using ktrace to track files modified
David Roundy
roundyd at physics.oregonstate.edu
Sun Mar 1 18:24:43 UTC 2015
Hi all,
I was wondering if it is possible to use ktrace to reliably track the files
modified by a given command. I don't see how it can be used to do this,
but that may be because I do not understand the output of kdump. In
particular, I don't see how to interpret the arguments to the "at" versions
of syscalls, openat, renameat,etc, which require met to know the meaning of
the given directory file descriptors. I suppose one could maybe achieve
this by tracking when those directories were opened, but this sounds
fragile.
Can anyone tell me if there is a good solution to using ktrace/kdump to
monitor the file system usage of a command?
David
More information about the freebsd-questions
mailing list