复杂的 sqlite 查询给出

【问题标题】:Complex sqlite queries gives复杂的 sqlite 查询给出
【发布时间】:2012-12-09 23:40:49
【问题描述】:

我正在尝试执行具有多种条件的查询,但遇到了异常。

bind or column index out of range

这是来自 ContentProvider 的查询。

@Override
public Cursor query(Uri uri, String[] projection, String selection, String[] selectionArgs, String sortOrder) {
    SQLiteQueryBuilder queryBuilder = new SQLiteQueryBuilder();
    int uriType = sURIMatcher.match(uri);
    switch (uriType) {
    case RESPONSEVIEW2_SELECTION_10:
        queryBuilder.setTables(RESPONSES_VIEW);
        String activeUserKey = getActiveUserId();;
        String outerSelection = 
                "(((" + PeerCreatedDataColumns.SHARED + "=" + "" + trueId + "" + ") OR " 
                + "(" + PeerCreatedDataColumns.AUTHORHASH + "=" + "'" + activeUserKey + "'" + ")) AND (" 
                + "(" + ResponsesColumns.PRIMARYMATCH + "= '*'" + ") OR " 
                                    // '*' is defined by the program, hopefully not in conflict with anything built-in
                + "(" + ResponsesColumns.PRIMARYMATCH + " like '?') OR " 
                + "(" + ResponsesColumns.PRIMARYMATCH + " like '" + selectionArgs[0] + "%') OR " 
                + "(" + ResponsesColumns.PRIMARYMATCH + " like '%" + selectionArgs[0] + "') OR " 
                + "(" + ResponsesColumns.PRIMARYMATCH + " like '%" + selectionArgs[0] + "%'" + ")))";
        Log.d(DEBUG_TAG, "query " + outerSelection);
        Cursor cursor10 = queryBuilder.query(mDB.getReadableDatabase(), projection, outerSelection, selectionArgs,
                null, null, sortOrder);
        cursor10.setNotificationUri(getContext().getContentResolver(), uri);
        Log.e(DEBUG_TAG, "responses_view2 should have better search function");
        return cursor10;
    case ROW_SELECTION_11:
        queryBuilder.setTables(RESPONSES_VIEW);
        Log.e(DEBUG_TAG, "responses_view2 should have better search function");
        queryBuilder.appendWhere(PeerDatabase._ID + "=" + uri.getLastPathSegment());
        Cursor cursor11 = queryBuilder.query(mDB.getReadableDatabase(), projection, selection, selectionArgs, null,
                null, sortOrder);
        cursor11.setNotificationUri(getContext().getContentResolver(), uri);
        return cursor11;
    ...
    }
}

这里是游标加载器,它似乎是错误的来源。

public Loader<Cursor> onCreateLoader(int id, Bundle args) {
    if (search == null) {
        return null;
    } else {
        String[] selectArgs = { search };
        return new CursorLoader(getActivity(), table, createProjection, "?", selectArgs, null);
    }
}

这是整个错误:

12-09 18:25:54.509: E/AndroidRuntime(12461): FATAL EXCEPTION: ModernAsyncTask #2
12-09 18:25:54.509: E/AndroidRuntime(12461): java.lang.RuntimeException: An error occured while executing doInBackground()
12-09 18:25:54.509: E/AndroidRuntime(12461):    at android.support.v4.content.ModernAsyncTask$3.done(ModernAsyncTask.java:137)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at java.util.concurrent.FutureTask$Sync.innerSetException(FutureTask.java:274)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at java.util.concurrent.FutureTask.setException(FutureTask.java:125)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at java.util.concurrent.FutureTask$Sync.innerRun(FutureTask.java:308)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at java.util.concurrent.FutureTask.run(FutureTask.java:138)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1088)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:581)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at java.lang.Thread.run(Thread.java:1019)
12-09 18:25:54.509: E/AndroidRuntime(12461): Caused by: android.database.sqlite.SQLiteException: bind or column index out of range: handle 0x28bd08
12-09 18:25:54.509: E/AndroidRuntime(12461):    at android.database.sqlite.SQLiteProgram.native_bind_string(Native Method)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at android.database.sqlite.SQLiteProgram.bindString(SQLiteProgram.java:244)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at android.database.sqlite.SQLiteQuery.bindString(SQLiteQuery.java:185)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at android.database.sqlite.SQLiteDirectCursorDriver.query(SQLiteDirectCursorDriver.java:48)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at android.database.sqlite.SQLiteDatabase.rawQueryWithFactory(SQLiteDatabase.java:1356)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at android.database.sqlite.SQLiteQueryBuilder.query(SQLiteQueryBuilder.java:330)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at android.database.sqlite.SQLiteQueryBuilder.query(SQLiteQueryBuilder.java:280)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at org.anuvar.plana.m.provider.PeerDataProvider.query(PeerDataProvider.java:285)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at android.content.ContentProvider$Transport.query(ContentProvider.java:187)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at android.content.ContentResolver.query(ContentResolver.java:262)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at android.support.v4.content.CursorLoader.loadInBackground(CursorLoader.java:49)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at android.support.v4.content.CursorLoader.loadInBackground(CursorLoader.java:35)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at android.support.v4.content.AsyncTaskLoader.onLoadInBackground(AsyncTaskLoader.java:240)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at android.support.v4.content.AsyncTaskLoader$LoadTask.doInBackground(AsyncTaskLoader.java:51)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at android.support.v4.content.AsyncTaskLoader$LoadTask.doInBackground(AsyncTaskLoader.java:40)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at android.support.v4.content.ModernAsyncTask$2.call(ModernAsyncTask.java:123)
12-09 18:25:54.509: E/AndroidRuntime(12461):    at java.util.concurrent.FutureTask$Sync.innerRun(FutureTask.java:306)
12-09 18:25:54.509: E/AndroidRuntime(12461):    ... 4 more

我正在尝试找出异常,但如果有更好的方法来查询此数据,请告诉我。

【问题讨论】:

    标签: android android-sqlite android-contentresolver


    【解决方案1】:

    selection 参数中的? 数量必须与selectionArgs 参数中的字符串数量相匹配。 LogCat 表明这些计数不匹配,但我们很难判断...

    我发现了问题,不要将? 括在引号中,否则您实际上是在搜索问号。这是不正确的:

    " like '?') OR "

    改为使用:

    " like ?) OR "

    如果search是用户输入,你应该保护自己免受SQL注入攻击:

    + "(" + ResponsesColumns.PRIMARYMATCH + " like ?) OR " 
+ "(" + ResponsesColumns.PRIMARYMATCH + " like ?) OR " 
+ "(" + ResponsesColumns.PRIMARYMATCH + " like ?) OR " 
+ "(" + ResponsesColumns.PRIMARYMATCH + " like ?)))";

    并像这样创建一个新的selectionArgs 参数:

    String search = selectionArgs[0];
String[] matchArgs = { search, search + "%", "%" + search, "%" + search + "%" };
Cursor cursor10 = queryBuilder.query(mDB.getReadableDatabase(), projection, 
            outerSelection, matchArgs, null, null, sortOrder);

    【讨论】:

    • 谢谢。我在将所有部分放在一起时遇到了一些麻烦。这好多了。
    猜你喜欢
    • 2015-12-16
    • 1970-01-01
    • 2011-02-14
    • 1970-01-01
    • 1970-01-01
    • 1970-01-01
    • 1970-01-01
    • 1970-01-01
    • 2015-01-07
    相关资源
    最近更新 更多
    热门标签
    Java Python linux javascript Mysql C# Docker 算法 前端 SpringBoot Redis Vue spring 设计模式 .net core .net kubernetes c++ 数据库 数据结构 大数据 js 机器学习 微服务 Android Go 程序员 面试 JVM ASP.net core 云原生 人工智能 后端 PHP git CSS golang k8s Nginx Django mybatis 深度学习 多线程 React 架构 devops 爬虫 云计算 Spring Boot LeetCode