如何在运行aptana studio或php storm等已执行文件时跟踪所有活动?
./excutedfile.sh从命令行执行文件。现在如何跟踪所有活动。
答案 0 :(得分:1)
您可以尝试strace启用过滤功能吗?
$ strace -e trace=open -f gvim
open("/etc/ld.so.cache", O_RDONLY|O_CLOEXEC) = 3
open("/usr/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0", O_RDONLY|O_CLOEXEC) = 3
(... snip ...)
open("/usr/lib/x86_64-linux-gnu/libXdmcp.so.6", O_RDONLY|O_CLOEXEC) = 3
open("/proc/filesystems", O_RDONLY) = 3
open("/usr/lib/locale/locale-archive", O_RDONLY|O_CLOEXEC) = 3
Process 465 attached
[pid 464] open("/usr/share/locale/locale.alias", O_RDONLY|O_CLOEXEC) = 5
[pid 464] open("/usr/share/vim/vim74/lang/ja/LC_MESSAGES/vim.mo", O_RDONLY) = 5
[pid 464] open("/usr/lib/x86_64-linux-gnu/gconv/gconv-modules.cache", O_RDONLY) = 5
[pid 464] open("/lib/terminfo/x/xterm-256color", O_RDONLY) = 5
[pid 464] open(".", O_RDONLY) = 5
[pid 464] open("/usr/share/vim/vimrc", O_RDONLY) = 5
[pid 464] open(".", O_RDONLY) = 6
[pid 464] open("/usr/share/vim/vim74/debian.vim", O_RDONLY) = 6
[pid 464] open("/etc/papersize", O_RDONLY|O_NONBLOCK) = 7
[pid 464] open("/etc/papersize", O_RDONLY) = 7
[pid 464] open(".", O_RDONLY) = 6
[pid 464] open("/usr/share/vim/vim74/syntax/syntax.vim", O_RDONLY) = 6
[pid 464] open(".", O_RDONLY) = 7
[pid 464] open("/usr/share/vim/vim74/syntax/synload.vim", O_RDONLY) = 7
[pid 464] open(".", O_RDONLY) = 8
[pid 464] open("/usr/share/vim/vim74/syntax/syncolor.vim", O_RDONLY) = 8
(... tons of output ...)
-e trace=open仅选择open(2)系统调用。我还添加了-f来跟踪子进程。
另见: