使用Dynamic Query运行存储过程时出错

时间:2013-07-05 06:39:07

标签: mysql stored-procedures prepared-statement

我正在调用Under Stored过程,其中表名根据当前日期生成:

    DELIMITER $$
USE `test`$$
DROP PROCEDURE IF EXISTS `sp_pickalertstatus`$$
CREATE PROCEDURE `sp_pickalertstatus`()
BEGIN
    DECLARE msgID  BIGINT (10);
    DECLARE tbl VARCHAR(100);
    SET msgID=(SELECT alertID FROM tbl_intofone_alert_transaction WHERE 
    deliverystatus LIKE '22%' LIMIT 1); 
    IF(msgID IS NOT NULL)THEN
        SET tbl=(SELECT CONCAT('history.tbl_',DATE_FORMAT(NOW(),"%y%m%d")));
        INSERT INTO tbl (MEMBERID,SOURCE,MOBILE,SMPPID,PRIORITY,SMSID
        ,SMSCONTENTTYPE,MESSAGE,REQUESTDATETIME,DR_GROUPID,dr_service_type,
        dr_celleb_msg_id,dr_submit_date,dr_done_date,dr_stat,dr_err,dr_smppid)
        SELECT memberid,SenderID,MSISDN,SMPPID,'1',alertID,'TXT',Message,
        updatetime,'0','PIN','0',DATE_FORMAT(InTime,'ymdHis'),
        DATE_FORMAT(updatetime,'ymdHis'),'DELIVRD',
        '000','03' FROM tbl_intofone_alert_transaction WHERE alertID=msgID;         
    END IF; 
    END$$
DELIMITER ;

我收到错误“错误代码:1146表'test.tbl'不存在”。我在这里做错了什么?

建议使用Prepared语句执行此操作后,我更改了以上代码: 

DELIMITER $$

USE `test`$$

DROP PROCEDURE IF EXISTS `sp_pickalertstatus22`$$

CREATE PROCEDURE `sp_pickalertstatus22`()
BEGIN
    DECLARE msgID  BIGINT (10);
    DECLARE tbl VARCHAR(100);
    SET msgID=(SELECT alertID FROM tbl_intofone_alert_transaction WHERE deliverystatus LIKE '22%' LIMIT 1); 
    IF(msgID IS NOT NULL)THEN
        SET tbl=(SELECT CONCAT('history.tbl_',DATE_FORMAT(NOW(),"%y%m%d")));
        SET @sl=CONCAT('INSERT INTO ?',' (MEMBERID,SOURCE,MOBILE,SMPPID,PRIORITY,SMSID,SMSCONTENTTYPE,MESSAGE,REQUESTDATETIME,
        DR_GROUPID,dr_service_type,dr_celleb_msg_id,dr_submit_date,dr_done_date,dr_stat,dr_err,dr_smppid)
            SELECT memberid,SenderID,MSISDN,SMPPID,?,alertID,?,Message,updatetime,?,?,?,DATE_FORMAT(InTime,?),
            DATE_FORMAT(updatetime,?),?,?,? FROM tbl_intofone_alert_transaction WHERE alertID=?');
        PREPARE stmt FROM @sl;
        SET @tbl=tbl;
        SET @pr='06';
        SET @txt='TXT';
        SET @grp='0';
        SET @srtyp='PIN';
        SET @clmsg='0';
        SET @intm='%y%m%d%H%i%s';
        SET @outm='%y%m%d%H%i%s';
        SET @drst='DELIVRD';
        SET @drerr='000';
        SET @drsmp='03';
        SET @msg=msgID;

        EXECUTE stmt USING @tbl,@pr,@txt,@grp,@srtyp,@clmsg,@intm,@outm,@drst,@drerr,@drsmp,@msg;       
    END IF; 
    END$$
DELIMITER ;

但它还不起作用?并收到错误 

  Error Code : 1064
    You have an error in your SQL syntax; check the manual that
 corresponds to your MySQL server version for the right syntax 
to use near '? MEMBERID,SOURCE,MOBILE,SMPPID,PRIORITY,SMSID,
SMSCONTENTTYPE,MESSAGE,REQUESTDA' at line 1

使用查询字符串执行prepare语句时: 

    EXECUTE stmt USING '06','TXT','0','PIN','0','%y%m%d%H%i%s'
,'%y%m%d%H%i%s','DELIVRD','000','03';

获取错误: 

Error Code : 1064
You have an error in your SQL syntax; check the manual that 
corresponds to your MySQL server version for the right syntax to 
use near ''06','TXT','0','PIN','0','%y%m%d%H%i%s','%y%m%d%H%i%s','DELIVRD',
'000','03';' at line 25

1 个答案:

答案 0 :(得分:0)

鉴于您的更新:不要使用占位符作为tbl名称,在查询字符串中使用CONCAT,就像我一样,以避免? (附近的语法错误。注意字段名称前的??它没有被@tbl取代 也松开@标志。您正在创建会话变量(在整个会话期间保留在内存中),这仅在需要时才有用。在存储过程中,它们是无关紧要的。该过程返回后,它使用的变量可以,并且应该是GC。

使用预先准备好的声明:

SET tbl=(SELECT CONCAT('history.tbl_',DATE_FORMAT(NOW(),"%y%m%d"))); -- set tbl as you normally would
PREPARE stmt FROM
CONCAT('INSERT INTO ', tbl, -- tbl is concatenated here
       ' (MEMBERID,SOURCE,MOBILE,SMPPID,PRIORITY,SMSID
        ,SMSCONTENTTYPE,MESSAGE,REQUESTDATETIME,DR_GROUPID,dr_service_type,
        dr_celleb_msg_id,dr_submit_date,dr_done_date,dr_stat,dr_err,dr_smppid)
        SELECT memberid,SenderID,MSISDN,SMPPID,?,alertID,?,Message,
        updatetime,?,?,?,DATE_FORMAT(InTime,?),
        DATE_FORMAT(updatetime,?),?,
        ?,?
        FROM tbl_intofone_alert_transaction WHERE alertID=msgID;');

EXECUTE stmt USING '1', 'TXT', '0', 'PIN', '0', 'ymdHis', 'ymdHis', 'DELIVRD','000', '03';

这样的事情可以解决问题,More info here

另一种解决方法,仍然使用预准备语句,可能会删除占位符:

CONCAT('INSERT INTO ', tbl,
       ' (MEMBERID,SOURCE,MOBILE,SMPPID,PRIORITY,SMSID
           ,SMSCONTENTTYPE,MESSAGE,REQUESTDATETIME,DR_GROUPID,dr_service_type,
          dr_celleb_msg_id,dr_submit_date,dr_done_date,dr_stat,dr_err,dr_smppid)
          SELECT memberid,SenderID,MSISDN,SMPPID,\'1\',alertID,\'TXT\',Message,
          updatetime,\'0\',\'PIN\',\'0\',DATE_FORMAT(InTime,\'ymdHis\'),
         DATE_FORMAT(updatetime,\'ymdHis\'),\'DELIVRD\',
        \'000\',\'03\' FROM tbl_intofone_alert_transaction WHERE alertID=msgID');

只是转义引号,或使用双引号分隔连接字符串。
不确定DATE_FORMAT格式,但是......不应该是'%Y%d%m'

相关问题
最新问题