本文主要是介绍5.17 BCC工具之bashreadline.py解读,希望对大家解决编程问题提供一定的参考价值,需要的开发者们随着小编来一起学习吧!
一,工具简介
工具用于打印系统中所有正在运行的shell中输入的bash命令。
二,代码示例
#!/usr/bin/env pythonfrom __future__ import print_function
from elftools.elf.elffile import ELFFile
from bcc import BPF
from time import strftime
import argparseparser = argparse.ArgumentParser(description="Print entered bash commands from all running shells",formatter_class=argparse.RawDescriptionHelpFormatter)
parser.add_argument("-s", "--shared", nargs="?",const="/lib/libreadline.so", type=str,help="specify the location of libreadline.so library.\Default is /lib/libreadline.so")
args = parser.parse_args()name = args.shared if args.shared else "/bin/bash"def get_sym(filename):with open(filename, 'rb') as f:elf = ELFFile(f)symbol_table = elf.get_section_by_name(".dynsym")这篇关于5.17 BCC工具之bashreadline.py解读的文章就介绍到这儿,希望我们推荐的文章对编程师们有所帮助!
