithm and first file identification mark, judge whether to perform the upgrading behaviour of equipment firmware
Make;If judged result is performs the updating operation of equipment firmware, updating operation is performed by the upgrade file, so as to
When equipment carries out firmware upgrade, the integrality of upgrade file is detected by default checking algorithm, it is to avoid by defect or mistake
File as upgrade file carry out updating operation, cause equipment can not normal work.On the other hand, marked by default identification
Know the legitimacy that identifying algorithm detects upgrade file, improve the security of DFU operation, it is to avoid by criminal
Distorted.
Fig. 2 shows a kind of flow chart of the upgrade method for equipment firmware that another embodiment of the present invention is provided.Referring to Fig. 2
Described, relative to a upper embodiment, a kind of upgrade method for equipment firmware that the present embodiment is provided comprises the following steps, and is described in detail such as
Under:
In S201, the upgrade file of equipment firmware is obtained;The upgrade file include the first file identification identify and
File verification code.
Because S201 is identical with the step S101 in a upper embodiment, step S101 in an embodiment is specifically referred to
Associated description, here is omitted.
In S202, extract the file verification code included in the upgrade file, according to default checking algorithm with
And the file verification code, judge whether the upgrade file is complete.
Because S202 is identical with the step S102 in a upper embodiment, step S101 in an embodiment is specifically referred to
Associated description, here is omitted.
Further, it is described according to default checking algorithm and the file school as another embodiment of the present invention
Code is tested, judges also to include after whether the upgrade file is complete:
In S2031, if the upgrade file is imperfect, sends upgrade file and recapture instruction fetch, in order to obtain again
Take whole upgrade file.
In the present embodiment, when judging that the upgrade file is imperfect, then send upgrade file and recapture instruction fetch.Illustrative
Ground, when upgrade file is obtained by communication network, then by the communication network, to the device request weight for sending upgrade file
Newly obtain the upgrade file;When upgrade file by the physical interface of equipment directly obtains upgrade file, then pass through physical interface
Send upgrade file and recapture instruction fetch to the direct-connected equipment of the physical interface.
In the present embodiment, after upgrade file is reacquired, then S202 associative operation is performed, the upgrading is judged again
Whether file is complete.If the upgrade file obtained again is complete, S204 associative operation is performed;Conversely, then continuing executing with
S2031 and S2032 operation.
In S2032, if the upgrade file recaptures instruction fetch transmission times more than predetermined threshold value, stop equipment firmware
Updating operation.
In the present embodiment, equipment records the transmission times that upgrade file recaptures instruction fetch by default memory module.
When equipment judges that upgrade file is imperfect, then the transmission times that upgrade file recaptures instruction fetch is obtained, and by transmission times and in advance
If threshold value is compared.
In the present embodiment, the predetermined threshold value can be configured according to the demand of user, can also be directly silent according to system
The numerical value recognized is as predetermined threshold value.
In the present embodiment, recapture instruction fetch when upgrade file and send and be more than predetermined threshold value, then it represents that the upgrade file is simultaneously
It is non-due to transmission reason and cause its defect or mistake, and be probably due to the corresponding source file of the transmitting terminal of upgrade file in itself
Wrong, therefore, now no longer request reacquires upgrade file, but directly stops the updating operation of the equipment firmware.
In embodiments of the present invention, by being reacquired automatically to wrong upgrade file, it is to avoid during because of transmission
The situation that causes file defect and can not upgrade, on the other hand, by setting the upper limit number of times reacquired, is also further avoided
Constantly circulation obtains the upgrade file of failure, wastes communication network resource.
Further, it is described according to default identification marking identifying algorithm and institute as another embodiment of the present invention
The first file identification mark is stated, judges whether that the updating operation for performing equipment firmware is specially:
In S204, the corresponding second file identification mark of the equipment firmware current version is read.
In the present embodiment, if desired equipment carry out firmware upgrade, then its firmware is inevitable performs correlation with a certain version
Operation.Thus, the current version of equipment firmware will also correspond to a file identification mark, as the second file identification mark.
When second file identification is designated last updating operation, the corresponding file identification mark of upgrade file.
In the present embodiment, equipment will be read in the corresponding memory module of its fixer system, corresponding second text of the version
Part identification marking.When corresponding second file identification, which is not present, in the current version of equipment firmware identifies, then the second file is judged
Identification marking is sky.
In S205, judge that the first file identification mark and second file identification are identified whether unanimously.
In the present embodiment, by the corresponding second file identification mark of the current version for reading obtained equipment firmware with rising
The first file identification mark of level file is matched, and judges whether both are consistent.In the present embodiment, due to file identification mark
The identity information for being mainly used in identifying upgrade file is known, when file identification mark is identical, then it represents that the device upgrade is current
The upgrade file that corresponding upgrade file is obtained with this during fixer system is same upgrade file, and two upgrade files are corresponding
Version is identical.Therefore, identified by comparing the second file identification mark and the first file identification, you can judge equipment firmware
Whether current version version information corresponding with upgrade file is same version.
If the first file identification is identified and the second file identification mark is consistent, S206 is performed;If the first file identification
Mark and the second file identification mark are inconsistent, then perform S207.
In S206, if first file identification mark and second file identification mark are consistent, stop to rise
Level operation.
In the present embodiment, when the first file identification mark and the second file identification mark are consistent, then it represents that equipment is solid
The current version of part version corresponding with upgrade file is same version, therefore then stops updating operation without being upgraded.
In S207, if first file identification mark and second file identification identify inconsistent, basis
Default mark verifies regular and described first file identification mark, judges whether to perform the updating operation of equipment firmware.
In the present embodiment, when the first file identification mark and the second file identification mark are inconsistent, then it represents that equipment
The current version of firmware version corresponding with upgrade file is different editions, thus will be regular to being verified by default mark,
Judge whether the upgrade file is legal, so as to judge whether to perform the updating operation of equipment firmware.
In the present embodiment, when judged result represents the updating operation of executable equipment firmware, then S208 correlation is performed
Operation;When judged result represents not perform the updating operation of equipment firmware, then stop this updating operation, and abandon upgrading text
Part.
In embodiments of the present invention, by the way that the corresponding second file identification mark of equipment firmware current version and upgrading is literary
The first file identification mark of part is compared, and judges whether both version informations are consistent, when both version informations are consistent
When, then stop the execution of updating operation;When both are inconsistent, then further determine whether to perform updating operation, so as to avoid
For same version, the updating operation repeated improves the efficiency of updating operation.
Further, as another embodiment of the present invention, if first file identification mark and described the
Two file identifications mark is inconsistent, then verifying regular and described first file identification according to default mark identifies, and judgement is
The no updating operation for performing equipment firmware is specifically included:
In S2071, identified by default mark checking algorithm and first file identification, generate the 3rd file
Identification marking.
In the present embodiment, verification computing is carried out to the first file identification mark by default mark checking algorithm, it is raw
Corresponding 3rd file identification mark is identified into the first file identification.Because not any one file identification mark is all legal
File identification mark, user can identify create-rule according to the file identification of itself, determine legal file identification mark sequence
Row group.When criminal does not know corresponding file identification mark create-rule, then its first file made up can not be determined
Whether identification marking is legal.And illegal the first file identification mark is passed through into default mark checking algorithm, its numerical value will be sent out
Changing, that is, the 3rd file identification mark generated will differ from the first file identification mark, then judge that the upgrade file will
For illegal update file.
In the present embodiment, default mark checking algorithm identifies the verification of legitimacy particularly for detection file identification
Algorithm.Illustratively, the default mark checking algorithm can be Hash mapping algorithm, according to Hash mapping rule, to first
File identification mark performs Hash mapping, obtains the first file identification and identifies corresponding cryptographic Hash, the cryptographic Hash is the 3rd text
Part identification marking.
In S2072, judge that the 3rd file identification mark is identified whether unanimously with the first file identification.
In the present embodiment, the 3rd file identification mark production obtained is compared with the first file identification mark,
Judge whether both are consistent.Due to as described in S2071, judging that the 3rd file identification mark and the first file identification identify whether one
Cause to can be used for representing whether the upgrade file is legal, when both are consistent, then perform S2073 associative operation;When both differ
During cause, then S2074 associative operation is performed.
In S2073, if the 3rd file identification mark is consistent with the first file identification mark, it is determined that the upgrading
File is legal upgrade file, performs the updating operation of equipment firmware.
In S2074, if the 3rd file identification mark and the first file identification mark are inconsistent, it is determined that the text
Part is illegal upgrade file, stops the updating operation of equipment firmware.
In embodiments of the present invention, identified by default mark checking algorithm and the first file identification, generation the 3rd
File identification is identified, and both are compared, and determines the legitimacy of upgrade file, so that judge whether to perform updating operation,
Improve the security of updating operation, it is ensured that upgrade file is legal upgrade file, it is to avoid is arbitrarily distorted and sets by criminal
Standby fixer system.
In S208, if judged result performs liter to perform the updating operation of equipment firmware by the upgrade file
Level operation.
Because S208 is identical with the step S104 in a upper embodiment, step S104 in an embodiment is specifically referred to
Associated description, here is omitted.
Further, as another embodiment of the present invention, the upgrade method of the equipment firmware also includes:
In S209, the authorization code that server is sent is obtained, device authorization is completed.
In the present embodiment, in order to improve the security of equipment and be easy to management, after the completion of DFU, need
The authorization code that service is sent is obtained, device authorization is completed, obtains institute's functional access right.When equipment does not get clothes
The authorization code that business device is issued, then will be in the lock state, it is impossible to carry out actual feature operation.
Alternatively, in the present embodiment, server is detected after equipment reaches the standard grade, and it will be authenticated, if certification this set
Standby fixer system is legal, then authorization code is sent to the equipment, in order to which the equipment completes device authorization.
Alternatively, in the present embodiment, equipment is by sending request authorized order to the corresponding server of the equipment, with
The server is authenticated the equipment, authorization code is sent if certification success to the equipment.
In embodiments of the present invention, authorization code is sent to equipment by server, carries out device authorization, set so as to improve
The security of standby fixer system.Because criminal may be forced illegal upgrading text by the hardware device of replacement equipment
Part carries out updating operation to equipment firmware.And operation is further now authenticated to equipment by server, then it can improve and set
The security of standby firmware upgrade operation.
Fig. 3 shows the structured flowchart of equipment provided in an embodiment of the present invention, and each unit that the equipment includes is used to perform
Each step in the corresponding embodiments of Fig. 1.Associated description in the specific embodiment referred to corresponding to Fig. 1 and Fig. 1.In order to just
In explanation, part related to the present embodiment illustrate only.
Referring to Fig. 3, the equipment includes:
Upgrade file acquiring unit 31, the upgrade file for obtaining equipment firmware;The upgrade file includes the first text
Part identification marking and file verification code;
Upgrade file complete checks unit 32, the file verification code included for extracting in the upgrade file, root
According to default checking algorithm and file verification code, judge whether the upgrade file is complete;
First file identification identifies verification unit 33, if complete for the upgrade file, extracts the upgrade file
In the first file identification mark for including, identified according to default identification marking identifying algorithm and first file identification,
Judge whether the updating operation of execution equipment firmware;
Upgrading execution unit 34, if passing through the upgrading for judged result to perform the updating operation of equipment firmware
File performs updating operation.
Alternatively, shown in Figure 4, in another embodiment, each unit that the equipment in the embodiment includes is used to transport
Each step in the corresponding embodiments of row Fig. 2, details are as follows:
Upgrade file acquiring unit 41, the upgrade file for obtaining equipment firmware;The upgrade file includes the first text
Part identification marking and file verification code;
Upgrade file complete checks unit 42, the file verification code included for extracting in the upgrade file, root
According to default checking algorithm and file verification code, judge whether the upgrade file is complete;
Alternatively, the upgrade file complete checks unit also includes:
Upgrade file weight acquiring unit 431, if imperfect for the upgrade file, send upgrade file and recaptures fetching
Order, in order to reacquire complete upgrade file;
Download time identifying unit 432, if recapturing instruction fetch transmission times more than predetermined threshold value for the upgrade file,
Then stop the updating operation of equipment firmware.
Alternatively, the first file identification mark verification unit is specifically included:
Second file identification identifies reading unit 44, for reading corresponding second file of the equipment firmware current version
Identification marking;
File identification identifies comparing unit 45, for judging that the first file identification mark and second file are known
Do not identify whether consistent;
First upgrading abort unit 46, if for first file identification mark and second file identification mark
Unanimously, then updating operation is stopped;
Second file identification verification unit 47, if for first file identification mark and second file identification
Mark is inconsistent, then verifying regular and described first file identification according to default mark identifies, and judges whether to perform equipment
The updating operation of firmware.
Alternatively, the second file identification verification unit is specifically included:
3rd file identification identification generation unit 471, for passing through default mark checking algorithm and first text
Part identification marking, generation the 3rd file identification mark;
The legal judging unit 472 of upgrade file, for judging the 3rd file identification mark and the first file identification mark
Whether consistent know;
Upgrade file legal execution unit 473, if being identified for the 3rd file identification mark and the first file identification
Unanimously, then it is identified as that the upgrade file is legal, performs the updating operation of equipment firmware;
Second upgrading abort unit 474, if differing for the 3rd file identification mark with the first file identification mark
Cause, be then identified as that the file is illegal, stop the updating operation of equipment firmware.
Upgrading execution unit 48, if passing through the upgrading for judged result to perform the updating operation of equipment firmware
File performs updating operation.
Alternatively, the equipment also includes:
Authorization code receiving unit 49, the authorization code for obtaining server transmission, completes device authorization.
Therefore, equipment provided in an embodiment of the present invention again may be by obtaining the upgrade file of equipment firmware;The liter
Level file includes the first file identification and identified and file verification code;Extract the file verification included in the upgrade file
Code, according to default checking algorithm and file verification code, judges whether the upgrade file is complete;If the upgrading text
Part is complete, then first file identification mark included in the upgrade file is extracted, according to default identification marking certification
Algorithm and first file identification mark, judge whether to perform the updating operation of equipment firmware;If judged result is execution
The updating operation of equipment firmware, then perform updating operation by the upgrade file, so as to carry out firmware upgrade in equipment
When, the integrality of upgrade file is detected by default checking algorithm, it is to avoid regard the file of defect or mistake as upgrade file
Updating operation is carried out, causes equipment can not normal work.On the other hand, detected and upgraded by default identification marking identifying algorithm
The legitimacy of file, improves the security of DFU operation, it is to avoid distorted by criminal.
It is apparent to those skilled in the art that, for convenience of description and succinctly, only with above-mentioned each work(
Energy unit, the division progress of module are for example, in practical application, as needed can distribute above-mentioned functions by different
Functional unit, module are completed, i.e., the internal structure of described device is divided into different functional unit or module, more than completion
The all or part of function of description.Each functional unit, module in embodiment can be integrated in a processing unit, also may be used
To be that unit is individually physically present, can also two or more units it is integrated in a unit, it is above-mentioned integrated
Unit can both be realized in the form of hardware, it would however also be possible to employ the form of SFU software functional unit is realized.In addition, each function list
Member, the specific name of module are also only to facilitate mutually differentiation, is not limited to the protection domain of the application.Said system
The specific work process of middle unit, module, may be referred to the corresponding process in preceding method embodiment, will not be repeated here.
Those of ordinary skill in the art are it is to be appreciated that the list of each example described with reference to the embodiments described herein
Member and algorithm steps, can be realized with the combination of electronic hardware or computer software and electronic hardware.These functions are actually
Performed with hardware or software mode, depending on the application-specific and design constraint of technical scheme.Professional and technical personnel
Described function can be realized using distinct methods to each specific application, but this realization is it is not considered that exceed
The scope of the present invention.
In embodiment provided by the present invention, it should be understood that disclosed apparatus and method, others can be passed through
Mode is realized.For example, system embodiment described above is only schematical, for example, the division of the module or unit,
It is only a kind of division of logic function, there can be other dividing mode when actually realizing, such as multiple units or component can be with
With reference to or be desirably integrated into another system, or some features can be ignored, or not perform.It is another, it is shown or discussed
Coupling each other or direct-coupling or communication connection can be by some interfaces, the INDIRECT COUPLING of device or unit or
Communication connection, can be electrical, machinery or other forms.
The unit illustrated as separating component can be or may not be it is physically separate, it is aobvious as unit
The part shown can be or may not be physical location, you can with positioned at a place, or can also be distributed to multiple
On NE.Some or all of unit therein can be selected to realize the mesh of this embodiment scheme according to the actual needs
's.
In addition, each functional module in each embodiment of the invention can be integrated in a processing unit, can also
That modules are individually physically present, can also two or more modules it is integrated in a unit.Above-mentioned integrated list
Member can both be realized in the form of hardware, it would however also be possible to employ the form of SFU software functional unit is realized.
If the integrated unit is realized using in the form of SFU software functional unit and as independent production marketing or used
When, it can be stored in a computer read/write memory medium.Understood based on such, the technical scheme of the embodiment of the present invention
The part substantially contributed in other words to prior art or all or part of the technical scheme can be with software products
Form embody, the computer software product is stored in a storage medium, including some instructions are to cause one
Computer equipment (can be personal computer, server, or network equipment etc.) or processor (processor) perform this hair
The all or part of step of each embodiment methods described of bright embodiment.And foregoing storage medium includes:USB flash disk, mobile hard disk,
Read-only storage (ROM, Read-Only Memory), random access memory (RAM, Random Access Memory), magnetic
Dish or CD etc. are various can be with the medium of store program codes.
Embodiment described above is merely illustrative of the technical solution of the present invention, rather than its limitations;Although with reference to foregoing reality
Example is applied the present invention is described in detail, it will be understood by those within the art that:It still can be to foregoing each
Technical scheme described in embodiment is modified, or carries out equivalent substitution to which part technical characteristic;And these are changed
Or replace, the essence of appropriate technical solution is departed from the spirit and scope of various embodiments of the present invention technical scheme, all should
Within protection scope of the present invention.
Claims (10)
1. a kind of upgrade method of equipment firmware, it is characterised in that the upgrade method of the equipment firmware includes:
Obtain the upgrade file of equipment firmware;The upgrade file includes the first file identification and identified and file verification code;
The file verification code included in the upgrade file is extracted, according to default checking algorithm and the file verification
Code, judges whether the upgrade file is complete;
If the upgrade file is complete, first file identification mark included in the upgrade file is extracted, according to pre-
If identification marking identifying algorithm and first file identification mark, judge whether perform equipment firmware updating operation;
If judged result is performs the updating operation of equipment firmware, updating operation is performed by the upgrade file.
2. the upgrade method of equipment firmware according to claim 1, it is characterised in that described according to default identification marking
Identifying algorithm and first file identification mark, judge whether that the updating operation for performing equipment firmware is specially:
Read the corresponding second file identification mark of the equipment firmware current version;
Judge that the first file identification mark and second file identification are identified whether unanimously;
If the first file identification mark and second file identification mark are consistent, stop updating operation;
If the first file identification mark and second file identification mark are inconsistent, verified according to default mark
Regular and described first file identification mark, judges whether to perform the updating operation of equipment firmware.
3. the upgrade method of equipment firmware according to claim 2, it is characterised in that if first file identification
Mark and second file identification mark are inconsistent, then verifying regular and described first file according to default mark knows
Do not identify, judge whether that the updating operation for performing equipment firmware is specifically included:
Identified by default mark checking algorithm and first file identification, generation the 3rd file identification mark;
Judge that the 3rd file identification mark is identified whether unanimously with the first file identification;
If the 3rd file identification mark is consistent with the first file identification mark, it is determined that the upgrade file is legal upgrading
File, performs the updating operation of equipment firmware;
If the 3rd file identification mark and the first file identification mark are inconsistent, it is determined that the file is illegal liter
Level file, stops the updating operation of equipment firmware.
4. the upgrade method of the equipment firmware according to claim any one of 1-3, it is characterised in that the equipment firmware
Upgrade method also includes:
The authorization code that server is sent is obtained, device authorization is completed.
5. the upgrade method of equipment firmware according to claim 4, it is characterised in that described according to default checking algorithm
And the file verification code, judge also to include after whether the upgrade file is complete:
If the upgrade file is imperfect, sends upgrade file and recapture instruction fetch, in order to reacquire complete upgrading text
Part;
If the upgrade file recaptures instruction fetch transmission times more than predetermined threshold value, stop the updating operation of equipment firmware.
6. a kind of equipment, it is characterised in that the equipment includes:
Upgrade file acquiring unit, the upgrade file for obtaining equipment firmware;The upgrade file includes the first file identification
Mark and file verification code;
Upgrade file complete checks unit, the file verification code included for extracting in the upgrade file, according to default
Checking algorithm and the file verification code, judge whether the upgrade file complete;
First file identification identifies verification unit, if complete for the upgrade file, extract and is included in the upgrade file
The first file identification mark, identified according to default identification marking identifying algorithm and first file identification, judgement is
The no updating operation for performing equipment firmware;
Upgrading execution unit, if being held for judged result to perform the updating operation of equipment firmware by the upgrade file
Row updating operation.
7. equipment according to claim 6, it is characterised in that the first file identification mark verification unit is specifically wrapped
Include:
Second file identification identifies reading unit, for reading the corresponding second file identification mark of the equipment firmware current version
Know;
File identification identifies comparing unit, for judging the first file identification mark and second file identification mark
It is whether consistent;
First upgrading abort unit, if consistent for first file identification mark and second file identification mark,
Then stop updating operation;
Second file identification verification unit, if for first file identification mark and second file identification mark not
Unanimously, then verify regular and described first file identification according to default mark to identify, judge whether to perform equipment firmware
Updating operation.
8. equipment according to claim 7, it is characterised in that the second file identification verification unit is specifically included:
3rd file identification identification generation unit, for passing through default mark checking algorithm and the first file identification mark
Know, generation the 3rd file identification mark;
The legal judging unit of upgrade file, for judging that the 3rd file identification mark and the first file identification identify whether one
Cause;
Upgrade file legal execution unit, if consistent with the first file identification mark for the 3rd file identification mark,
It is identified as that the upgrade file is legal, performs the updating operation of equipment firmware;
Second upgrading abort unit, if inconsistent for the 3rd file identification mark and the first file identification mark,
It is identified as that the file is illegal, stops the updating operation of equipment firmware.
9. the equipment according to claim any one of 6-8, it is characterised in that the equipment also includes:
Authorization code receiving unit, the authorization code for obtaining server transmission, completes device authorization.
10. equipment according to claim 9, it is characterised in that the upgrade file complete checks unit also includes:
Upgrade file weight acquiring unit, if imperfect for the upgrade file, send upgrade file and recaptures instruction fetch, so as to
In the upgrade file that reacquisition is complete;
Download time identifying unit, if recapturing instruction fetch transmission times more than predetermined threshold value for the upgrade file, stops
The updating operation of equipment firmware.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710123239.1A CN106991326A (en) | 2017-03-02 | 2017-03-02 | The upgrade method and its equipment of a kind of equipment firmware |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710123239.1A CN106991326A (en) | 2017-03-02 | 2017-03-02 | The upgrade method and its equipment of a kind of equipment firmware |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN106991326A true CN106991326A (en) | 2017-07-28 |
Family
ID=59411809
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710123239.1A Pending CN106991326A (en) | 2017-03-02 | 2017-03-02 | The upgrade method and its equipment of a kind of equipment firmware |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106991326A (en) |
Cited By (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107831721A (en) * | 2017-10-24 | 2018-03-23 | 北京天地玛珂电液控制***有限公司 | A kind of director demon update device and method |
| CN108881386A (en) * | 2018-05-11 | 2018-11-23 | 郑州易湃科技有限公司 | The remote firmware updating method and remote firmware updating device of communication equipment |
| CN109656597A (en) * | 2018-12-19 | 2019-04-19 | 广东美的暖通设备有限公司 | Firmware upgrade method, device and computer readable storage medium |
| CN109862099A (en) * | 2019-01-15 | 2019-06-07 | 浙江吉利汽车研究院有限公司 | A kind of upgrade checkout method, apparatus, terminal and system |
| CN109889372A (en) * | 2019-01-21 | 2019-06-14 | 杭州迪普科技股份有限公司 | Obtain method, apparatus, equipment and the storage medium of configuration information |
| CN111142906A (en) * | 2019-12-25 | 2020-05-12 | 浙江大华技术股份有限公司 | Method, device and equipment for iteration of equipment firmware upgrading scheme |
| CN111722858A (en) * | 2020-05-27 | 2020-09-29 | 科华恒盛股份有限公司 | Online upgrading method and terminal equipment |
| US20200364135A1 (en) * | 2019-05-14 | 2020-11-19 | University Of Florida Research Foundation, Inc. | Automated security analysis of baseband firmware |
| CN112379905A (en) * | 2020-11-20 | 2021-02-19 | 惠州Tcl移动通信有限公司 | Kernel upgrading method and device, terminal and storage medium |
| CN112416716A (en) * | 2020-11-25 | 2021-02-26 | 宁波阶梯教育科技有限公司 | Automatic firmware checking method and equipment |
| CN112463184A (en) * | 2020-11-06 | 2021-03-09 | 苏州浪潮智能科技有限公司 | Method and system for safely upgrading firmware of baseboard management controller |
| CN112988205A (en) * | 2021-03-09 | 2021-06-18 | 威胜集团有限公司 | Electric energy meter upgrading method, electric energy meter and computer readable storage medium |
| FR3108997A1 (en) * | 2020-04-03 | 2021-10-08 | Aspisec S.R.L. | Decentralized fog-based infrastructure for firmware security integrity verification to improve the physical, operational and functional security of Internet of Things (IoT) systems |
| CN114616544A (en) * | 2020-12-03 | 2022-06-10 | 深圳市大疆创新科技有限公司 | Firmware data processing method and device |
| CN114666783A (en) * | 2020-12-23 | 2022-06-24 | 深圳Tcl新技术有限公司 | Upgrading method, device, terminal and storage medium of wireless network module |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101436141A (en) * | 2008-11-21 | 2009-05-20 | 深圳创维数字技术股份有限公司 | Firmware upgrading and encapsulating method and device based on digital signing |
| CN105468393A (en) * | 2014-09-10 | 2016-04-06 | 启碁科技股份有限公司 | Module version upgrading method and terminal apparatus |
-
2017
- 2017-03-02 CN CN201710123239.1A patent/CN106991326A/en active Pending
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101436141A (en) * | 2008-11-21 | 2009-05-20 | 深圳创维数字技术股份有限公司 | Firmware upgrading and encapsulating method and device based on digital signing |
| CN105468393A (en) * | 2014-09-10 | 2016-04-06 | 启碁科技股份有限公司 | Module version upgrading method and terminal apparatus |
Cited By (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107831721A (en) * | 2017-10-24 | 2018-03-23 | 北京天地玛珂电液控制***有限公司 | A kind of director demon update device and method |
| CN108881386A (en) * | 2018-05-11 | 2018-11-23 | 郑州易湃科技有限公司 | The remote firmware updating method and remote firmware updating device of communication equipment |
| CN109656597A (en) * | 2018-12-19 | 2019-04-19 | 广东美的暖通设备有限公司 | Firmware upgrade method, device and computer readable storage medium |
| CN109862099A (en) * | 2019-01-15 | 2019-06-07 | 浙江吉利汽车研究院有限公司 | A kind of upgrade checkout method, apparatus, terminal and system |
| CN109862099B (en) * | 2019-01-15 | 2022-07-12 | 浙江吉利汽车研究院有限公司 | Upgrade checking method, device, terminal and system |
| CN109889372A (en) * | 2019-01-21 | 2019-06-14 | 杭州迪普科技股份有限公司 | Obtain method, apparatus, equipment and the storage medium of configuration information |
| US20200364135A1 (en) * | 2019-05-14 | 2020-11-19 | University Of Florida Research Foundation, Inc. | Automated security analysis of baseband firmware |
| US11663338B2 (en) * | 2019-05-14 | 2023-05-30 | University Of Florida Research Foundation, Incorporated | Automated security analysis of baseband firmware |
| CN111142906A (en) * | 2019-12-25 | 2020-05-12 | 浙江大华技术股份有限公司 | Method, device and equipment for iteration of equipment firmware upgrading scheme |
| CN111142906B (en) * | 2019-12-25 | 2023-11-10 | 浙江大华技术股份有限公司 | Method, device and equipment for iterating equipment firmware upgrading scheme |
| FR3108997A1 (en) * | 2020-04-03 | 2021-10-08 | Aspisec S.R.L. | Decentralized fog-based infrastructure for firmware security integrity verification to improve the physical, operational and functional security of Internet of Things (IoT) systems |
| CN111722858A (en) * | 2020-05-27 | 2020-09-29 | 科华恒盛股份有限公司 | Online upgrading method and terminal equipment |
| CN112463184A (en) * | 2020-11-06 | 2021-03-09 | 苏州浪潮智能科技有限公司 | Method and system for safely upgrading firmware of baseboard management controller |
| CN112379905A (en) * | 2020-11-20 | 2021-02-19 | 惠州Tcl移动通信有限公司 | Kernel upgrading method and device, terminal and storage medium |
| CN112379905B (en) * | 2020-11-20 | 2024-06-28 | 惠州Tcl移动通信有限公司 | Kernel upgrading method, device, terminal and storage medium |
| CN112416716A (en) * | 2020-11-25 | 2021-02-26 | 宁波阶梯教育科技有限公司 | Automatic firmware checking method and equipment |
| CN114616544A (en) * | 2020-12-03 | 2022-06-10 | 深圳市大疆创新科技有限公司 | Firmware data processing method and device |
| CN114666783A (en) * | 2020-12-23 | 2022-06-24 | 深圳Tcl新技术有限公司 | Upgrading method, device, terminal and storage medium of wireless network module |
| CN112988205A (en) * | 2021-03-09 | 2021-06-18 | 威胜集团有限公司 | Electric energy meter upgrading method, electric energy meter and computer readable storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106991326A (en) | The upgrade method and its equipment of a kind of equipment firmware | |
| CN102497635B (en) | Server, terminal and account password acquisition method | |
| CN103580852B (en) | Safety element and the method and system of initializing secure element | |
| US9734091B2 (en) | Remote load and update card emulation support | |
| CN105678192B (en) | A kind of key application method and application apparatus based on smart card | |
| CN105989306A (en) | File signature method and device of operating system and file verification method and device of operating system | |
| CN105554037A (en) | Identity identification processing method and service platform | |
| CN105101196A (en) | User account management method and device | |
| CN102801705B (en) | Realization method for security domain on java card | |
| CN103974250A (en) | Configuration method and equipment | |
| CN104021018A (en) | Terminal, upgrade patch generation method and upgrade patch recognition method | |
| US20140317704A1 (en) | Method and system for enabling the federation of unrelated applications | |
| CN111222160A (en) | Intelligent contract execution method and system | |
| WO2016173174A1 (en) | Network locking data upgrading method and device | |
| CN105099983A (en) | Authorization method, authority setting method and devices | |
| KR101642267B1 (en) | System for preventing forgery of application and method therefor | |
| CN111124421A (en) | Abnormal contract data detection method and device for intelligent contracts of block chains | |
| CN105162804A (en) | Communication information protection method and apparatus | |
| CN104270754A (en) | SIM authentication method and device | |
| CN106709281A (en) | Patch releasing and obtaining method and device | |
| US10616262B2 (en) | Automated and personalized protection system for mobile applications | |
| CN111970122B (en) | Official APP identification method, mobile terminal and application server | |
| CN111953634A (en) | Access control method and device for terminal equipment, computer equipment and storage medium | |
| CN106548097A (en) | The operation method and device of network device software | |
| CN103731268A (en) | Terminal, network side device, and terminal application control method and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170728 |
|
| RJ01 | Rejection of invention patent application after publication |