From 08c240e736f5ae35ecbd118d68ea67a697d5541a Mon Sep 17 00:00:00 2001
From: "QCQCQC@Ubuntu" <1220204124@zust.edu.cn>
Date: Wed, 26 Mar 2025 16:15:14 +0800
Subject: [PATCH] hand write tee

---
 execve_intercept.c  |  55 +++++++++++++++++++++-----
 intercept.so        | Bin 21664 -> 26104 bytes
 logs/execve.log     |  86 +++++++++++++++++++++++++++++++++++++++++
 logs/execve_out.log |  91 ++++++++++++++++++++++++++++++++++++++++++++
 4 files changed, 222 insertions(+), 10 deletions(-)
 create mode 100644 logs/execve_out.log

diff --git a/execve_intercept.c b/execve_intercept.c
index 44f9ae8..85d358e 100644
--- a/execve_intercept.c
+++ b/execve_intercept.c
@@ -112,27 +112,62 @@ void write_log(const char *filename, char *const argv[]) {
     fclose(log);
 }
 
+// 判断字符是否为 ANSI 转义序列
+int is_ansi_escape_sequence(const char *str) {
+    // ANSI 转义序列的常见格式是以 ESC 开头，后跟 '[', 'm' 等
+    return str[0] == '\033' && str[1] == '[';
+}
+
 // 复制标准输出和错误输出到日志文件
 void duplicate_output_to_log() {
-    int out_fd = open(LOG_OUT_FILE, O_WRONLY | O_CREAT | O_APPEND, 0644);
-    if (out_fd == -1) {
+    int log_fd = open(LOG_OUT_FILE, O_WRONLY | O_CREAT | O_APPEND, 0644);
+    if (log_fd == -1) {
         perror("Failed to open log file");
         return;
     }
 
-    // 复制 stdout 和 stderr 到 log 文件
-    if (dup2(out_fd, STDOUT_FILENO) == -1 || dup2(out_fd, STDERR_FILENO) == -1) {
-        perror("Failed to redirect output");
-        close(out_fd);
+    int pipe_fds[2];
+    if (pipe(pipe_fds) == -1) {
+        perror("Failed to create pipe");
+        close(log_fd);
         return;
     }
 
-    // 关闭文件描述符，因为 stdout/stderr 现在已经指向它
-    close(out_fd);
+    pid_t pid = fork();
+    if (pid == -1) {
+        perror("Failed to fork");
+        close(log_fd);
+        close(pipe_fds[0]);
+        close(pipe_fds[1]);
+        return;
+    }
+
+    if (pid == 0) {  // 子进程：读取 pipe，并写入日志
+        close(pipe_fds[1]);  // 关闭写端
+        char buffer[1024];
+        ssize_t n;
+        while ((n = read(pipe_fds[0], buffer, sizeof(buffer))) > 0) {
+            // 输出到终端时保留颜色
+            if (isatty(STDOUT_FILENO)) {
+                write(STDOUT_FILENO, buffer, n); // 输出到终端
+            } else {
+                // 不支持颜色输出时，直接输出内容
+                write(STDOUT_FILENO, buffer, n);
+            }
+            write(log_fd, buffer, n); // 写入日志
+        }
+        close(pipe_fds[0]);
+        close(log_fd);
+        _exit(0);
+    } else {  // 父进程：写入 pipe
+        close(pipe_fds[0]);  // 关闭读端
+        dup2(pipe_fds[1], STDOUT_FILENO);
+        dup2(pipe_fds[1], STDERR_FILENO);
+        close(pipe_fds[1]);
+        close(log_fd);
+    }
 }
 
-
-
 typedef int (*orig_execve_type)(const char *filename, char *const argv[],
                                 char *const envp[]);
 
diff --git a/intercept.so b/intercept.so
index 49bbfac8704431c820a1a11f7ab984dc34f47082..028375ae179080d8bd7974319c05dd432e6fd06a 100755
GIT binary patch
literal 26104
zcmeHQdw5&Ll^;0~n1^GBjaxzzB0{`8LKNrKCV_zSP`E%I2I7`Bq_QH(v5IV|(iOx&
zXsBa~D%6H9p}=-&*oCj~HSM}3%?4<w10@dZ*W%EYnm$-lLXesO#tp37QnbG_kE_wO
zZoAz-_WO1}4M^vn-+9cLGxyG&JMx`;-nV*HmCMCc8OJVVMUJs1DcJHEr9s#tb{f9V
zX4AOt_@ZdcQC*#Y6lId9I@~1k&=-n_e_M3vM+C2^ZpZ6ulKM8fXPm$l)$LA#XmpK`
zk8UibTcq86k}A6@sF7XuTA^Pp^PuQ}OqQb6LXA<3^m&vVl%XDuTFqs4yF=2>PG?Fx
zMX3%d*S=wf{wMV{OS?VGgdaPN3YaOX>bn|tl$ZZ*k=@R&k@Y$CL$z$TqB6Zam*j)a
znakI<FsSuWEULTcc#`Bv9)IUo_kZoYFE_j}_gG}t1??X{cl;;*9b&G3At?E!_-C-w
znQQ3EqlC@DXD&Y5-kLS>dwcE}{px<-_S=54z2TN)Z{Hk$aqzw8zH!k9-??Q^ZvLZ>
zpAEILr5cXUC?lDIfXm?&NI9I^>M7%=*FpdL&@Ja@p+mh7I{10S0sn*p-t2%+bHMjH
z;I}!%|8ocZPdeav2S4{X=pS*wzvY0x>VPkHz-K$;f2%{BaKk+K*o(`-Pb(D5_50Nh
z@jU3D|A+&Am4lxv9q_CJex5`8KX%Z+2=RFEv6mMClxy!Q;4|#X;O}?v-{autM&J|6
z_&JHkKY`s!g9J*A90)gZ{}Y&RmcSPX!cr3NlK5oUQ}IeXbb;Vs5riF=c%AgG#@i-|
zFQowrg~k^u9vM%1zTh90{#(GF!6vZ9e=qP^a)5kF`uXZ?f!`+mFu#9uN37GIGy@6K
z?`Qri*01r0!in(aNYV@^)~{I+jdh0C2R22+LRMbl4{izg+ajHTXyoQFi^c*We<BqP
zC)sC{a30(A*>KSGw<Tg7P=cqVi7FDTEuM&Unr$UYfkYzE<&TCtH=FIOBM^<of+g~J
z$}Hi9{^qdhkA$|ANMx-f3YSU<N}8y9Ga^ZJ2IE~Nh9ow-;%G3XC3u5B*nWe*Ef9&a
zKw@*!-w`l_?PM72h_jm#5i{(M#x}FISUlXxf@Y*6%-Vv{STf8aNq?X-8S#gc!9YCh
zPli923U>y>ER>2zBf$U+V<{62@|!X4B95fQ5-c7;-EFbN4R8=J%`Q<1ON0X<hNeVJ
zaxjm)qlY>u>HcJUI2vULJRXmPSh7<lwhc&<hnkEdwpeFdWHavpe@847X^VuRYX(fM
z!~Bspe`h!xf}|}G4zuu<aPUS%98Gq0kpEzN00E}pH5%DOojW_|O~$+niRDKhW0$YK
zV)+XHJn#Gk#l!j5VG*1Mt1GWvw|0fU(L0x}n=0I$$1xW^;)u9$xbq8IiV97))KvN>
zLD!{WE^zk$#<MGMt<e3o8J|6O--~I$N$gsQJ<fSI`;6o#MItpclZ!|`bynmQnnfhR
zQz7q5q>T9S`Fp`tvCm7nnrEu{U8B4%nVLtE5z26bpzQ%cmA>K!{Q^g@h^APEG<<Rq
zW;qR?so}#Ku0kR4sD{g-iCdl7$_YCeL=72)cv|V3aa=Z)^XIp6!f`odaiCGd)trq4
zi!_|(cB(YBiX*C*+N_GvDvk)Jk1EZr;)pPnJ3_8&rEj5&j<ZT@t2iY6Q!SLSb`3vG
z!{Zu$x`uDjaGWSs*{0zWER?Z3HM~~CcW5}Bo2uN`Dvl^l{l2tI!}a^&qZ<Bq!jyma
zYB<f4RoT}nj>vz#0zvy)1w%O9i&Z()Dvk)3w-OEvXt;cI<M^P4f0QHQYe>V-)bN~!
zpQYi$8a_qCM>SmDI)zkTM-=B&O}|>hr)hYdhU=62Gc|mkrti`4=^B2%hI=%;QNz#C
z@I@LvL&KXi{9Fw;G~BD<%^EI;5-z<?!_U+7TQ&TA4X+$lGEm7tB?FZVR5DP>KqUi}
z3{)~u$v`Col?+reP|3jmzYP4o_Uu0z-N&nqjQj9qj2S(BW>sOp=>Adlv%Il|g}((n
zQfPP`q;@(Z{dSU!<X<Zk3OhLO;{0KYrv<^0`~iy}$NBGCJS||3<R7wlTKF5u-)-@<
z;5U-L-QsBxXC(hQi>C#?k$k}7X<=_9f3?Nag5F4enZ=*R`MDNP3wR^>b1a?~?nd$x
zEuI$aM)EF;r-iza{JS5j_R<0!+Hdi+FgKDvZ1J=phxS`MEyRuFziaWd0EhNlJT1JT
z{T5FPXlTF1)500rZ}GHXhW1-LE&QVW7EcRjXurkNg4sxZuEo=W7}{^~v=D~&TRbg*
zq5T$53tVXbpH=%koPW*Y&*A)Gi>HMwwBO=s0SoQ7cv_G~`z@Xptk8aor-f;>-{NWE
z3hlReTChU<EuI#v(SF6_Y^`5PXX{GF&sXrXZG3}`pJwCj_BA%S+s6O-lG6I#v+-})
z_&03)Z*2U}ZTydI{Bt&bzm5OCjsLcdf5gWBla1eL<Fhut$Hs59@hKbMVdKL#exr?V
zvGHqcywAojwebsW{A?TFVB@FR_<9>(W8>X6{?8ZN`rpRCW#ivaypdg+$FY%h|CY$&
zQL`RH@uf?|P<%>ZsCN1`oZakMNumD)*I)QOA{TsUq=$_IZ(n8{7#(N04jP9)G$+A9
zjdW057;59!fwHIZdfU<zY*}hni_yLGcZ+doq~9=4H!@2<0X+A_2Zcf|gu(BidkuKk
zM%Y^QlYRas2<e~&cDQ-Ojr7+0LPlnM16`O#+BZ744-I+<!;+Ei&s~6V1mK|2y>*bK
zE<tpkN1a9njjrEHI@y}Lx#~}#y$>E(?qyucM#gtvKXHs>`CYiH02?Hid*L$u3~8k6
z=o`N7Ga`L6F;J8EO)^jWhEU@WOL>&lP#LdR!fU^8H&v6Lj^m7Pw-Fo=7B7>p(~u4L
z${E>~eSkr0TvoKX8fsg%rB6zZVPrPa)Q;Tmsj_U#At`yeD0xMMv5&Mi!h5C#Rla0I
zUf|(pT80eQ3r70zlLf?Nqz@YD7jtcYg0qaTk4!G)0Ue+~(dGeRgtoc{3^)Bm_au$h
zG6=7*J4ALPbet}4=OMcSZqw54{XZhCu@&@h^T^+<&@xIAWrG!4RzPSyeYM+Pq6jj+
z0jl;ExauBt*Y@n!!1tk;_U##4#WNY-o+s$`z4%b=x&!GiP<{QrUI6S^Ami&5eFMk5
zZ({I`z8OYc!&FzTQxoB~7uh;6RBgCDm~9|gGQGU7PNo=ry{@tG3}kqd7yEi|y}jGF
z+l88NvMu)QuD$Ce(T)6kyhG%9$jG#ehKyO0_=RA)b6z-p{#or(@!(R)8R-->eM7=`
zPhaZPeKdp0e+yszz7y2g{1^H0C>{6vJ|OY2D>J?mvJu%GycO_axX`u_0B28sj+Egy
zXSi_Ip(}ZgZa@gA;*@^hDEH#&hC698Ni#ur((EtwK=;;BmO6PKIXgDB+joN6EJI!F
zJ5hUA8!mnxZ%M-%(J-VUH85rzKs@N0mDE*P_aLS^bWUg81N=ywAG{B{w+^$~?GI2J
zvchI)l)CpIk~)YO(8Gs~^oWsN_)THTL(F~a4~0U%?+6d~V;SEON`=*~0lF$O)tQzf
z+(CBXZMtb3rro|H$VNFUo{jH_iV;6zIp*2{mO5CBbm-tUfVDiNw~mrV?Ot}tl+;J)
z(CF@S5xW5?<@tB>us0S@irbGjVm@q3+mjDN`RQd4AXP78zK9%(_Fjyj(>;SY;kx(J
zcOf+iD$fg*+)_yMWNT!5a{OxO&z*u8yGIMDbD;Nx)T@VHhI>KZ9Qscf#bA_M%bow4
zJE!kL>S7o@AdRR$ETeybQHIw64|j0pI4r<)kvkeuy7!Y0R@-w3y_4yY;!i_-Ec8Rj
zS?(wA)5&R0Gcr4epo*Y}iKGt-@ed(BHpM~s&k$OoEZK?JFoYq9?U0J_j4T&ENq;sW
zWM?7*Bi+Mm?A}j=)qdp$wAO0RUT#h4g{#NF{E*JC+&k}SI$z~F)TpPaEl_MOBDj+f
za;b%Y32;U_T@QxN5B+3fz_gR;_T#N^Y&$V>w;=d*&%?OyWOmXwa@I?C!^60nGCXKJ
z-Gr*Gv*kC4SZYB2HXcmmurOZa;8F6>y`KofFa%SUf1Mm;c5)Fq1fr+uzCu^=+vJW$
zcp9pxx5zwOe_zq>ZfG3b?k0hz&{b6U6%^3rpDbDjio&Oba7j^U6on57;k2T#u_)Zm
zg>=pJ@W2u5-6!Ngbqq5i3%!L<YNvgy{sIIg+1~{vTlP_PE6x)!f*rtPASGq7h)WKc
zsEZ~F?pgC7UHnY#&c52cefGLOVy|nsOkElGFYwpM^hAD!xb%1MifXq%MK|iKdzq~N
zc{s!AY*1j``-!mBY(y}*5o#FJv-KY(&1}sqZcv<M#bKE5Bxf0SR901s<5oIG!v;p+
zF(Vv<U54t@?yDfoxP7FePq|DUgu8+8jQeaNxS5=-nQwwdzq=X|D*5+m;?*;iq9yi0
zntO4U-{NJZ{0^3;Fw#BE)V}P_^ND06S92qu@$s8D^&jMoCGt-f<y1f9i%R5|73IrG
zp6TKK(b{Ku<7?I<iJ6@gCZD6d#HU+h=4S`r<+i+T*nW{me89-m*OR$umX)n?6SW@U
zfCmQ$t1JgUn^WF_ea5zuJE(u8thzpL+u2l-faO^0kdwY;zZbK&)9GT*^l&}I^5ihx
zJ}`khfqv5Pc~DRH%;etcXP2w@nG6??na}ljU_`xstSiHhMVE^Td6(adI??6ViBLH~
zB#qR@G^O=v{OQY>w4yq4ET>52=6TbpDO?GYn)<GCPSk{tYt`O$JsfuP{&QvA%`jNZ
zncBOW`RvcSHhBN(gTupEW1?$lDq_ZkaGH_vVZ!gOhYK8*4Ev`bDsABDKHj9}QbxMv
zkht_03O9>z*<Xs)DjI<L`w?3qw}B@G6O9Z#YplU^$2Yi|CLa7TWLaS#zY>?0@KXB@
zou+)|j=37o^w%lVG*zbwBc@&SfR(L(jYrQFW<dcBn97y9`|89rk)9UGsHu*u<oqk2
z;b%_02Y(nQ=2Y^L3}<|rp4KoE<UW6aIB*x~p+DkBM+{$N*C%DzaODSt^7adb^0Q-<
z<#P|h_7%f6WfgbwleRuv&Wf%fF_cf_hH{2=|Jz7O)_s<a^#IE?!sng7*SBqb{Zr<2
ze0Q0Xp?9v(%Z<E+8w+(w{-;!D*6opkS0KpWF5+-sWN&IQ`ct?*Z}VPMhorAVa(+6i
zj72f>Ut(<&=b7l=|4<<uyOz&u-4DWevF`{b?YJLf`YO~Gi3Yxh=Pd0+Is>gkXAav=
zBuu+$c*TkI{Ih5SJ<IU*VrzvMV5L+tP{}|g1C<O^GEm7tB?FZV{GZ8ycaC@~Y>s%*
zOT4w`r5C%{D!lO)4tdO&Cmu*7!ybB9%R}$*c^Z<ZvS3Gu@t5Q}lAHN^aV)^RbMPWu
zQo8ceOK}?-k{dlMVjUfU&d?HWhgaw}G=w$^ro@0=hT}%Xis_X)5BzxeTZ2VBh<D-4
zu!p}WS48<Mb93T}Sa4252<__VU<th3vnh~lXE)>17Qq+(m+!RANhK3=@Y)*JM0~S5
zW9IC(SgJF`ZVDti*^~|Q=XY%QBo6VS;6@65%7(@c*|SIQN*~#m@tpUm^E_`p_02b*
z`u5TEH**i&b&==jo%fRLsi%%^|4ROz@4WGqdynqDbBTwY>cg9KDKir5^aKNV2{4M>
zdfBNfVx4BBGld#F6c$(Tdc91%35XEpc5Lv`TY(e+)sIQLYs$Eb+Ytwz7g+SwLSZ}T
z)Yl4y-JlnN{s^?^NTKj+(B3x-g%3c}xk6zoo_Frf7YdhvJ_mX|=&Q#Hg<C<d$D_m7
zK@Wlc0QBd0to$`7mVSA0-FyvmZK-ojIsN479l&P-or=%UZwiH8TJ4-rw`#(fSJs|(
zQ}s4>*;z|2oIi608It`<eA<T!1uQ>Vh4Aa~X$4Nd?5RRNO?)1Dy-?uquKFg_-BGoo
z=A>~m#-VCn=RJ_`K3XWeLPknnH9%r6-vc;|cJp^-EqTF`{|xdq$j1WR{su1Q_9uV`
zAm{JwD*JJDRjU3;X#b~wS19mzXf1ilrQ{1B--o<Lb^ldCtN!(nk3U{0@OOwU`|;zI
zy$SidcpBsH^jh+N<n@!wN~vU^l7UJFDjBF`ppt<~1}Yh-WZ-YjfZB&b?K^=fCoi;@
z1r^0#A$fY%;Kd^d{mC?y#*Yb#KZ)Z-?RPOn@|cqIa+aiO-wT@OQ&IBwJ}ktDAC~pu
zkF-RQ3Th9CMfkaz3jK{3l`lzs{0zd&nUYF1JYWbws<B}ym?ZV+Ps^#Oy$R??8!8HK
zm5x=MeO$_z+Dk&!hu>F3{4y~74#at@Udew+%JGLbTyDiF{r+zgwU3>>-bRl=nj~$O
zv{ll$q}wFjA?YqjdnN6YbU@M}Nrxq6=P+LCB=tzzC~1?V&62iC8kcmNq&p<tC26mu
zeUc7HIwa|^q-xWsx)~x4kED%~Hc8qnX{)4hNw-P5L(*N6_Db3(X?sBUzkJ1tC7$zJ
zHl;evlxOZ-?*eb*?71n<&b@8kJa6NI3nVP`oxWWVjA!ripV4(4I(@6K|I@Yx9mV6h
z#CvTxrGfO-IH0UPjsq8)%;GX`s*lPFd|dQYFZZwEAih3}5BX8!io$6>Ef@YSNsS8%
z--&~A@!wh{>fIviRoC64+|OjTP2%IFqsJwFr%j*YE$9Cr*FS^xQbTN|oc_<CQ^jhn
zaZZ{15(h5)>8t8jg}=%1dS<__hPlE-ruJ7<`r{BN`B8aRcrC{<Dzz#^&<5aDH2Qf;
z@mav}*HB~1RSx*|93Q)%+2<Vedw_e!c*i=8gZ|?V_@D!xcfdbzz$f55Dc9a}9Ps%L
z_*#yS-M_8PL4P#{>~i(qB>mX;UHgKApIQg}YYzAm4)_ZW_^S^1I}W&uw`&5k?^icj
z;`aUOW;*2I;|};$4!9q9x$}ztEUjFgZ*#!E!SM;qzE9o^hxR_^;O7Sp_%Eb?`~G>q
zbI{K_;D2(!CtyG;*WT$4_<W8}VD|n0mPp*bkKj7s<?<YH@c(7tGs;}=k2&Z+>43iq
zd}0|tESNBpW~!~t8)U`p2K{D-A6w^jV&g!+KNRzCj>a}&ce{`oOJFO#)E0(C{dhEN
zV(GlGyasJT81aiu0mGeUq6^#D1v<k1P^zP&3nm)pho)JgDt`mPo`m5<FdR1#8|`A~
z58_7wY?2p9n%2H~e!kD2-@odbWovwX-`bV5cOunIVI^b!cKo0~TPCjj)Y@fhu2=yS
zyVCl7hBPo%UIPfbD=O2=SFc;XY_)&gs#Vwe*8A5lTfW){hZJGitqGg7jq_-qz9zNl
z9&M^u+<sBp%};K0SfcnBH+!Uw21~T{tsF~sUDSi2tpQ7{#1@7n5Z^Pg1QGismOy+X
z#S+B68>1y$@Rv4PoM)+(rpDSNu|%%7k+y*pyF`{W5SufWn9xR$*j=#%qpccC0KO4p
z3F5Q|<d`icORVG$j3t=dMY9C6?dnOJJX-Sk^Gi-CYgbOamBno>#TJ~FF(pw?68c-W
z8@neZ-xjmPT<mgL0`cu7Ed(1!qMfvpr3F#7@@KoUyIArwx$M@Ydaxxsg6d)WOZG1<
zsg-_IECF<f`evoNKe4}Qi5c@^2Te1u3Diso+OCf9!(-UHxijU(Z<ojpcKq~O(56%*
z8k&twJ-I?V{g&wsb#>BqoSd2oA-OS}NaDxE62=c%A{-5nqCAR6P3GmpiWi68%`vca
zkPHWz*9>m~%SSP9A{Gjm_(?b1F2~IF5WFc)_z;7quu#XSD$o&uGq@(th?4u+luR-&
z{U(c1x!nEWZ^USQfu7NEd*|g*d7!9A;)<x}2*u;?a7*kDNqa?SDn&_g8!IWxz~Oa`
zn5ti`TPSKsZDnV#|0>97X+hbmbqz%iNkdu(!4%k9CsFGS*8;;-!m_s%WJPLS1S-6c
z54~&vLu(YOezh*4Xq!}4@hd$=+aael55*75bqz)1(w^cc9eew40!F@-y;^5cv=1^W
zs(xj!+JC#0E$3R8+sJhrMb$bF+0)vN-97`1a-!Cim<J3M5C3Lr{Yr4fI23;e4s?5u
zM@SUqzlkelQ1#olqIUz+?FVKEWkr>qa-n!d={-5!en{FYx=STiI#70s{)^3CtrsZz
zZKY_lmn?hCX0O%(6;<nlN?-M(;{R3JTVXayiKO)Ws2A0L3i~%4kczTb&((@Xm7=8f
z`k%AedzK4DMeq45^}h&pT2rBGkcwL0Q2(xhJzm8t`YYJf;-l=X^^~>bt$4l)uE;BU
zT4$hhSJ|ue2KDb$sDF=wu0JZuPIW7-zfcpEz1m-Ra2;tgcD^9ix3X7s7!uu{wMx}y
zLE9bjr|kb=vsddV?N<wXr6;{w@hhGdzDP&KuhviE(%z#KCAIq-kN7CWMw_0ppJl^U
zb9AcCJzaH|tbb4rEVRyDZv3J3V->q@zvVi?y=yyRRlQ1gqJw>8qtK|a8Q56%Uo=qE
Am;e9(

literal 21664
zcmeHPeRx#WnLkMwjYybaNed!4Qdm)B2wxVkKoAD6$VX68wTQzoGf74>nQ`Wh5EU9W
z#AO_2#YK2r`&98MK4q<1cBPg|aRaUd`?MOYZn0{gSP*AKZH#E6QfGhf`M7iEW^TK?
zfB07pWZwJ!-jDO1bME=LGv}Tkc$O?GEh%9tm9e=j&oNdb1+Jw^gRq(Ge0+{!qq**&
zyr|#RwxI%2lvN6z@^H|l<gN73H-w&|N=|k>ziJ_87J5&az!f#yodZ$d93k(M<xy0V
zc8!uMyHco=UHM#LSH7%}cFD?8v|NaJj1=b{a!`c2ILer!R=cCp&PvBgJ4Jb20K4H`
zJ@Eg@uU6Xao+2DuX+Y+usLF2z?5JM;w@Eeg^)f%Zb|{zSR#a9muTSzp_sliR>KN2I
zC>GURbUj@1B;WL9+jpG5Tf3`!<<yPcdwNbjSkLb^u0IZX<d@<f%gR|v_u^B8O~Bvf
z_-p-e;;?@?=-IsS<;~;oKK;>M(N~Ut`r@NkoPGN4eVJ){o*4rb+f)w67Zj1cV}ny5
z#q_DHt|ESZ4y>5|mo|RBXM@+;;G=Eudu;HHHu3z>M*l_|JZt0U2^;<0Hux+X{1Y2|
zgH66rXD<9%Q>TreHBc<pE-P&GAF<JY+y=kS#?N9KJYj=>XoGLJ!LL9(F8o>3D*%d>
zcM<ThR%P(*Hu`r0A67*FH$0x9taP*xR!|2=S}pPR3kAPj5ayQn?hyibL*oA-@tqe5
zph@C265lXV0Mu_Ooszio62b45<53;h3)oQBQYG+-a^Tq{^+${n_(ti6dA$wcNV7Mt
z`(nD+%e>dFT<Q%3W5I?{To1-pE?v+RX%4RRt!)YlS#gQizuxDq4>kLmLU#pOQ^XhW
z#u81zIJ+$l=aIFy1^v3WJ{Ac>37+CQvWT(zXe`vM*B2=HVliKfw<*}%pf|Fxuc;~G
zFOWwQdI2x=8-ltw6j)y%k-3s6SSTSVt|RXTL=tQEM_URENvyX-QDCYT|LtCX<L%yh
zU#N-sVhwR`*r)p&$<QB;vURbL9`rUv8d!ZK8f<2MJroYIdVf<S9%O+;v?=8GK_QaR
z5x7^6aMdUZABmB8DhtKEsOK<Moj2YXY-(c2J{k=LSiD(QPd$)0&oCZE4w2^iPy??=
zZ#WVN)rW%6)qT3D+P$HAZ*wphfTTVa46@+*p#M(9(-dzBlYf7sFUAm1oHd2kQWH(`
zyW<h}3}X4!mF$`&*IvEAJJmgHdj4{nahV6F!fNpi%a<+iR=cN6$IVrWxvPwoNLq#&
zk$CziB;vXRGo;`ZdJZ&%6(J@4{taSI+~YLg)Z%a713NJ-p2J2;>>18G*f_}#4}~gd
z1vXjoi3>yL(JVX*JSFmv0Mzn{4a)8WSIRt6uGU*>y%UxFiK%s!aKox4K68Ztl)mDR
zFBdq?;c{r;K(`5}^?*tl6MnG*L3>QN?DAaNXTra2(jP&Ugmf<cR97e7Wx{1q31$;a
zIIS^Msy5+j4MVb-CS0soghh=Br!uRgnQ)3prCJlN>W*YLnQ%0mk=B^-!3N4$qX|FX
zghx&I5EH)MgyTjrQmYA<j|5z{#e_QzZN|2l@JbW@kO?1e!grbQe=y;DOt^WT*=xeh
z^Voh9E+0X-w+<7oZdno>HR0bh<=bV#X<ez(aTES61%h^)a5;r>X~u-hsfy!0CVZmF
zPoD{wQ>2i}enj_(oT@lpZo=gh$?-}PE~j9Qk1*lpg|N$nU&=Mb#{?7ZGU3%Ge5?r{
zxcqu+;1lPVFSND~%C(f^*gVFx_71%?*QK@nSNRJ(klc(v0q)I>KLO&rn2~-XNqV#I
z<Z`)foTq`XH+#(BX#nia9x`|u;Ci$FZtyf<_huh6cpB(>vkw?N4RF2LO$JXlZEyAt
zgQo$lH|sNa8pwLHD-50nu-@!^gQtP3H#^1PX~62uUSjYxQ1xbq89WV8z1b3jr-7+A
z`|($*yp^1P$KZ!?{+PkjfP(THJPjl$zroYQgz_6a4JatT!P7v3@*6x26ez#J(*S|;
z8$1mRD8Io|$4B`Mo;p0rZ}8O7QGSD`4vz90Jauf8-{5J&MEU=!%J1U*I|fe^C)(fO
zsY9du22T?x%CC6bO^G>lH!WoRegdDi@a-0UgN3)+hb{7;g<oyq>n!|I3-7V;b1eJ}
z3qQ%ikGJrnEqs-QudwhA3;);e7S`9N7XCvE|E`69+rqzY;eTu4U$pQCE&R_d{8JYG
zaSQ(=3%|p{r!9QDh2LP|6N=Z;b6Rk%r5!OMv-<QZ3}s)<7DL&2xo+pht+@Nx3z9<r
zTCP9iY9g0?r6qf`Lm$o44)v93B}cSlU+Kf);J4C2d9J&j->1r+#=F)z4%o89#5%2Q
z&J)mNTJl|eh?bgj>MF)EBXOT+0vJ4wINk<dvKqEV{$!tB2O(Y5!489OR7-AnD4?YV
zji;4@mh|*Z=|F*e=*C*IGcybQ5a4mGZNqVv_%5QGN71EF=&CuSldf37RbPhoet2M+
zQwTvzc^>K{j&Urz3!^fy<K*&LxJ(`<jbtT#!q-DusAC)kIuied%#)sO<k-y;E@jnI
z#Oq>s?esiJ*<>%qb;|Rk=I;^~|4qJDo#nnVTDopOV9<&~7_YP>MVlE-WlPs}NXbw0
zk}@GVDkVGflB@`0KiQ|@JynM+U)4gt=HaL6y0wyDYsq8J<q(sWJfbCE$sGBT*GC7L
ze4ht&hyq2KyMz(STGFLCXi5JZjdn7;e-?H}$!_f5uyc`J4%3{p`yT9yWYF2_l51R)
znJS5DqXVP4G;^Y4?H$g|uTlglPZwqT<`=nKTc5+(e$WJdhFFrGef_gIobv4ZB~5>`
zjyjhgO8z6|*Xh{{fSvZGJbOjkz%g%||AcR}a}V<Bp}gi%ag#-=25$GFwhncdYYrD?
zYgCr3Ufzlg6r*QvN&k4dQoP8sJbUli)aH4z1Ucbmo8@`Zx%E}ijQoDwDeAdfOV#xS
zw28xcN6;OaTjBVn7ffBng|3p(k_l*fx`prdj>O>ov;xWg6d#?QGgR2@Kk@56y6*Ix
zCGqLSDbE>Mi1apI3i!}UP`0yx(?eb)W%$i#CAjO*CcKXBMhM8_yiQLa_u^`UJ83f9
zWP;|T)l=f(whetOaW3z3r!Q*roS`zyP-l70IJefL^YeHM3RaDRp(+wx{l)>rgQi(Y
zO_g>$grx!9(`m;xe$|;tk$~E;Z9@-pZhn}`kQO$TpOfeaD)l&GKnow!lD%4bMuRZr
zA!ZIhsnc_k%6|IFl;<Q>g;B09>J_Q-RNYDLAU$KQ*|Zg=ZJv{;jbc{3Hl7w4cV_gy
zT<&zqHn7ydVx&U@Zvb3S50%f+H@nZz#}W~Rd<!chlwL&o0J2MZ&bDnhn@bFX@O2@~
z{44O&OVK3HQv;!{X2NM(UrrxR7{(;R#tAGj3Wocn;Tjl11=1@iy20Z5^1_fdeXs^@
zEv=IAP%Q1cF-E0!(5IGe-wT2oPFF?X{`neYYee4p7efQ`)jWHCbG?kbv}F4p^3ZmW
z2*b?`Q<gnJ4pKX~DBa!z(epGq(Y>&r+|f8eH#~ACA^e`3_j@lij%;?2z@(7Dx>MfO
zk3#`V{TuVvU3uXaA)K8T{vt2DT?j|#g^%Wi%eXM{O)VwLgkbOfOy2INF|QhEkWeb8
zwZ}I>V7ehTeXt8kmfA<wYtV^AKe!5uYpRqo5tr<E$cv^MM`Ajpvkp6VbU2^wu;#_A
zdG!>@E9JO^e4w%}5Vzs?c}C972WYrYI}Tv6Px)_$Gc=_}fwdhZ!V;4Z!S<<;^SSx~
z(o9!8&JFT&^=ueso5@+q@$57ZWaY&56Lby7@1KFklyD68OQ<IuJ0MIs?k5%V#66b>
z;fN5Pax@abkTk|*eg!l-9oIubDf<~s-|ZJsw8TC_GdO4YL?JWfx9WBZBiUX{<xB6F
zKqMu(iXJ=w$ti3JMUdW6T_ArgFQ@z=pIIRPWnMmn<f(S<AEkYY7rx>VRAOoeg~@07
zSNWvfZ<g==gxm7GVS5LU_>h*W@{+kImQh>9ru#>Q10Eb4R2vS)*f_Ax`?qojRezpR
zEI;$?zoVw00)B-jN?C#De=61hL#VT-+PNNLd97D21J0nGO!x<gG1)$jd#hSkEZ@T^
zF7CG~Xm`PgTK#lOieHN+7a8&<--SHU<Tr^>IYA^BQW=v}t>re^kz+a07F#XMqN4B|
zF*R1bP+hF9<g$TlIk(;dhi$z5N>Yx8VK9p`&aJh44Po?+<rJEEa2O*Ow5O0II>Px{
z%7bO2!wVO<ESQNt`M6-<Y5Sl?&B$7^?x^VcIpJm|y8Tn!^AWAH6S3to<9Vfc`Y^;`
z?XVP+rswz)<RBV#ey%IK5M4`nxePf$kL$?cxSnd77JRhqz~oKK^mJ7%&x1F`r?5c*
zF5*gU9hG9SLC+jyR8vV-au&~~_?=UA+hkNMpPA*t9(R0_*8EscaG#HHpU!srNfr$;
zyPrNO!-gvdg!1Ogg>pqdWx0Ar*!%GHiL{z4v)ICK+N$5X`-kM9J|u?nR&FR~`?elx
zOUGt276F#|0v}sECt5e0xLLm#pDp@G=%s~T=Ioy_u~3s_e@A(y9rsDW2?(;AL>$ZA
zMdIMIYq~1V^?8|FkrOI?IVxv#F^hcU3q>ZPeP2=`oW6mtjvSduxMMvhvGl`yj75-8
zD-{I{;L9f}zPyp%B9t%53vMJV-e|_ajr7tB{5uo=ot^P59f~!O25MlS1_o+ipauqN
zV4wyDYG9xS25MlS1_o;2@6>>Mve@@FS!`t!y9?d4b&V~;&b(m2rAJ&*Uo0MU(QY&s
z?KO0bj}K=4aDeg6eBpQl-@nIv%sm+!_Tti&n>O#Q8XsTnS`Z0`ea(T{+zwm)R*es=
z7EFNwZRX=f`HX4np9_9me0O6Wj|Bsv7`8sT#Qr}vIU0-jCyx)HFySzZvB7MuFW$)R
z!e4y|ANVh~>P=3>W0SEPk82{RNzD;`Qhg-R9AN8wv1T@E)wF5hRX5@iyBJqf#G_VK
zhp{hoYx3m&l<U%)FLk|l;3w}Lc<NO0Cz;2#Ug0{mWhcoF95}W4{_KNKzkC1AQ_pUh
z?P7yH*c+J8Ly=~e-`DKN2E<^%%?2-sH0z<}1f07lBCg<eyP4Rzh}@@yS9xd`Bjrt5
z<HwwmQDs-HK|9hmhI{^)%iRO|o9<k0H|SfSzXE;zL@xIlD0?rLqpyhG03D7e>vuA_
z+;mVqo6D^P?R`I&(?M@Noy$E4dOIFg_kj*4Tcnb^u4g6dD@#TVIk$Wp@NvK{!e8Ip
zxm+!Mmp-&|(a;f#o#(GBZ)Ni?oPGJUabtmU`-Pw`#Dg!hj6{BK!QTkrHDoUn`PA|E
z`JZw*zL(ZBwDR841r_I%jV(jgJkJLqA9O00dxLD0ytIqNT)q$RLCE>uT|=HT<gY>g
zIO<`0f&G1k{0#6Bs2{#(SJ{^(N>u*CQT{toZ%qaEe#3q`<cA^Wdy@_OL4%b2O2~iq
zA=-(`ZODIE${mo;fizG912r&E0|PZMPy+)sFi-;nH84;EUsDaJ_iogCHdv~PB-iMQ
zr+0%W(UxhR<l>&TOjFwTZ9%a;k0<qh&nU^$R&7eypeWKZL1_I?Ny$I`Di<NXN9IRc
z!YSQEd%uy?J1;Y_QG$|sM}<F=fTw38N+Sfp8%Z+N3M$>QHBvBKiluv|-o>bvjual1
z8L2osq@8+qM&*ZJ_IUg%F#H0^d6h4I*5mvhX^8zpoHyc>e!p&_-e<SwTP@qUM$%eI
z*GL+bv{lk=lJ1gpucRH4c1hYTX^*7p<<ClN0iooQv|7>{NoyrtBWYC9R!O%>x=Yf%
zl6FYiC26;$J(8-ISSztBhvzS8wWKwY)=IiYQuQ9%H47HZc1@^Tn`qV(t|?R8)7{mR
zrX)B!W#iPT?&|56Nm%%|`=tIhh<(gAWSDiR-<9IM(++jRN+Eu5=6H_<zeM7yUrTlN
z9bA;Kk*sEgKve%;z;QT{{Zi@Qh6~D9jS~vLlk0zjseZ2T9k?hK|0Hw(%2$*5s(!SG
z`x(h<C64`mJUt`vn=JZv^>c*lU%=MO9ZkZE_$(IBYY>$(r!j6R{XgKM1fz#)SB1aF
z@hWERCp}zY7*ppZDE%@7N`6#5E8NL(j54(f5p+E8QW`W=e~{vdz~!x0U|{zi_$^$&
z|NGK+*!XD&?keysn8$4NkJ#Y9x53}H!D%aQv2uM2_enAQO&fdy$NRsJJ<Ue{xJ|yA
zjs9&m_(mIi8^?z->wD>YByN2#{TUlSM{Mvv*x(-lFV>EKwb8G@gj1}Z-5ejvtnb60
zwy8Iohl}~S&IYfS{;luHx7g^fx54kT!GC0fKW&2_=J-%%eb4_TiCfPL_#^OQ_1tIU
ze>4WPu|@jVOyI@p?H1s}is&<cOpoh{`g*sY<&O{W>R~Tlg>S||0A6n(;%#V(ti^lo
z0X-6ndwq%Zc$qyMZ3^o6%DK9@1|2F8@`{)IgUx!Z1uwMw!a;8!5e~P&#Kd`_sTZiq
z-wJTXKrrSHMs>tSrxJMm_#Pdv%lqQG@dmw@zqjx8F1mjHQjgcOY$2V6KzUPG@rbt(
z-@(%n2n%msHh<~03xMME7OzK>2HL{w0pYX+WqQq$<yX&N;$6OI(G8xJ-j(yOUgCj6
zim>QW12v{s=;@998uj`;y<VR`PQmnEzdX30K=E%K-e5k6q2SB}bJlbuK!HbbkU;^&
zPdF$*tj8o6!s+~o1A{Fri*dd|f!rJ>ox>oGX)wn~2QT0pgaRvmLP7yzcl1KP6C4Vx
z<k1KPm^`GS0J9vLL8mVm@@dlwTG%-B!d!;@sS)CY3&WVI$Xo?z5VKwX!y@>p69wkt
zaEStlpZj1SIMD&+q$4H_h_aPGJQY1&g5Ow0PyR3mTX5ipIc#si@gN1cn(fU;f0)h1
zX(0t>%#D*Qbl+M~Jtk<Qy23AIL3cxQ!i^u>P#Jm)a~sgwM5rk+35RQNg+}`E%^hfI
zreiTU)nh_(XD}AWPhtg(7qVEe$w!LvD%zwoH}BMLT)G<~VCf<r^fR{}To0CyA?{ct
z;M4KLW3W+<Sd9UAQ=IT2hAv^Du91~59D*~rCeMhH`&k>0GdKN+h%vF)X#9W1=sB34
zB{3cIMC$=cin=(L|4{2=g}8BHwm&NE6&<G(CB-ySkmiHKmimawUp-$dx=?B>J8S;e
zK~9gv%3eKxE9#Pl^t_Ixg7G}Bo{Mh)hAGmpSI_f`s^@p8@I*e$X%!fHmR9+z=VwK4
zlFBN6rKe~k<n(N=c=dd)XjIx${G?+o|2kmgTiL7c0~GCmjFQS<*{kwzlCrD07GvuB
z1x3~O5oAx_L0Iimz^G2t_aDY{f_z?3-?Ko4Cl!a{@5P1L-X-l6wbs9S3{ms}i+xls
zUKCY&DnG?5O7EkY^KX^*iq@!#l@64hqCd9StLI=vKcNR<Q&M&c`Zrvd^H<+jDXPB5
zQu@~V`<b*i!mO5>lKz;So04ij1^ogSq@wKA^P-{wr6{R2e|p2vY+pWAC@QM|o%~;c
zI#m(%K}zbmU7f#YjaTuCz6l#A{*=A(J;7Y^mcL&Gm*<r|JwMaEtL)Wtv^q~wotvn>
z?^AZF9qD@oDx$Ji=l&d@2M}q3AjYS%SF{Hbv%T^BT_a3p+SH%2|J-7)z8{!5U)U=>
z!R5=Zc=|$zbX5H6dx08h?^24ATKx?|d=#R(?UcH*pQr#yNtcqDs(VjJ#AkHApw)6<
rq3>ghjX(5trHWlxh|gWu2pX~6uqt1rOV2dL?43)5Muo+|!m|GXUjzf{

diff --git a/logs/execve.log b/logs/execve.log
index 84246e8..141806f 100644
--- a/logs/execve.log
+++ b/logs/execve.log
@@ -188,3 +188,89 @@ arg[2]: python
 arg[0]: /usr/lib/command-not-found
 arg[1]: --
 arg[2]: pip
+[Wed Mar 26 16:09:32 2025
+] Command: /usr/bin/lesspipe
+arg[0]: lesspipe
+[Wed Mar 26 16:09:32 2025
+] Command: /usr/bin/dircolors
+arg[0]: dircolors
+arg[1]: -b
+[Wed Mar 26 16:09:34 2025
+] Command: /usr/bin/make
+arg[0]: make
+[Wed Mar 26 16:09:40 2025
+] Command: /usr/bin/lesspipe
+arg[0]: lesspipe
+[Wed Mar 26 16:09:40 2025
+] Command: /usr/bin/dircolors
+arg[0]: dircolors
+arg[1]: -b
+[Wed Mar 26 16:09:41 2025
+] Command: /usr/bin/ls
+arg[0]: ls
+arg[1]: --color=auto
+[Wed Mar 26 16:11:44 2025
+] Command: /usr/bin/lesspipe
+arg[0]: lesspipe
+[Wed Mar 26 16:11:44 2025
+] Command: /usr/bin/dircolors
+arg[0]: dircolors
+arg[1]: -b
+[Wed Mar 26 16:11:44 2025
+] Command: /usr/bin/ls
+arg[0]: ls
+arg[1]: --color=auto
+[Wed Mar 26 16:11:47 2025
+] Command: /usr/bin/ls
+arg[0]: ls
+arg[1]: --color=auto
+[Wed Mar 26 16:11:47 2025
+] Command: /usr/bin/ls
+arg[0]: ls
+arg[1]: --color=auto
+arg[2]: -alF
+[Wed Mar 26 16:11:53 2025
+] Command: /usr/lib/command-not-found
+arg[0]: /usr/lib/command-not-found
+arg[1]: --
+arg[2]: pip
+[Wed Mar 26 16:11:56 2025
+] Command: /usr/bin/rm
+arg[0]: rm
+[Wed Mar 26 16:14:18 2025
+] Command: /usr/bin/lesspipe
+arg[0]: lesspipe
+[Wed Mar 26 16:14:18 2025
+] Command: /usr/bin/dircolors
+arg[0]: dircolors
+arg[1]: -b
+[Wed Mar 26 16:14:19 2025
+] Command: /usr/bin/ls
+arg[0]: ls
+arg[1]: --color=auto
+[Wed Mar 26 16:14:20 2025
+] Command: /usr/bin/ls
+arg[0]: ls
+arg[1]: --color=auto
+arg[2]: -alF
+[Wed Mar 26 16:14:31 2025
+] Command: /usr/bin/lesspipe
+arg[0]: lesspipe
+[Wed Mar 26 16:14:31 2025
+] Command: /usr/bin/dircolors
+arg[0]: dircolors
+arg[1]: -b
+[Wed Mar 26 16:14:34 2025
+] Command: /usr/bin/ls
+arg[0]: ls
+arg[1]: --color=auto
+[Wed Mar 26 16:14:36 2025
+] Command: /usr/bin/ls
+arg[0]: ls
+arg[1]: --color=auto
+arg[2]: -alF
+[Wed Mar 26 16:14:59 2025
+] Command: /usr/bin/git
+arg[0]: git
+arg[1]: add
+arg[2]: .
diff --git a/logs/execve_out.log b/logs/execve_out.log
new file mode 100644
index 0000000..1aa58a4
--- /dev/null
+++ b/logs/execve_out.log
@@ -0,0 +1,91 @@
+export LESSOPEN="| /usr/bin/lesspipe %s";
+export LESSCLOSE="/usr/bin/lesspipe %s %s";
+LS_COLORS='rs=0:di=01;34:ln=01;36:mh=00:pi=40;33:so=01;35:do=01;35:bd=40;33;01:cd=40;33;01:or=40;31;01:mi=00:su=37;41:sg=30;43:ca=30;41:tw=30;42:ow=34;42:st=37;44:ex=01;32:*.tar=01;31:*.tgz=01;31:*.arc=01;31:*.arj=01;31:*.taz=01;31:*.lha=01;31:*.lz4=01;31:*.lzh=01;31:*.lzma=01;31:*.tlz=01;31:*.txz=01;31:*.tzo=01;31:*.t7z=01;31:*.zip=01;31:*.z=01;31:*.dz=01;31:*.gz=01;31:*.lrz=01;31:*.lz=01;31:*.lzo=01;31:*.xz=01;31:*.zst=01;31:*.tzst=01;31:*.bz2=01;31:*.bz=01;31:*.tbz=01;31:*.tbz2=01;31:*.tz=01;31:*.deb=01;31:*.rpm=01;31:*.jar=01;31:*.war=01;31:*.ear=01;31:*.sar=01;31:*.rar=01;31:*.alz=01;31:*.ace=01;31:*.zoo=01;31:*.cpio=01;31:*.7z=01;31:*.rz=01;31:*.cab=01;31:*.wim=01;31:*.swm=01;31:*.dwm=01;31:*.esd=01;31:*.jpg=01;35:*.jpeg=01;35:*.mjpg=01;35:*.mjpeg=01;35:*.gif=01;35:*.bmp=01;35:*.pbm=01;35:*.pgm=01;35:*.ppm=01;35:*.tga=01;35:*.xbm=01;35:*.xpm=01;35:*.tif=01;35:*.tiff=01;35:*.png=01;35:*.svg=01;35:*.svgz=01;35:*.mng=01;35:*.pcx=01;35:*.mov=01;35:*.mpg=01;35:*.mpeg=01;35:*.m2v=01;35:*.mkv=01;35:*.webm=01;35:*.webp=01;35:*.ogm=01;35:*.mp4=01;35:*.m4v=01;35:*.mp4v=01;35:*.vob=01;35:*.qt=01;35:*.nuv=01;35:*.wmv=01;35:*.asf=01;35:*.rm=01;35:*.rmvb=01;35:*.flc=01;35:*.avi=01;35:*.fli=01;35:*.flv=01;35:*.gl=01;35:*.dl=01;35:*.xcf=01;35:*.xwd=01;35:*.yuv=01;35:*.cgm=01;35:*.emf=01;35:*.ogv=01;35:*.ogx=01;35:*.aac=00;36:*.au=00;36:*.flac=00;36:*.m4a=00;36:*.mid=00;36:*.midi=00;36:*.mka=00;36:*.mp3=00;36:*.mpc=00;36:*.ogg=00;36:*.ra=00;36:*.wav=00;36:*.oga=00;36:*.opus=00;36:*.spx=00;36:*.xspf=00;36:';
+export LS_COLORS
+make: 对“all”无需做任何事。
+export LESSOPEN="| /usr/bin/lesspipe %s";
+export LESSCLOSE="/usr/bin/lesspipe %s %s";
+LS_COLORS='rs=0:di=01;34:ln=01;36:mh=00:pi=40;33:so=01;35:do=01;35:bd=40;33;01:cd=40;33;01:or=40;31;01:mi=00:su=37;41:sg=30;43:ca=30;41:tw=30;42:ow=34;42:st=37;44:ex=01;32:*.tar=01;31:*.tgz=01;31:*.arc=01;31:*.arj=01;31:*.taz=01;31:*.lha=01;31:*.lz4=01;31:*.lzh=01;31:*.lzma=01;31:*.tlz=01;31:*.txz=01;31:*.tzo=01;31:*.t7z=01;31:*.zip=01;31:*.z=01;31:*.dz=01;31:*.gz=01;31:*.lrz=01;31:*.lz=01;31:*.lzo=01;31:*.xz=01;31:*.zst=01;31:*.tzst=01;31:*.bz2=01;31:*.bz=01;31:*.tbz=01;31:*.tbz2=01;31:*.tz=01;31:*.deb=01;31:*.rpm=01;31:*.jar=01;31:*.war=01;31:*.ear=01;31:*.sar=01;31:*.rar=01;31:*.alz=01;31:*.ace=01;31:*.zoo=01;31:*.cpio=01;31:*.7z=01;31:*.rz=01;31:*.cab=01;31:*.wim=01;31:*.swm=01;31:*.dwm=01;31:*.esd=01;31:*.jpg=01;35:*.jpeg=01;35:*.mjpg=01;35:*.mjpeg=01;35:*.gif=01;35:*.bmp=01;35:*.pbm=01;35:*.pgm=01;35:*.ppm=01;35:*.tga=01;35:*.xbm=01;35:*.xpm=01;35:*.tif=01;35:*.tiff=01;35:*.png=01;35:*.svg=01;35:*.svgz=01;35:*.mng=01;35:*.pcx=01;35:*.mov=01;35:*.mpg=01;35:*.mpeg=01;35:*.m2v=01;35:*.mkv=01;35:*.webm=01;35:*.webp=01;35:*.ogm=01;35:*.mp4=01;35:*.m4v=01;35:*.mp4v=01;35:*.vob=01;35:*.qt=01;35:*.nuv=01;35:*.wmv=01;35:*.asf=01;35:*.rm=01;35:*.rmvb=01;35:*.flc=01;35:*.avi=01;35:*.fli=01;35:*.flv=01;35:*.gl=01;35:*.dl=01;35:*.xcf=01;35:*.xwd=01;35:*.yuv=01;35:*.cgm=01;35:*.emf=01;35:*.ogv=01;35:*.ogx=01;35:*.aac=00;36:*.au=00;36:*.flac=00;36:*.m4a=00;36:*.mid=00;36:*.midi=00;36:*.mka=00;36:*.mp3=00;36:*.mpc=00;36:*.ogg=00;36:*.ra=00;36:*.wav=00;36:*.oga=00;36:*.opus=00;36:*.spx=00;36:*.xspf=00;36:';
+export LS_COLORS
+config
+execve_intercept.c
+intercept.so
+logs
+Makefile
+README.md
+test_bash.sh
+export LESSOPEN="| /usr/bin/lesspipe %s";
+export LESSCLOSE="/usr/bin/lesspipe %s %s";
+LS_COLORS='rs=0:di=01;34:ln=01;36:mh=00:pi=40;33:so=01;35:do=01;35:bd=40;33;01:cd=40;33;01:or=40;31;01:mi=00:su=37;41:sg=30;43:ca=30;41:tw=30;42:ow=34;42:st=37;44:ex=01;32:*.tar=01;31:*.tgz=01;31:*.arc=01;31:*.arj=01;31:*.taz=01;31:*.lha=01;31:*.lz4=01;31:*.lzh=01;31:*.lzma=01;31:*.tlz=01;31:*.txz=01;31:*.tzo=01;31:*.t7z=01;31:*.zip=01;31:*.z=01;31:*.dz=01;31:*.gz=01;31:*.lrz=01;31:*.lz=01;31:*.lzo=01;31:*.xz=01;31:*.zst=01;31:*.tzst=01;31:*.bz2=01;31:*.bz=01;31:*.tbz=01;31:*.tbz2=01;31:*.tz=01;31:*.deb=01;31:*.rpm=01;31:*.jar=01;31:*.war=01;31:*.ear=01;31:*.sar=01;31:*.rar=01;31:*.alz=01;31:*.ace=01;31:*.zoo=01;31:*.cpio=01;31:*.7z=01;31:*.rz=01;31:*.cab=01;31:*.wim=01;31:*.swm=01;31:*.dwm=01;31:*.esd=01;31:*.jpg=01;35:*.jpeg=01;35:*.mjpg=01;35:*.mjpeg=01;35:*.gif=01;35:*.bmp=01;35:*.pbm=01;35:*.pgm=01;35:*.ppm=01;35:*.tga=01;35:*.xbm=01;35:*.xpm=01;35:*.tif=01;35:*.tiff=01;35:*.png=01;35:*.svg=01;35:*.svgz=01;35:*.mng=01;35:*.pcx=01;35:*.mov=01;35:*.mpg=01;35:*.mpeg=01;35:*.m2v=01;35:*.mkv=01;35:*.webm=01;35:*.webp=01;35:*.ogm=01;35:*.mp4=01;35:*.m4v=01;35:*.mp4v=01;35:*.vob=01;35:*.qt=01;35:*.nuv=01;35:*.wmv=01;35:*.asf=01;35:*.rm=01;35:*.rmvb=01;35:*.flc=01;35:*.avi=01;35:*.fli=01;35:*.flv=01;35:*.gl=01;35:*.dl=01;35:*.xcf=01;35:*.xwd=01;35:*.yuv=01;35:*.cgm=01;35:*.emf=01;35:*.ogv=01;35:*.ogx=01;35:*.aac=00;36:*.au=00;36:*.flac=00;36:*.m4a=00;36:*.mid=00;36:*.midi=00;36:*.mka=00;36:*.mp3=00;36:*.mpc=00;36:*.ogg=00;36:*.ra=00;36:*.wav=00;36:*.oga=00;36:*.opus=00;36:*.spx=00;36:*.xspf=00;36:';
+export LS_COLORS
+config
+execve_intercept.c
+intercept.so
+logs
+Makefile
+README.md
+test_bash.sh
+config
+execve_intercept.c
+intercept.so
+logs
+Makefile
+README.md
+test_bash.sh
+总计 62
+drwxrwxr-x  5 qcqcqc qcqcqc    10  3月 26 16:11 ./
+drwxrwxr-x 12 qcqcqc qcqcqc    12  3月 20 21:08 ../
+drwxrwxr-x  2 qcqcqc qcqcqc     3  3月 26 09:04 config/
+-rw-rw-r--  1 qcqcqc qcqcqc  9139  3月 26 16:11 execve_intercept.c
+drwxrwxr-x  8 qcqcqc qcqcqc    14  3月 26 16:09 .git/
+-rwxrwxr-x  1 qcqcqc qcqcqc 21912  3月 26 16:11 intercept.so*
+drwxrwxr-x  2 qcqcqc qcqcqc     4  3月 26 16:09 logs/
+-rw-rw-r--  1 qcqcqc qcqcqc   222  3月 26 09:02 Makefile
+-rw-rw-r--  1 qcqcqc qcqcqc   973  3月 26 10:08 README.md
+-rwxrwxr-x  1 qcqcqc qcqcqc    31  3月 26 09:02 test_bash.sh*
+找不到命令 “pip”，但可以通过以下软件包安装它：
+sudo apt install python3-pip
+export LESSOPEN="| /usr/bin/lesspipe %s";
+export LESSCLOSE="/usr/bin/lesspipe %s %s";
+LS_COLORS='rs=0:di=01;34:ln=01;36:mh=00:pi=40;33:so=01;35:do=01;35:bd=40;33;01:cd=40;33;01:or=40;31;01:mi=00:su=37;41:sg=30;43:ca=30;41:tw=30;42:ow=34;42:st=37;44:ex=01;32:*.tar=01;31:*.tgz=01;31:*.arc=01;31:*.arj=01;31:*.taz=01;31:*.lha=01;31:*.lz4=01;31:*.lzh=01;31:*.lzma=01;31:*.tlz=01;31:*.txz=01;31:*.tzo=01;31:*.t7z=01;31:*.zip=01;31:*.z=01;31:*.dz=01;31:*.gz=01;31:*.lrz=01;31:*.lz=01;31:*.lzo=01;31:*.xz=01;31:*.zst=01;31:*.tzst=01;31:*.bz2=01;31:*.bz=01;31:*.tbz=01;31:*.tbz2=01;31:*.tz=01;31:*.deb=01;31:*.rpm=01;31:*.jar=01;31:*.war=01;31:*.ear=01;31:*.sar=01;31:*.rar=01;31:*.alz=01;31:*.ace=01;31:*.zoo=01;31:*.cpio=01;31:*.7z=01;31:*.rz=01;31:*.cab=01;31:*.wim=01;31:*.swm=01;31:*.dwm=01;31:*.esd=01;31:*.jpg=01;35:*.jpeg=01;35:*.mjpg=01;35:*.mjpeg=01;35:*.gif=01;35:*.bmp=01;35:*.pbm=01;35:*.pgm=01;35:*.ppm=01;35:*.tga=01;35:*.xbm=01;35:*.xpm=01;35:*.tif=01;35:*.tiff=01;35:*.png=01;35:*.svg=01;35:*.svgz=01;35:*.mng=01;35:*.pcx=01;35:*.mov=01;35:*.mpg=01;35:*.mpeg=01;35:*.m2v=01;35:*.mkv=01;35:*.webm=01;35:*.webp=01;35:*.ogm=01;35:*.mp4=01;35:*.m4v=01;35:*.mp4v=01;35:*.vob=01;35:*.qt=01;35:*.nuv=01;35:*.wmv=01;35:*.asf=01;35:*.rm=01;35:*.rmvb=01;35:*.flc=01;35:*.avi=01;35:*.fli=01;35:*.flv=01;35:*.gl=01;35:*.dl=01;35:*.xcf=01;35:*.xwd=01;35:*.yuv=01;35:*.cgm=01;35:*.emf=01;35:*.ogv=01;35:*.ogx=01;35:*.aac=00;36:*.au=00;36:*.flac=00;36:*.m4a=00;36:*.mid=00;36:*.midi=00;36:*.mka=00;36:*.mp3=00;36:*.mpc=00;36:*.ogg=00;36:*.ra=00;36:*.wav=00;36:*.oga=00;36:*.opus=00;36:*.spx=00;36:*.xspf=00;36:';
+export LS_COLORS
+config
+execve_intercept.c
+intercept.so
+logs
+Makefile
+README.md
+test_bash.sh
+总计 62
+drwxrwxr-x  5 qcqcqc qcqcqc    10  3月 26 16:14 ./
+drwxrwxr-x 12 qcqcqc qcqcqc    12  3月 20 21:08 ../
+drwxrwxr-x  2 qcqcqc qcqcqc     3  3月 26 09:04 config/
+-rw-rw-r--  1 qcqcqc qcqcqc  9595  3月 26 16:14 execve_intercept.c
+drwxrwxr-x  8 qcqcqc qcqcqc    14  3月 26 16:09 .git/
+-rwxrwxr-x  1 qcqcqc qcqcqc 26104  3月 26 16:14 intercept.so*
+drwxrwxr-x  2 qcqcqc qcqcqc     4  3月 26 16:09 logs/
+-rw-rw-r--  1 qcqcqc qcqcqc   222  3月 26 09:02 Makefile
+-rw-rw-r--  1 qcqcqc qcqcqc   973  3月 26 10:08 README.md
+-rwxrwxr-x  1 qcqcqc qcqcqc    31  3月 26 09:02 test_bash.sh*
+export LESSOPEN="| /usr/bin/lesspipe %s";
+export LESSCLOSE="/usr/bin/lesspipe %s %s";
+LS_COLORS='rs=0:di=01;34:ln=01;36:mh=00:pi=40;33:so=01;35:do=01;35:bd=40;33;01:cd=40;33;01:or=40;31;01:mi=00:su=37;41:sg=30;43:ca=30;41:tw=30;42:ow=34;42:st=37;44:ex=01;32:*.tar=01;31:*.tgz=01;31:*.arc=01;31:*.arj=01;31:*.taz=01;31:*.lha=01;31:*.lz4=01;31:*.lzh=01;31:*.lzma=01;31:*.tlz=01;31:*.txz=01;31:*.tzo=01;31:*.t7z=01;31:*.zip=01;31:*.z=01;31:*.dz=01;31:*.gz=01;31:*.lrz=01;31:*.lz=01;31:*.lzo=01;31:*.xz=01;31:*.zst=01;31:*.tzst=01;31:*.bz2=01;31:*.bz=01;31:*.tbz=01;31:*.tbz2=01;31:*.tz=01;31:*.deb=01;31:*.rpm=01;31:*.jar=01;31:*.war=01;31:*.ear=01;31:*.sar=01;31:*.rar=01;31:*.alz=01;31:*.ace=01;31:*.zoo=01;31:*.cpio=01;31:*.7z=01;31:*.rz=01;31:*.cab=01;31:*.wim=01;31:*.swm=01;31:*.dwm=01;31:*.esd=01;31:*.jpg=01;35:*.jpeg=01;35:*.mjpg=01;35:*.mjpeg=01;35:*.gif=01;35:*.bmp=01;35:*.pbm=01;35:*.pgm=01;35:*.ppm=01;35:*.tga=01;35:*.xbm=01;35:*.xpm=01;35:*.tif=01;35:*.tiff=01;35:*.png=01;35:*.svg=01;35:*.svgz=01;35:*.mng=01;35:*.pcx=01;35:*.mov=01;35:*.mpg=01;35:*.mpeg=01;35:*.m2v=01;35:*.mkv=01;35:*.webm=01;35:*.webp=01;35:*.ogm=01;35:*.mp4=01;35:*.m4v=01;35:*.mp4v=01;35:*.vob=01;35:*.qt=01;35:*.nuv=01;35:*.wmv=01;35:*.asf=01;35:*.rm=01;35:*.rmvb=01;35:*.flc=01;35:*.avi=01;35:*.fli=01;35:*.flv=01;35:*.gl=01;35:*.dl=01;35:*.xcf=01;35:*.xwd=01;35:*.yuv=01;35:*.cgm=01;35:*.emf=01;35:*.ogv=01;35:*.ogx=01;35:*.aac=00;36:*.au=00;36:*.flac=00;36:*.m4a=00;36:*.mid=00;36:*.midi=00;36:*.mka=00;36:*.mp3=00;36:*.mpc=00;36:*.ogg=00;36:*.ra=00;36:*.wav=00;36:*.oga=00;36:*.opus=00;36:*.spx=00;36:*.xspf=00;36:';
+export LS_COLORS
+config
+execve_intercept.c
+intercept.so
+logs
+Makefile
+README.md
+test_bash.sh
+总计 62
+drwxrwxr-x  5 qcqcqc qcqcqc    10  3月 26 16:14 ./
+drwxrwxr-x 12 qcqcqc qcqcqc    12  3月 20 21:08 ../
+drwxrwxr-x  2 qcqcqc qcqcqc     3  3月 26 09:04 config/
+-rw-rw-r--  1 qcqcqc qcqcqc  9595  3月 26 16:14 execve_intercept.c
+drwxrwxr-x  8 qcqcqc qcqcqc    14  3月 26 16:09 .git/
+-rwxrwxr-x  1 qcqcqc qcqcqc 26104  3月 26 16:14 intercept.so*
+drwxrwxr-x  2 qcqcqc qcqcqc     4  3月 26 16:09 logs/
+-rw-rw-r--  1 qcqcqc qcqcqc   222  3月 26 09:02 Makefile
+-rw-rw-r--  1 qcqcqc qcqcqc   973  3月 26 10:08 README.md
+-rwxrwxr-x  1 qcqcqc qcqcqc    31  3月 26 09:02 test_bash.sh*