Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Just learned the hard way a piece of MySQL sytax - why does this work and what does it mean to do?

Tags:

mysql

mysql-5.6

I'm using MySQL 5.6. The internal app at my company works with SET SQL_SAFE_UPDATES = 0;(I know). I've brought this up before but was told to just let it be.

Today, I accidentally wrote and ran this DELETE FROM table WHERE id - 11235, with a - instead of = and lo and behold all the rows deleted. I understand delete all rows is allowable with the safe updates off, but why didn't this throw some syntax error? What would id - 11235 even mean in SQL?

like image 363
bjk116 Avatar asked Jan 03 '20 18:01

bjk116

2 Answers

This works in MySQL because MySQL is non-standard with respect to SQL boolean expressions.

Boolean expressions must evaluate to true or false. But in MySQL, false is simply the integer 0, true is the integer 1, and any other integer other than 0 is also treated as true.

So it is strange, and non compliant with ANSI SQL, but any arithmetic expression can also be used as a boolean expression, and vice-versa.

This allows us to do neat tricks like this:

SELECT SUM( name = 'Harry' ) FROM mytable

The boolean expression results in integer values, either 0 or 1, depending on the string comparison. Summing these effectively returns a count of the rows where the expression is true, the same as if we had run:

SELECT COUNT(*) FROM mytable WHERE name = 'Harry'

But the SUM trick allows us to "count" multiple conditions with a single pass over the table:

SELECT SUM(name = 'Harry'), SUM(name = 'Ron'), SUM(name = 'Hermione') FROM mytable

You can't do that with COUNT(*) and a WHERE clause.

Again, this works only in MySQL, because MySQL makes booleans and integers the same. It doesn't work in other implementations of SQL.

In your query, id - 11235 is 0 on a row where id = 11235, and it's nonzero on every other row. The rows where it is nonzero are treated as true, so the delete is applied.

This is unfortunate at least in your case, because a typo results in deleting all your data.

like image 195
Bill Karwin Avatar answered Sep 20 '22 10:09

Bill Karwin

You have a DELETE-statement with a condition (WHERE). If the condition is true for the row, the delete operation is being done.

The condition you have is id - 11235. Every row where this condition doesn’t produce false/0 is considered true. So, the command will delete all the rows but id 11235 (11235-11235 = 0).

like image 32
slaakso Avatar answered Sep 20 '22 10:09

slaakso
Sign in to Comment

Related questions

How can i insert real time of an event into database using php mysqli?
SQLSTATE[HY000] [2002] Establishing tcp connections on remote port 3306 has been disabled for security reasons
Getting error while executing criteria query on enum column in mysql table hibernate
value of max_connections in AWS RDS
node.js get result from mysql query
MySQL GROUP_CONCAT doesn't return all results
SQL select max of a group [duplicate]
AWS MySQL connection frequently times out
Laravel - PDO Prepared Statement - Cannot execute queries while other unbuffered queries are active
LOCATE vs INSTR
Error Keyerror 255 when executing pymysql.connect
sql delete all rows older than 30 days
An error occurred in the current transaction. You can't execute queries until the end of the 'atomic' block
Docker Flyway MySQL 8 : Client does not support authentication protocol requested by server. Consider upgrading MariaDB client
Upgrade to Airflow 1.10 - _mysql_exceptions.OperationalError: (1054, "Unknown column 'task_instance.executor_config' in 'field list'")
MySQL Workbench not opening on ubuntu
Spring boot CLIENT_PLUGIN_AUTH is required
Calculate Available Balance from Wallet system excluding Expired Credits
Using a connector with Helm-installed Kafka/Confluent
"Mysql" user has password "invalid" - is this the normal thing?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!