python 中的命令行 output 逐行读取，将行中的每个值放入数组并调用

Question

I'm trying to capture the output of a command and have each line in an array so I can evaluate on a position in the line as a constant if that makes sense. It would treat the output almost as columns.

I've basically assigned a command output to a variable and split it on each line. I can do a split and get the first "column" but I can't seem to get past this.

I've broken the code into sections to show the output I'm seeing. I'm running an aureport to evaluate some login activity.

#!/usr/bin/python

import os
import platform
import fnmatch
import subprocess

results = subprocess.check_output("aureport -ts yesterday -te now  -au -i --failed", shell=True).splitlines()
print(results)


for line in results:
  print(line)

for line in results:
  arg = line.split(' ')
  item1 = arg[0]
  print(item1)
exit(0)

The results I get are:

['', 'Authentication Report', '============================================', '# date time acct host term exe success event', '============================================', '1. 00/00/00 06:49:24 some_user ? host /some/command no some_pid', '2. 00/00/00 06:49:27 some_user ? host /some/command no some_pid', '3. 00/00/00 06:49:29 some_user ? host /some/command no some_pid', '4. 00/00/00 07:10:44 some_user ? host /some/command no some_pid', '5. 00/00/00 07:10:49 some_user ? host /some/command no some_pid', '6. 00/00/00 07:10:53 some_user ? host /some/command no some_pid', '7. 00/00/00 07:11:14 some_user ? host /some/command no some_pid', '8. 00/00/00 07:11:16 some_user ? host /some/command no some_pid', '9. 00/00/00 07:11:25 some_user ? host /some/command no some_pid', '10. 00/00/00 06:19:44 some_user ? host /some/command no some_pid', '11. 00/00/00 06:19:47 some_user ? host /some/command no some_pid', '12. 00/00/00 06:20:59 some_user host command /some/command no some_pid', '13. 00/00/00 06:21:01 some_user ::1 command /some/command no some_pid']

Authentication Report
============================================
# date time acct host term exe success event
============================================
1. 00/00/00 06:49:24 some_user ? host /some/command no some_pid
2. 00/00/00 06:49:27 some_user ? host /some/command no some_pid
3. 00/00/00 06:49:29 some_user ? host /some/command no some_pid
4. 00/00/00 07:10:44 some_user ? host /some/command no some_pid
5. 00/00/00 07:10:49 some_user ? host /some/command no some_pid
6. 00/00/00 07:10:53 some_user ? host /some/command no some_pid
7. 00/00/00 07:11:14 some_user ? host /some/command no some_pid
8. 00/00/00 07:11:16 some_user ? host /some/command no some_pid
9. 00/00/00 07:11:25 some_user ? host /some/command no some_pid
10. 00/00/00 06:19:44 some_user ? host /some/command no some_pid
11. 00/00/00 06:19:47 some_user ? host /some/command no some_pid
12. 00/00/00 06:20:59 some_user host command /some/command no some_pid
13. 00/00/00 06:21:01 some_user ::1 command /some/command no some_pid

Authentication
============================================
#
============================================
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.

What I would like to do is create some evaluations on (as an example) the 'column' in the output that shows 'no' and then print output from the rest of the line. Example: if arg[7] == 'no': print(arg[4])

What I can't seem to wrap my head around is getting the output evaluated on line by line so arg[7] always refers to the 'no' column etc. I did manage to get just the first column by splitting on a space however I'm pretty sure it's coincidence:)

Answer 1

If I understand your question, all you need to do is put your if statement within your for loop. Then it will evaluate the output line by line. So your last section could look like this:

for line in results[5:]:
    arg = line.split()
    if arg[7] == 'no':
        print(arg[4])

Note I changed line.split(' ') to line.split() as the default action of split() is to separate by whitespace.

The [4:] removes the lines you aren't considering: '#####...' , etc.