Valid in: ESQL
The Prepare statement prepares and names a dynamically constructed SQL statement for execution.
The Prepare statement has the following format:
EXEC SQL PREPARE statement_name
[INTO descriptor_name [USING NAMES]]
FROM string_constant | string_variable;
The Prepare statement encodes the dynamically constructed SQL statement string in the from clause and assigns it the specified statement_name.
When the program subsequently executes the prepared statement, it uses the name to identify the statement, rather than the full statement string. Both the name and statement string can be represented by either a string constant or a host language variable. The maximum length of a statement name is 32 characters. If the statement string is blank or empty, the DBMS Server returns a runtime syntax error.
Within the statement string, replace constant expressions in where clauses, insert values clauses, and update set clauses with question marks. When the statement executes, these question marks are replaced with specified values. Question marks cannot be used in place of table or column names or reserved words.
To illustrate, the following example prepares and executes a delete statement on a dynamically defined table:
statement_buffer = 'delete from ' + table_name +
' where code = ?';
exec sql prepare del_stmt from :statement_buffer;
...
exec sql execute del_stmt using :code;
The value in the variable, code, replaces the '?' in the where clause of the prepared delete statement.
Illustrating incorrect usage, the following example is not accurate because it includes a parameter specification in place of the table name:
exec sql prepare bad_stmt
from 'delete from ? where code = ?';
Whenever an application executes a prepared statement that contains parameters specified with questions marks, the program must supply values for each question mark.
If the statement name identifies an existing prepared statement, the existing statement is destroyed and the new statement takes effect. This rule holds across the dynamic scope of the application. The statement name must not identify an existing statement name that is associated with an open cursor. The cursor must be closed before its statement name can be destroyed. Once prepared, the statement can be executed any number of times.
However, if a transaction is rolled back or committed, the prepared statement becomes invalid. If the prepared statement is to be executed only once, execute immediate must be used on the statement string. If the prepared statement is to be executed repeatedly, the prepare and execute sequence must be used.
The following statements cannot be prepared and executed dynamically:
In addition, the following types of statements cannot be prepared and dynamically executed:
If the statement string is a select statement, the select must not include an into clause. The select statement string can include the different clauses of the cursor select statement, such as the for update and order by clauses.
As with execute immediate, the statement string must not include exec sql, any host language terminators, or references to variable names. If your statement string includes embedded quotes, it is easiest to specify the string in a host language variable. If specifying a string that includes quotes as a string constant, remember that quoted characters within the statement string must follow the SQL string delimiting rules.
If your host language delimits strings with double quotes, the quoted characters within the statement string must be delimited by the SQL single quotes. For complete information about embedding quotes within a string literal, see the Embedded SQL Companion Guide.
The into descriptor_name clause is equivalent to issuing the describe statement after the statement is successfully prepared. For example, the following prepare statement:
exec sql prepare prep_stmt
into sqlda from :statement_buffer;
is equivalent to the following prepare and describe statements:
exec sql prepare prep_stmt from :statement_buffer;
exec sql describe prep_stmt into sqlda;
The into clause returns the same information as does the describe statement. If the prepared statement is a select, the descriptor contains the data types, lengths, and names of the result columns. If the statement was not a select, the descriptor's sqld field contains a zero. For more information about the results of describing a statement, see the chapter "Working with Embedded SQL" and Describe.
This statement must be terminated according to the rules of your host language.
All users are permitted to use this statement.
A two-column table, whose name is defined dynamically but whose columns are called high and low, is manipulated within an application, and statements to delete, update and select the values are prepared.
get table_name from a set of names;
statement_buffer = 'delete from ' + table_name +
' where high = ? and low = ?';
exec sql prepare del_stmt from :statement_buffer;
statement_buffer = 'insert into ' + table_name +
' values (?, ?)';
exec sql prepare ins_stmt from :statement_buffer;
statement_buffer = 'select * from ' + table_name
+ ' where low ?';
exec sql prepare sel_stmt from :statement_buffer;
...
exec sql execute del_stmt using :high, :low;
...
exec sql execute ins_stmt using :high, :low;
...
exec sql declare sel_csr cursor for sel_stmt;
exec sql open sel_csr using :high, :low;
loop while more rows
exec sql fetch sel_csr into :high1, :low1;
...
end loop;