[译]strace的10个命令

标签: 工具 | 发表时间:2021-04-30 18:34 | 作者:
出处:https://colobu.com/

strace是一个在类Unix操作系统如Linux上做debugging和trouble shooting的超级好用的工具。它可以捕获和记录进程的所有系统调用,以及这个进程接收的所有信号。

原文: 10 Strace Commands for Troubleshooting and Debugging Linux Processes

如果你的操作系统还没有安装strace,你可以运行下面的命令进行安装:

     
1
     
2
     
3
 
     
$ sudo apt install strace	#Debian/Ubuntu 
     
# yum install strace		#RHEL/CentOS
     
# dnf install strace		#Fedora 22+

如果一个程序崩溃或以一种出乎意料的方式运行,您可以通过它的系统调用来获得在执行过程中到底发生了什么的线索。我们将在后面看到,系统调用可以分为不同的事件:与进程管理相关的事件、以文件为参数的事件、涉及网络、内存映射、信号、IPC以及与文件描述符相关的系统调用。

可以使用strace运行程序/命令,也可以使用 -p选项将PID传递给它,如下面示例所示。

追踪Linux系统调用

你可以通过运行下面的命令,追踪 df命令的系统调用。

     
1
     
2
     
3
     
4
     
5
     
6
     
7
     
8
     
9
     
10
     
11
     
12
     
13
     
14
     
15
     
16
 
     
$ strace df -h
     
execve("/bin/df", ["df", "-h"], [/* 50 vars */]) = 0
     
brk(NULL)                               = 0x136e000
     
access("/etc/ld.so.nohwcap", F_OK)      = -1 ENOENT (No such file or directory)
     
mmap(NULL, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f82f78fd000
     
access("/etc/ld.so.preload", R_OK)      = -1 ENOENT (No such file or directory)
     
open("/etc/ld.so.cache", O_RDONLY|O_CLOEXEC) = 3
     
fstat(3, {st_mode=S_IFREG|0644, st_size=147662, ...}) = 0
     
mmap(NULL, 147662, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f82f78d8000
     
close(3)                                = 0
     
access("/etc/ld.so.nohwcap", F_OK)      = -1 ENOENT (No such file or directory)
     
open("/lib/x86_64-linux-gnu/libc.so.6", O_RDONLY|O_CLOEXEC) = 3
     
read(3, "\177ELF\2\1\1\3\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0P\t\2\0\0\0\0\0"..., 832) = 832
     
fstat(3, {st_mode=S_IFREG|0755, st_size=1868984, ...}) = 0
     
mmap(NULL, 3971488, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7f82f7310000
     
...

从上面的输出结果,我们可以看到几种类型的系统调用,比如

     
1
 
     
open("/etc/ld.so.cache", O_RDONLY|O_CLOEXEC) = 3

其中

  • open: 系统调用的类型
  • (“/etc/ld.so.cache”, O_RDONLY|O_CLOEXEC) : 系统调用的参数
  • 3: 系统调用的返回结果

下面是df命令执行的时候write系统调用信息:

     
1
     
2
     
3
     
4
     
5
     
6
     
7
     
8
     
9
     
10
     
11
     
12
     
13
     
14
     
15
     
16
     
17
     
18
     
19
     
20
     
21
     
22
     
23
     
24
     
25
 
     
mmap(NULL, 26258, PROT_READ, MAP_SHARED, 3, 0) = 0x7f82f78f5000
     
close(3)                                = 0
     
fstat(1, {st_mode=S_IFCHR|0620, st_rdev=makedev(136, 1), ...}) = 0
     
write(1, "Filesystem      Size  Used Avail"..., 49Filesystem      Size  Used Avail Use% Mounted on
     
) = 49
     
write(1, "udev            3.9G     0  3.9G"..., 43udev            3.9G     0  3.9G   0% /dev
     
) = 43
     
write(1, "tmpfs           788M  9.6M  779M"..., 43tmpfs           788M  9.6M  779M   2% /run
     
) = 43
     
write(1, "/dev/sda10      324G  252G   56G"..., 40/dev/sda10      324G  252G   56G  82% /
     
) = 40
     
write(1, "tmpfs           3.9G  104M  3.8G"..., 47tmpfs           3.9G  104M  3.8G   3% /dev/shm
     
) = 47
     
write(1, "tmpfs           5.0M  4.0K  5.0M"..., 48tmpfs           5.0M  4.0K  5.0M   1% /run/lock
     
) = 48
     
write(1, "tmpfs           3.9G     0  3.9G"..., 53tmpfs           3.9G     0  3.9G   0% /sys/fs/cgroup
     
) = 53
     
write(1, "cgmfs           100K     0  100K"..., 56cgmfs           100K     0  100K   0% /run/cgmanager/fs
     
) = 56
     
write(1, "tmpfs           788M   36K  788M"..., 53tmpfs           788M   36K  788M   1% /run/user/1000
     
) = 53
     
close(1)                                = 0
     
close(2)                                = 0
     
exit_group(0)                           = ?
     
+++ exited with 0 +++

根据进程PID进行追踪

如果一个进程已经在运行,你可以通过它的pid进行追踪,它会显示追踪后这个进程的系统调用,使用 CTRL+C退出。

     
1
     
2
     
3
     
4
     
5
     
6
     
7
     
8
     
9
     
10
     
11
     
12
     
13
     
14
     
15
     
16
     
17
     
18
 
     
$ sudo strace -p 3569
     
strace: Process 3569 attached
     
restart_syscall(<... resuming interrupted poll ...>) = 1
     
recvmsg(4, {msg_name(0)=NULL, msg_iov(1)=[{"U\2\24\300!\247\330\0\3\24\4\0\20\0\0\0\0\0\0\24\24\24\24\24\0\0\3\37%\2\0\0", 4096}], msg_controllen=0, msg_flags=0}, 0) = 32
     
recvmsg(4, 0x7ffee4dbf870, 0)           = -1 EAGAIN (Resource temporarily unavailable)
     
recvmsg(4, 0x7ffee4dbf850, 0)           = -1 EAGAIN (Resource temporarily unavailable)
     
poll([{fd=3, events=POLLIN}, {fd=4, events=POLLIN}, {fd=5, events=POLLIN}, {fd=10, events=POLLIN}, {fd=30, events=POLLIN}, {fd=31, events=POLLIN}], 6, -1) = 1 ([{fd=31, revents=POLLIN}])
     
read(31, "\372", 1)                     = 1
     
recvmsg(4, 0x7ffee4dbf850, 0)           = -1 EAGAIN (Resource temporarily unavailable)
     
poll([{fd=3, events=POLLIN}, {fd=4, events=POLLIN}, {fd=5, events=POLLIN}, {fd=10, events=POLLIN}, {fd=30, events=POLLIN}, {fd=31, events=POLLIN}], 6, 0) = 1 ([{fd=31, revents=POLLIN}])
     
read(31, "\372", 1)                     = 1
     
recvmsg(4, 0x7ffee4dbf850, 0)           = -1 EAGAIN (Resource temporarily unavailable)
     
poll([{fd=3, events=POLLIN}, {fd=4, events=POLLIN}, {fd=5, events=POLLIN}, {fd=10, events=POLLIN}, {fd=30, events=POLLIN}, {fd=31, events=POLLIN}], 6, 0) = 0 (Timeout)
     
mprotect(0x207faa20000, 8192, PROT_READ|PROT_WRITE) = 0
     
mprotect(0x207faa20000, 8192, PROT_READ|PROT_EXEC) = 0
     
mprotect(0x207faa21000, 4096, PROT_READ|PROT_WRITE) = 0
     
mprotect(0x207faa21000, 4096, PROT_READ|PROT_EXEC) = 0
     
...

得到进程的汇总信息

使用 -c参数,可以得到追踪的每一种系统调用的耗时、次数和失败数,如下所示:

     
1
     
2
     
3
     
4
     
5
     
6
     
7
     
8
     
9
     
10
     
11
     
12
     
13
     
14
     
15
     
16
     
17
     
18
     
19
     
20
 
     
$ sudo strace -c -p 3569
     
     
strace: Process 3569 attached
     
     
^Cstrace: Process 3569 detached
     
% time     seconds  usecs/call     calls    errors syscall
     
------ ----------- ----------- --------- --------- ----------------
     
 99.73    0.016000           8      1971           poll
     
  0.16    0.000025           0       509        75 futex
     
  0.06    0.000010           0      1985      1966 recvmsg
     
  0.06    0.000009           0      2336           mprotect
     
  0.00    0.000000           0       478           read
     
  0.00    0.000000           0        13           write
     
  0.00    0.000000           0        29           mmap
     
  0.00    0.000000           0         9           munmap
     
  0.00    0.000000           0        18           writev
     
  0.00    0.000000           0       351           madvise
     
  0.00    0.000000           0         1           restart_syscall
     
------ ----------- ----------- --------- --------- ----------------
     
100.00    0.016044                  7700      2041 total

打印指令指针

-i可以显示每一次系统调用的时候的指令指针。

     
1
     
2
     
3
     
4
     
5
     
6
     
7
     
8
     
9
     
10
     
11
     
12
     
13
     
14
     
15
     
16
     
17
 
     
$ sudo strace -i df -h
     
[00007f0d7534c777] execve("/bin/df", ["df", "-h"], [/* 17 vars */]) = 0
     
[00007faf9cafa4b9] brk(NULL)            = 0x12f0000
     
[00007faf9cafb387] access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory)
     
[00007faf9cafb47a] mmap(NULL, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faf9cd03000
     
[00007faf9cafb387] access("/etc/ld.so.preload", R_OK) = -1 ENOENT (No such file or directory)
     
[00007faf9cafb327] open("/etc/ld.so.cache", O_RDONLY|O_CLOEXEC) = 3
     
[00007faf9cafb2b4] fstat(3, {st_mode=S_IFREG|0644, st_size=147662, ...}) = 0
     
[00007faf9cafb47a] mmap(NULL, 147662, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7faf9ccde000
     
[00007faf9cafb427] close(3)             = 0
     
[00007faf9cafb387] access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory)
     
[00007faf9cafb327] open("/lib/x86_64-linux-gnu/libc.so.6", O_RDONLY|O_CLOEXEC) = 3
     
[00007faf9cafb347] read(3, "\177ELF\2\1\1\3\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0P\t\2\0\0\0\0\0"..., 832) = 832
     
[00007faf9cafb2b4] fstat(3, {st_mode=S_IFREG|0755, st_size=1868984, ...}) = 0
     
[00007faf9cafb47a] mmap(NULL, 3971488, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7faf9c716000
     
[00007faf9cafb517] mprotect(0x7faf9c8d6000, 2097152, PROT_NONE) = 0
     
...

显示每一次调用的时间

-t参数可以显示时间戳。

     
1
     
2
     
3
     
4
     
5
     
6
     
7
     
8
     
9
     
10
     
11
     
12
     
13
     
14
     
15
     
16
     
17
 
     
$ sudo strace -t df -h
     
15:19:25 execve("/bin/df", ["df", "-h"], [/* 17 vars */]) = 0
     
15:19:25 brk(NULL)                      = 0x234c000
     
15:19:25 access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory)
     
15:19:25 mmap(NULL, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f8c7f1d9000
     
15:19:25 access("/etc/ld.so.preload", R_OK) = -1 ENOENT (No such file or directory)
     
15:19:25 open("/etc/ld.so.cache", O_RDONLY|O_CLOEXEC) = 3
     
15:19:25 fstat(3, {st_mode=S_IFREG|0644, st_size=147662, ...}) = 0
     
15:19:25 mmap(NULL, 147662, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f8c7f1b4000
     
15:19:25 close(3)                       = 0
     
15:19:25 access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory)
     
15:19:25 open("/lib/x86_64-linux-gnu/libc.so.6", O_RDONLY|O_CLOEXEC) = 3
     
15:19:25 read(3, "\177ELF\2\1\1\3\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0P\t\2\0\0\0\0\0"..., 832) = 832
     
15:19:25 fstat(3, {st_mode=S_IFREG|0755, st_size=1868984, ...}) = 0
     
15:19:25 mmap(NULL, 3971488, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7f8c7ebec000
     
15:19:25 mprotect(0x7f8c7edac000, 2097152, PROT_NONE) = 0
     
...

显示系统调用的耗时

-T参数可以显示系统调用的耗时时间。

     
1
     
2
     
3
     
4
     
5
     
6
     
7
     
8
     
9
     
10
     
11
     
12
 
     
$ sudo strace -T df -h
     
     
execve("/bin/df", ["df", "-h"], [/* 17 vars */]) = 0 <0.000287>
     
brk(NULL)                               = 0xeca000 <0.000035>
     
access("/etc/ld.so.nohwcap", F_OK)      = -1 ENOENT (No such file or directory) <0.000028>
     
mmap(NULL, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f9aff2b1000 <0.000020>
     
access("/etc/ld.so.preload", R_OK)      = -1 ENOENT (No such file or directory) <0.000019>
     
open("/etc/ld.so.cache", O_RDONLY|O_CLOEXEC) = 3 <0.000022>
     
fstat(3, {st_mode=S_IFREG|0644, st_size=147662, ...}) = 0 <0.000015>
     
mmap(NULL, 147662, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f9aff28c000 <0.000019>
     
close(3)                                = 0 <0.000014>
     
...

只追踪特定的系统调用

下面的命令中, trace=write是使用一个特定的表达式做筛选,只追踪特定的系统调用。表达式可以是signal, abbrev, verbose, raw, read 和 write等几种类型。

     
1
     
2
     
3
     
4
     
5
     
6
     
7
     
8
     
9
     
10
     
11
     
12
     
13
     
14
     
15
     
16
     
17
     
18
     
19
     
20
     
21
 
     
$ sudo strace -e trace=write df -h
     
     
write(1, "Filesystem      Size  Used Avail"..., 49Filesystem      Size  Used Avail Use% Mounted on
     
) = 49
     
write(1, "udev            3.9G     0  3.9G"..., 43udev            3.9G     0  3.9G   0% /dev
     
) = 43
     
write(1, "tmpfs           788M  9.6M  779M"..., 43tmpfs           788M  9.6M  779M   2% /run
     
) = 43
     
write(1, "/dev/sda10      324G  252G   56G"..., 40/dev/sda10      324G  252G   56G  82% /
     
) = 40
     
write(1, "tmpfs           3.9G  104M  3.8G"..., 47tmpfs           3.9G  104M  3.8G   3% /dev/shm
     
) = 47
     
write(1, "tmpfs           5.0M  4.0K  5.0M"..., 48tmpfs           5.0M  4.0K  5.0M   1% /run/lock
     
) = 48
     
write(1, "tmpfs           3.9G     0  3.9G"..., 53tmpfs           3.9G     0  3.9G   0% /sys/fs/cgroup
     
) = 53
     
write(1, "cgmfs           100K     0  100K"..., 56cgmfs           100K     0  100K   0% /run/cgmanager/fs
     
) = 56
     
write(1, "tmpfs           788M   28K  788M"..., 53tmpfs           788M   28K  788M   1% /run/user/1000
     
) = 53
     
+++ exited with 0 +++

又比如

     
1
     
2
     
3
 
     
$ sudo strace -e trace=open,close df -h
     
$ sudo strace -e trace=open,close,read,write df -h
     
$ sudo strace -e trace=all df -h

基于特定条件的系统调用

可以针对特定类型进行追踪(process、file、memory、network、signal)等等。

针对进行管理的追踪:

     
1
     
2
     
3
     
4
     
5
     
6
     
7
     
8
     
9
     
10
     
11
     
12
     
13
     
14
     
15
 
     
$ sudo strace -q -e trace=process df -h	
     
     
execve("/bin/df", ["df", "-h"], [/* 17 vars */]) = 0
     
arch_prctl(ARCH_SET_FS, 0x7fe2222ff700) = 0
     
Filesystem      Size  Used Avail Use% Mounted on
     
udev            3.9G     0  3.9G   0% /dev
     
tmpfs           788M  9.6M  779M   2% /run
     
/dev/sda10      324G  252G   56G  82% /
     
tmpfs           3.9G  104M  3.8G   3% /dev/shm
     
tmpfs           5.0M  4.0K  5.0M   1% /run/lock
     
tmpfs           3.9G     0  3.9G   0% /sys/fs/cgroup
     
cgmfs           100K     0  100K   0% /run/cgmanager/fs
     
tmpfs           788M   28K  788M   1% /run/user/1000
     
exit_group(0)                           = ?
     
+++ exited with 0 +++

针对文件系统调用的追踪:

     
1
     
2
     
3
     
4
     
5
     
6
     
7
     
8
     
9
     
10
     
11
 
     
$ sudo strace -q  -e trace=file df -h
     
     
execve("/bin/df", ["df", "-h"], [/* 17 vars */]) = 0
     
access("/etc/ld.so.nohwcap", F_OK)      = -1 ENOENT (No such file or directory)
     
access("/etc/ld.so.preload", R_OK)      = -1 ENOENT (No such file or directory)
     
open("/etc/ld.so.cache", O_RDONLY|O_CLOEXEC) = 3
     
access("/etc/ld.so.nohwcap", F_OK)      = -1 ENOENT (No such file or directory)
     
open("/lib/x86_64-linux-gnu/libc.so.6", O_RDONLY|O_CLOEXEC) = 3
     
open("/usr/lib/locale/locale-archive", O_RDONLY|O_CLOEXEC) = 3
     
open("/usr/share/locale/locale.alias", O_RDONLY|O_CLOEXEC) = 3
     
...

针对内存的追踪:

     
1
     
2
     
3
     
4
     
5
     
6
     
7
     
8
     
9
     
10
     
11
     
12
     
13
     
14
     
15
     
16
     
17
     
18
     
19
     
20
     
21
     
22
     
23
     
24
     
25
     
26
     
27
     
28
     
29
     
30
     
31
 
     
$ sudo strace -q -e trace=memory df -h	
     
     
brk(NULL)                               = 0x77a000
     
mmap(NULL, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fe8f4658000
     
mmap(NULL, 147662, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7fe8f4633000
     
mmap(NULL, 3971488, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7fe8f406b000
     
mprotect(0x7fe8f422b000, 2097152, PROT_NONE) = 0
     
mmap(0x7fe8f442b000, 24576, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x1c0000) = 0x7fe8f442b000
     
mmap(0x7fe8f4431000, 14752, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x7fe8f4431000
     
mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fe8f4632000
     
mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fe8f4631000
     
mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fe8f4630000
     
mprotect(0x7fe8f442b000, 16384, PROT_READ) = 0
     
mprotect(0x616000, 4096, PROT_READ)     = 0
     
mprotect(0x7fe8f465a000, 4096, PROT_READ) = 0
     
munmap(0x7fe8f4633000, 147662)          = 0
     
mmap(NULL, 2981280, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7fe8f3d93000
     
brk(NULL)                               = 0x77a000
     
brk(0x79b000)                           = 0x79b000
     
mmap(NULL, 619, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7fe8f4657000
     
mmap(NULL, 26258, PROT_READ, MAP_SHARED, 3, 0) = 0x7fe8f4650000
     
Filesystem      Size  Used Avail Use% Mounted on
     
udev            3.9G     0  3.9G   0% /dev
     
tmpfs           788M  9.6M  779M   2% /run
     
/dev/sda10      324G  252G   56G  82% /
     
tmpfs           3.9G  104M  3.8G   3% /dev/shm
     
tmpfs           5.0M  4.0K  5.0M   1% /run/lock
     
tmpfs           3.9G     0  3.9G   0% /sys/fs/cgroup
     
cgmfs           100K     0  100K   0% /run/cgmanager/fs
     
tmpfs           788M   28K  788M   1% /run/user/1000
     
+++ exited with 0 +++

以及针对网络和信号的追踪:

     
1
     
2
 
     
$ sudo strace -e trace=network df -h
     
$ sudo strace -e trace=signal df -h

将追踪结果写入到文件

-o参数将标准输出写入到文件:

     
1
     
2
     
3
     
4
     
5
     
6
     
7
     
8
     
9
     
10
     
11
 
     
$ sudo strace -o df_debug.txt df -h
     
     
Filesystem      Size  Used Avail Use% Mounted on
     
udev            3.9G     0  3.9G   0% /dev
     
tmpfs           788M  9.6M  779M   2% /run
     
/dev/sda10      324G  252G   56G  82% /
     
tmpfs           3.9G  104M  3.8G   3% /dev/shm
     
tmpfs           5.0M  4.0K  5.0M   1% /run/lock
     
tmpfs           3.9G     0  3.9G   0% /sys/fs/cgroup
     
cgmfs           100K     0  100K   0% /run/cgmanager/fs
     
tmpfs           788M   28K  788M   1% /run/user/1000

显示strace的debug信息

-d可以显示strace的debug信息。

更多的信息参考 man strace

其它一些参考资料:

相关 [strace 命令] 推荐:

strace命令小结

- - jackyrong
strace命令是很有用的进程跟踪命令,下面小结下:. 1 strace 是一个非常简单的工具,用来跟踪可执行程序的系统调用(system call). 最简单的使用是,它追踪可行程序运行时的整个生命周期,输出每一个系统调用的名字,参数和返回值. 但是它还可以做更多的事情:. 它可以基于系统调用或者系统调用组来过滤.

[译]strace的10个命令

- - 鸟窝
strace是一个在类Unix操作系统如Linux上做debugging和trouble shooting的超级好用的工具. 它可以捕获和记录进程的所有系统调用,以及这个进程接收的所有信号. 原文: 10 Strace Commands for Troubleshooting and Debugging Linux Processes.

通过Strace定位故障原因

- - 火丁笔记
俗话说:不怕贼偷,就怕贼惦记着. 在面对故障的时候,我也有类似的感觉:不怕出故障,就怕你不知道故障的原因,眼睁睁地看着情况恶化却束手无策. 十一长假还没结束,服务器却频现高负载,Nginx出现错误日志:. 看上去是Upstream出了问题,在本例中Upstream就是PHP. 一开始我搞不清楚到底是哪个PHP脚本出现了问题,无奈之下只好通过不断重启PHP服务来缓解高负载故障.

linux strace - 追踪系统调用

- - Linux - 操作系统 - ITeye博客
有时候发现有个别进程占用了大量CPU或者内存,我们可以查看进程的调用情况. 已有 0 人发表留言,猛击->> 这里<<-参与讨论. —软件人才免语言低担保 赴美带薪读研.

Linux 中用 strace 追踪系统调用和信号值

- - 博客园_iTech's Blog
原文地址: http://www.dbabeta.com/2009/strace.html. 打开man strace,我们能看到对strace的最简洁的介绍就是”strace – trace system calls and signals”. 实际上strace是一个集诊断、调试、统计与一体的工具,我们可以使用strace对应用的系统调用和信号传递的跟踪结果来对应用进行分析,以达到解决问题或者是了解应用工作过程的目的.

手把手教你用Strace诊断问题

- - 火丁笔记
早些年,如果你知道有个 strace 命令,就很牛了,而现在大家基本都知道 strace 了,如果你遇到性能问题求助别人,十有八九会建议你用 strace 挂上去看看,不过当你挂上去了,看着满屏翻滚的字符,却十有八九看不出个所以然. 本文通过一个简单的案例,向你展示一下在用 strace 诊断问题时的一些套路.

Linux wget命令

- - CSDN博客推荐文章
wget是linux最常用的下载命令, 一般的使用方法是: wget + 空格 + 要下载文件的url路径. 例如: # wget  http://www.linuxsense.org/xxxx/xxx.tar.gz. 简单说一下-c参数, 这个也非常常见, 可以断点续传, 如果不小心终止了, 可以继续使用命令接着下载.

lsof命令

- - Dutor
  lsof, LiSt Opened Files, 列出打开的文件, 听起来很简单的样子. 但想*nix中很多其他工具一样, lsof把这件简单的事情做到了炉火纯青. 因为Unix认为”一切皆文件”, 那么”打开的文件”就不仅仅是传统意义上打开的文件了, 还可以是网络/Unix域套接字, 匿名/具名管道, 共享库文件, 目录文件, 设备文件等等.

sqlite3命令

- - 移动开发 - ITeye博客
转载自: http://www.cnblogs.com/frankliiu-java/archive/2010/05/18/1738144.html. SQLite库包含一个名字叫做sqlite3的命令行,它可以让用户手工输入并执行面向SQLite数据库的SQL命令. 本文档提供一个样使用sqlite3的简要说明.

Linux iostat命令

- - CSDN博客系统运维推荐文章
iostat用于输出CPU和磁盘I/O相关的统计信息. . iostat [ -c | -d ] [ -k | -m ] [ -t ] [ -V ] [ -x ] [ device [. iostat各个参数说明:. -c 仅显示CPU统计信息.与-d选项互斥. -d 仅显示磁盘统计信息.与-c选项互斥.