DBD::SQLite select fails

bulrush has asked for the wisdom of the Perl Monks concerning the following question:

Perl 5.8.8 on Redhat 5.5.56

I decided to try DBD::SQLite and am getting no where fast. I create a new table, insert a record, then I cannot find the record again via SELECT. I don't get an error, I just get 0 records returned. (Actually, the object returns '0E0', which means zero records returned anyway.) Here's my code opening the db and creating the table.

use DBD::SQLite;
my %attr;
$attr{AutoCommit}=1; # Turn on AutoCommit.
if (! -e $dbfile)
    {
    $dbh=DBI->connect("dbi:SQLite:$dbfile", undef, undef, \%attr) or
      die "Could not open $dbfile: $DBI::errstr";
    # Now create table.
    $sql="CREATE TABLE data ";
    $sql.="(skey TEXT PRIMARY KEY, "; # Was varchar(30)
    $sql.="svalue TEXT)";
    $sql.=";";
    $ret=prepex($sql);
    }
else {
    $dbh=DBI->connect("dbi:SQLite:$dbfile", undef, undef, undef) or
      die "Could not open $dbfile: $DBI::errstr";
    }
$s="SQLite version: ".$dbh->{sqlite_version};
writeerr($s);

SQLite version: 3.8.4.1
[download]

Then I execute these statements in order. Every SQL statement is executed with the routine prepex().

######################################################################
+#####
# Prepare then execute SQL statement.
# In: SQL statement
# Out: change global var $sth. Return rows affected.
# See $DBI::rows: rows returned?
# $DBI::errstr: error string
sub prepex
{my($sql)=@_;
my(@a,@b,$i,$j,$procname,$s,$t);
my($key,$data,$ret,$rows);

$procname="prepex()";

$rows=0;
$s="$procname: Runnning sql: $sql";
writeerr($s);

eval {
    $sth=$dbh->prepare($sql);
    };
if ($@)
    {
    $s="$procname: ERROR on prepare: $@";
    writeerr($s);
    }

eval {
    $sth->execute();
    $rows=$DBI::rows; # Also $sth->rows;
    #$ret=$ret+0; # Remove '0E0' code.
    #$dbh->commit or die $dbh->errstr; # Do not use with AutoCommit.
    };
if (($@) or ($DBI::errstr))
    {
    $s="$procname: ERROR on execute: $@";
    writeerr($s);
    }

#$s="$procname: Rows returned: $DBI::rows";
#writeerr($s);
if (len($DBI::errstr)>0)
    {
    $s="$procname ERROR from DBI: $DBI::errstr";
    writeerr($s);
    }

return $rows; # prepex
}

Then I execute these SQL statements. 

CREATE TABLE data (skey TEXT PRIMARY KEY, svalue TEXT);

INSERT INTO data (skey, svalue) VALUES ('Stuff', 'Ge 1:1-more &stuff& 
+here ');

SELECT svalue FROM data WHERE skey='Stuff'; # This one fails with 0 re
+cs returned
[download]

The final SELECT fails with no records found. Am I missing something about oddball characters in a string field? Is there something else going on I'm not seeing? I have no experience with SQL. I've been going over this for about 3 hours trying different things, to no avail.

Thank you.

EDIT. We are using ampersands in the SQL statement data (and other odd characters) to indicate formatting like bold and italic. They will later be put into a text file, then put into Word, and formatted appropriately. We might also us caret (^), pound (#), dollar sign ($), or others.

Perl 5.8.8 on Redhat Linux RHEL 5.5.56 (64-bit)

Comment on DBD::SQLite select fails Select or Download Code

Replies are listed 'Best First'.
Re: DBD::SQLite select fails by AppleFritter (Vicar) on Aug 11, 2014 at 19:26 UTC
Howdy bulrush! Could you be so kind and post complete, working code that demonstrates the problem? Yours not only doesn't compile (`writeerr()` is not included), it also doesn't do anything. Furthermore, it'd be nice if you could use proper `<code>` tags for your code, since that'll allow us to download code rather than having to copy and paste it. Once we've got some code that demonstrates the issue you're experiencing, we'll be in a much better position to help you. EDIT: to expand on the above, the following test script IS working for me: #!/usr/bin/perl use strict; use warnings; use feature qw/say/; use DBD::SQLite; use Data::Dumper; our $dbfile = "test.db"; my $dbh = DBI->connect("dbi:SQLite:$dbfile", undef, undef, { AutoCommit => 1, RaiseError => 1 }); # create table, if necessary $dbh->do("CREATE TABLE IF NOT EXISTS data (skey TEXT PRIMARY KEY, sval +ue TEXT);"); # insert data $dbh->do("INSERT OR REPLACE INTO data (skey, svalue) VALUES ('Stuff', +'Ge 1:1-more \&stuff\& here ');"); # fetch data my $sth = $dbh->prepare("SELECT skey, svalue FROM data WHERE skey = 'S +tuff';"); $sth->execute(); my $results = $sth->fetchall_hashref("skey"); say Dumper $results; [download] This correctly prints: `$VAR1 = { 'Stuff' => { 'svalue' => 'Ge 1:1-more &stuff& here ', 'skey' => 'Stuff' } };` [download]	[reply] [d/l] [select]
Re^2: DBD::SQLite select fails by bulrush (Scribe) on Aug 12, 2014 at 11:32 UTC
Thanks. You are actually not using my code (because you escape the ampersands), but your answer does help me. Because my real questions were: Is there a problem with my connect() statement? And, what characters do I have to escape in the SQL statement and how do I escape them? So, I will escape those ampersands. After searching Google and the SQLite docs, I could not find which characters to escape nor how to escape them. Do you know which I have to escape in the SQL statement? Perl 5.8.8 on Redhat Linux RHEL 5.5.56 (64-bit)	[reply]
Re^3: DBD::SQLite select fails by AppleFritter (Vicar) on Aug 12, 2014 at 12:31 UTC
You are actually not using my code (because you escape the ampersands), It's a habit of mine; I tend to escape special characters in double-quoted strings. After all, you said you wanted to execute the following SQL statement: `INSERT INTO data (skey, svalue) VALUES ('Stuff', 'Ge 1:1-more &stuff& +here ');` [download] without any interpolation possibly happening in Perl. However, in this case it's not actually necessary to do so: remove the backslashes from the `INSERT OR REPLACE` statement, and the script will still work. Don't be afraid to experiment; give it a try. So, I will escape those ampersands. After searching Google and the SQLite docs, I could not find which characters to escape nor how to escape them. Do you know which I have to escape in the SQL statement? It depends. On Perl's side, you will have to escape everything that Perl might otherwise interpret/interpolate. For the database side, take a look at SQLite's syntax diagrams, and also the reference page for expressions, which has this to say: A string constant is formed by enclosing the string in single quotes (`'`). A single quote within the string can be encoded by putting two single quotes in a row - as in Pascal. C-style escapes using the backslash character are not supported because they are not standard SQL. Then again, the only thing that you'll have to escape on the DB is the single quote character itself. To do that, put in two single quotes. Replacing the `INSERT OR REPLACE` line in the above script with the following (note I also unescaped the ampersands here): `$dbh->do("INSERT OR REPLACE INTO data (skey, svalue) VALUES ('Stuff', +'Ge 1:1-more &stuff& here ''');");` [download] results in: `$VAR1 = { 'Stuff' => { 'svalue' => 'Ge 1:1-more &stuff& here \'', 'skey' => 'Stuff' } };` [download] The backslash in the output is due to Data::Dumper, BTW, so don't let that confuse you. All in all, I'd recommend two things: Use single-quoted strings for your query strings so that Perl won't interpolate into them. Use the the `q//` operator (see Quote and Quote like Operators) with a terminator other than `'` so you won't have to escape single quotes. For instance (linebreaks added for clarity), for statements that don't change: `$dbh->do( q/INSERT OR REPLACE INTO data (skey, svalue) VALUES ('Stuff', 'lit +eral dollar sign: $, literal single quote: '', literal ampersand: &') +;/ );` [download] For statements that DO change, use `->prepare()` and `->bind_param()` instead: `my $sth = $dbh->prepare( 'INSERT OR REPLACE INTO data (skey, svalue) VALUES (?, ?);' ); $sth->bind_param(1, $skey); $sth->bind_param(2, $svalue); $sth->execute();` [download] Don't assemble query strings in Perl using interpolation or string concatenation, this will lead to bugs and/or security risks. ("Little Bobby Tables" and all that.)	[reply] [d/l] [select]
Re: DBD::SQLite select fails by poj (Abbot) on Aug 11, 2014 at 19:43 UTC
See DBI "For SELECT statements, it is generally not possible to know how many rows will be returned except by fetching them all. Some drivers will return the number of rows the application has fetched so far, but others may return -1 until all rows have been fetched. So use of the rows method or $DBI::rows with SELECT statements is not recommended." poj	[reply]
Re^2: DBD::SQLite select fails by bulrush (Scribe) on Aug 12, 2014 at 11:29 UTC
Yes, but also @rows=$sth->fetchrows_array also returns no records. Hence my puzzlement. Perl 5.8.8 on Redhat Linux RHEL 5.5.56 (64-bit)	[reply]
Re^3: DBD::SQLite select fails by poj (Abbot) on Aug 12, 2014 at 11:54 UTC
Method `fetchrows_array` does not exist. What where you expecting `@rows` to contain ? Update: Maybe you meant `fetchrow_array` like this #!perl use strict; use DBD::SQLite; use Data::Dump 'pp'; my $dbfile = 'test.sqlite'; my $dbh = DBI->connect('dbi:SQLite:'.$dbfile , undef , undef , {RaiseError =>1, AutoCommit =>1}) or die $DBI::errstr; $dbh->do('CREATE TABLE IF NOT EXISTS data ( skey TEXT PRIMARY KEY, svalue TEXT )'); $dbh->do("INSERT INTO data (skey, svalue) VALUES ('Stuff','Ge 1:1-more &stuff&here ')"); my $sql = "SELECT svalue FROM data WHERE skey='Stuff'"; my $sth = $dbh->prepare($sql); $sth->execute(); my @row = $sth->fetchrow_array; pp @row; [download] poj	[reply] [d/l] [select]
Re: DBD::SQLite select fails by GrandFather (Saint) on Aug 11, 2014 at 22:56 UTC
Not an answer to your question, but if you are starting out with databases you may find Databases made easy helpful. See also the other offerings in the Database Programming section of the Tutorials. Perl is the programming world's equivalent of English	[reply]
Re^2: DBD::SQLite select fails by bulrush (Scribe) on Aug 12, 2014 at 11:35 UTC
Thank you. I understand databases just fine. But I assume different flavors of SQL escape different sets of characters, and sometimes do it differently. That was one of my questions. Not all flavors of SQL adhere 100% to any given SQL spec. Perl 5.8.8 on Redhat Linux RHEL 5.5.56 (64-bit)	[reply]
Re^3: DBD::SQLite select fails by bulrush (Scribe) on Aug 12, 2014 at 11:38 UTC
What I meant was, over the years I find subtle differences in flavors of programming, string escapes, regex, and SQL, they are not all the same. So my assumption was what needs to be escaped in SQLite may not be the same as other flavors of SQL, and a Google search did not help me either. I've used a few languages that claim to adhere to XYZ standard, but they don't do it 100%, so reading standards is usually a waste of my time. I look for specific documentation on the flavor of X I'm using at the moment. Perl 5.8.8 on Redhat Linux RHEL 5.5.56 (64-bit)	[reply]
Re: DBD::SQLite select fails by Anonymous Monk on Aug 11, 2014 at 23:08 UTC
um, too much typing, it goes like this `sub prepex { my( $sql, @bindvalues ) = @_; my $row; eval { $row = $dbh->selectrow_arrayref( $sql, {}, @bindvalues );; 1; } or do { writeerr( $@ ); ...; }; return $row->[0] unless wantarray; return @$row; }` [download] RaiseError tells you (via $@ )whether prepare or execute or fetch failed If you want the number of rows selected, COUNT(), like `SELECT COUNT() FROM data WHERE skey='Stuff'` [download] or using placeholders/bindvalues `prepex( q{ SELECT COUNT() FROM data WHERE skey=? }, 'Stuff', );` [download] see also this and DBI recipes	[reply] [d/l] [select]
Re^2: DBD::SQLite select fails by Corion (Patriarch) on Aug 12, 2014 at 11:42 UTC
Also, if you find yourself often needing "both", the count and the data, DBIx::PreQL allows you to write your SQL in a templated fashion suitable for switching between the two forms.	[reply]