ansaurus

Question

NPGSQL seems to have a rather large bug?

Answer 1

+2 A:

I'm no pg-sql expert, but I strongly suspect it's because you're adding a different parameter from the one you're using in the SQL statement. I think you're also using the wrong syntax to refer to a parameter. See the user manual for more information. Try this:

cmd.Connection = conn
cmd.CommandText = "select * FROM ac_profiles WHERE profileid = :profileid"
cmd.Parameters.Add("profileid", 58)
Dim dt As DataTable = DataAccess2.DataAccess.sqlQueryDb(cmd)

Jon Skeet 2010-05-19 10:37:47

Your correct, I just noticed that, however you can't use : in the latest version - you get ERROR: 42601: syntax error at or near ":"This looks like a very dangerious bug to me.

Mr Shoubs 2010-05-19 10:40:45

Forget the : or @, both work. the issue is the name, it is case sensative too.

Mr Shoubs 2010-05-19 10:48:29

The problem appears to be using @, this is bad - you should use :.If you get something wrong like a parameter name it will give you a syntax error when using :, however if you use @ then it won't and returns all rows, @ is also case sensative.

Mr Shoubs 2010-05-19 10:58:38

This is strange. Npgsql has code to provide parameter name case insensitivity. With Npgsql 2.0.9 if you enable logging you can see what Npgsql is sending to the server. Also, note that using Parameters.Add() is dangerous as the value of the parameter can be mistakenly by the DbType. In order to avoid that, MS created the AddWithValue method and we have this method also in NpgsqlParameterCollection. Check this change log of the class: http://cvs.pgfoundry.org/cgi-bin/cvsweb.cgi/npgsql/Npgsql2/src/Npgsql/NpgsqlParameterCollection.cs version 1.10 I hope it helps.

Francisco 2010-05-31 00:53:02

ansaurus

tags:

views:

answers:

NPGSQL seems to have a rather large bug?

related questions