Splunk Search
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Comparing with NULL

pm771
Communicator
‎09-24-2020 06:24 PM

Do I understand correctly that NULL is neither equal (==) nor not equal (!=) to any value? 

I know about isnull() function, but was under (apparently wrong) impression that NULL is  not equal to everything else.

Illustration:

| makeresults
| eval N=null
| eval i1=if(isnull(N), "N", "Y")
| eval i2=if(N != "Y", "N", "Y")

 

Result:

i1i2
NY

 

Is it fully documented?

 

Tags (1)
Reply

pm771
Communicator
‎09-24-2020 06:54 PM

What I meant was:

| makeresults
| eval i1=if(null==null, "true", "false")
| eval i2=if(null!=null, "true", "false")

 The return will be false and false

0 Karma
Reply

inventsekar
SplunkTrust
SplunkTrust
‎09-24-2020 06:42 PM

soo, i thought to test this with integer and string..

| makeresults
| eval N="3"
| eval i1=if(N==3, "N", "Y")
| eval i2=if(N != "3", "N", "Y")

i1=N  and i2=Y 

| makeresults
| eval N=3
| eval i1=if(N==3, "N", "Y")
| eval i2=if(N != "3", "N", "Y") 

also produced the above result. 

 

(PS - i have given around 350+ karma points so far, received badge for that,.. maybe you also should start "Learn, Give Back, Have Fun")

thanks and best regards,
Sekar

PS - If this or any post helped you in any way, pls consider upvoting, thanks for reading !
0 Karma
Reply
Get Updates on the Splunk Community!

Splunk Decoded: Service Maps vs Service Analyzer Tree View vs Flow Maps

It’s Monday morning, and your phone is buzzing with alert escalations – your customer-facing portal is running ...

What’s New in Splunk Observability – September 2025

What's NewWe are excited to announce the latest enhancements to Splunk Observability, designed to help ITOps ...

Fun with Regular Expression - multiples of nine

Fun with Regular Expression - multiples of nineThis challenge was first posted on Slack #regex channel ...