.net 正则表达式多行日志
我想使用.NET/Powershell正则表达式在日志中搜索特定位置的.net 正则表达式多行日志,.net,regex,powershell,.net,Regex,Powershell,我想使用.NET/Powershell正则表达式在日志中搜索特定位置的Success状态,例如ABC 如果我使用以下模式:”(?ms)A status:Success.*Location:“with global(又称AllMatches),那么它会在任何位置查找状态为Success的所有日志记录 如果我试图通过在模式中添加ABC来缩小范围,那么匹配太贪婪了,从第18行的成功一直到第28行的ABC 我放弃了,使用了一种更明确的模式(它获取完整的日志记录,并且似乎有效,因为我指定了成功和位置之间的
SuccessABC”(?ms)A status:Success.*Location:“SuccessABCABC(?sm)^\d([\S]*\S{10}){3}状态:Success\S{2}([\S]*\S{10}){2}位置:ABC[\S]*04/09/2018 06:31:59 AM [class | Info] some message received from 101592 (123.123.123.124)
Request Id: 0 (Descriptor: 0, Operator Request Id: 0)
A type: bar
A status: Queued
The id: 1E25
Additional info: Inserted in queue at position 1 on device ABC
Location: ABC, subarea: 2
04/09/2018 06:31:59 AM [class | Info] some message received from 102364 (123.123.123.123)
Request Id: 0 (Descriptor: 0, Operator Request Id: 0)
A type: bar
A status: Queued
The id: 1E25
Additional info: Inserted in queue at position 1 on device ABC
Location: ABC, subarea: 2
04/09/2018 06:31:59 AM [class | Info] some message received from 102364 (123.123.123.123)
Request Id: 0 (Descriptor: 0, Operator Request Id: 0)
A type: blah bit foo
A status: Success
The id: T908
Additional info:
Location: DEF, subarea: 3
04/09/2018 06:32:00 AM [class | Info] some message received from 102364 (123.123.123.123)
Request Id: 0 (Descriptor: 0, Operator Request Id: 0)
A type: bar
A status: Success
The id: DG08
Additional info:
Location: ABC, subarea: 1
(?m)A状态:成功(?:\n\h++)+位置:ABC(?m)状态:成功(?:\n\s++)+位置:ABC\h*?(?:\n\h+[^\n]+)+s(?m)A状态:成功(?:\n\h++)+位置:ABC(?m)状态:成功(?:\n\s++)+位置:ABC\h*?(?:\n\h+[^\n]+)+(注意:我删除了
s^\d{2}\/(.++\n){3}(?=.+Success)(.++\n){3}(?=.+ABC)。++/^\d{2}\/状态(.++\n){3}成功(?=.Success)(.+\n){3}ABC(?=.+ABC)。++尝试以下模式:
^\d{2}\/(.++\n){3}(?=.+Success)(.++\n){3}(?=.+ABC)。++/^\d{2}\/状态(.++\n){3}成功(?=.Success)(.+\n){3}ABC(?=.+ABC)。++这里的方法相当麻烦。使用
Get Content-Raw(?m)^(?=\d{2}/\d{2}/\d{4})处分成块Where ObjectSelect String获取内容-Raw处分为块(?m)^(?=\d{2}/\d{2}/\d{4})Where ObjectSelect String\s\h\s\h