字符串'BDR_POST-BI(SCT')后的未闭合引号

问题描述 投票:0回答:3

我有以前可以顺利运行的存储过程。但是现在当我尝试运行它时,在字符串'BDR_POST-BI(SCT'。消息102,等级15,状态1,行)之后,向我发送错误“消息105,等级15,状态1,行84未封闭的引号84'BDR_POST-BI(SCT'。“)附近的语法不正确。顺便说一句,这是我的商店程序

USE [dbbib]
GO
/****** Object:  StoredProcedure [dbo].[sp_QuerySummary]    Script Date: 10/4/2018 4:13:57 PM ******/
SET ANSI_NULLS ON
GO
SET QUOTED_IDENTIFIER ON
GO

-- =============================================
-- Author:		<Author,,Name>
-- Create date: <Create Date,,>
-- Description:	<Description,,>
-- =============================================
ALTER PROCEDURE [dbo].[sp_QuerySummary]
AS
BEGIN
DECLARE @columns VARCHAR(8000)

SELECT @columns = COALESCE(@columns + ',[' + cast(FailureMode as varchar) + ']',
'[' + cast(FailureMode as varchar)+ ']')
FROM (SELECT    distinct    FailureMode FROM tblBIB )as s
GROUP BY FailureMode
order by FailureMode

DECLARE @columns2 VARCHAR(8000)

SELECT @columns2 = COALESCE(@columns2 + ',isnull([' + cast(FailureMode as varchar) + '],0) as ['+ cast(FailureMode as varchar) +']',
'isnull([' + cast(FailureMode as varchar)+ '],0) as ['+ cast(FailureMode as varchar)+']')
FROM (SELECT    distinct    FailureMode FROM tblBIB )as s
GROUP BY FailureMode
order by FailureMode

DECLARE @columns3 VARCHAR(8000)

SELECT @columns3 = COALESCE(@columns3 + '+isnull([' + cast(FailureMode as varchar) + '],0)',
'isnull([' + cast(FailureMode as varchar)+ '],0)')
FROM (SELECT    distinct    FailureMode FROM tblBIB where FailureMode not like 'QUARANTINE' and FailureMode not like 'BARE' and FailureMode not like 'PM' and FailureMode not like 'TEMPORARY HOLD_SET B')as s
GROUP BY FailureMode
order by FailureMode

DECLARE @query VARCHAR(8000)

SET @query = '

declare @table table (BibType nvarchar(100), CntActive int)

insert into @table
select BibType,count(BibID) as CntActive from(
select substring(BibID,1,6) as BibType, BibID from(
select * ,
case
when len(BibID)>1   and len(BIBRecall)>1 then 1
when len(BibID)=1   and len(BIBRecall)>1 then 1
else 0
end as selection
from(
SELECT        isnull(a.BibID,0) as BibID, isnull(tblBIB.BIBRecall,0)as BIBRecall
FROM            (SELECT DISTINCT BibID
                          FROM            Orca.dbo.tblLatestTurnAllBIB
                          WHERE        (CONVERT(date, DTDone) = CONVERT(date, GETDATE()))) AS a full outer JOIN
                         tblBIB ON a.BibID = tblBIB.BIBRecall
)as s
)as s where selection=0
)as q group by BibType



declare @table2 table ( CntActive int, rn int)

insert into @table2
select count(BibID) as CntActive ,0 as rn from(
select substring(BibID,1,6) as BibType, BibID from(
select * ,
case
when len(BibID)>1   and len(BIBRecall)>1 then 1
when len(BibID)=1   and len(BIBRecall)>1 then 1
else 0
end as selection
from(
SELECT    isnull(a.BibID,0) as BibID, isnull(tblBIB.BIBRecall,0)as BIBRecall
FROM            (SELECT DISTINCT BibID
                          FROM            Orca.dbo.tblLatestTurnAllBIB
                          WHERE        (CONVERT(date, DTDone) = CONVERT(date, GETDATE()))) AS a full outer JOIN
                         tblBIB ON a.BibID = tblBIB.BIBRecall
)as s
)as s where selection=0
)as q 


select*,row_number()over(order by total desc) as rn from(
SELECT Device,DeviceType,'+ @columns3 +' as Total,isnull(q.CntActive,0) as CntActive,'+ @columns2 +',q.BibType
FROM (SELECT        a.DeviceType, tbldevtypev2.Device, a.Cnt, a.FailureMode
FROM            (SELECT        DeviceType, COUNT(BIBRecall) AS Cnt, FailureMode
                          FROM            tblBIB
                          GROUP BY DeviceType, FailureMode) AS a left outer JOIN
                         tbldevtypev2 ON a.DeviceType = tbldevtypev2.[BIB Type]
)as a
PIVOT
(
MAX(Cnt)
FOR [FailureMode]
IN (' + @columns + ')
)
AS a left outer  join @table q on a.DeviceType = q.BibType
)as p 


union  all


SELECT ''Grand Total'' as Device,'''' as DeviceType,'+@columns3+' as Total,*,'''' as BibType  from(
Select isnull(i.CntActive,0) as CntActive,o.* from(
SELECT '+@columns2+',0 as rn
FROM (
SELECT        COUNT(BIBRecall) AS Cnt, FailureMode
                          FROM            tblBIB
						  
                          GROUP BY  FailureMode 
)as a
PIVOT
(
MAX(Cnt)
FOR [FailureMode]
IN (' + @columns + ')
)
AS p
)as o full outer join @table2 i on o.rn= i.rn
)as p

'

EXECUTE(@query)
END
sql-server vb.net
3个回答
1
投票

将数据插入数据库时​​,请考虑使用SQL parameters来避免SQL injection

cmd.Parameters.Add("@line", SqlDbType.VarChar).Value = line

我也会考虑实施Using

有时您的代码需要非托管资源,例如文件句柄,COM包装器或SQL连接。使用块可确保在代码完成后处理一个或多个此类资源。这使它们可供其他代码使用。

Using con As New SqlConnection(str),
      cmd As New SqlCommand("INSERT INTO table2 ([a], [roll], [c]) VALUES (1, 2, @line)", con)

    cmd.Parameters.Add("@line", SqlDbType.VarChar).Value = line

    con.Open()

    cmd.ExecuteNonQuery()
  End Using

我还会考虑在Using语句中循环遍历文件,以便一次又一次地保存创建SQL对象:

Using con As New SqlConnection(str),
      cmd As New SqlCommand("INSERT INTO table2 ([a], [roll], [c]) VALUES (1, 2, @line)", con)
    cmd.Parameters.Add("@line", SqlDbType.VarChar)

    con.Open()

        Using sr As New StreamReader(path)
            Do While sr.Peek() >= 0
                cmd.Parameters("@line").Value = sr.ReadLine
                cmd.ExecuteNonQuery()
            Loop
        End Using
    End Using
End Sub

这段代码未经测试,我没有环境,但它应该给你一些工作。

0
投票

线的价值是多少?

尝试

cmd = New SqlCommand("insert into table2 ([a], [roll],[c]) values (1, 2, '''" & line & "''')", con)
0
投票

绝对使用参数。检查数据库以获取正确的'SqlDbType'

Dim cmd As New SqlCommand(("insert into table2 ([a], [roll],[c]) values (1, 2, @line);", con))
cmd.Parameters.Add("@line", SqlDbType.VarChar).Value = line
最新问题
© www.soinside.com 2019 - 2024. All rights reserved.