Bug #40031 | CallableStatement.execute() should allow CALL on read-only procedures | ||
---|---|---|---|
Submitted: | 15 Oct 2008 0:09 | Modified: | 16 Oct 2008 14:43 |
Reporter: | Todd Farmer (OCA) | Email Updates: | |
Status: | Closed | Impact on me: | |
Category: | Connector / J | Severity: | S4 (Feature request) |
Version: | 5.1.7 | OS: | Any |
Assigned to: | Todd Farmer | CPU Architecture: | Any |
[15 Oct 2008 0:09]
Todd Farmer
[15 Oct 2008 0:10]
Todd Farmer
test case
Attachment: ReadOnlyCallableStatementTest.java (application/octet-stream, text), 2.42 KiB.
[15 Oct 2008 5:33]
Todd Farmer
http://lists.mysql.com/commits/56227
[16 Oct 2008 14:43]
Tony Bedford
An entry was added to the 5.1.7 changelog: When using the replication driver with autoReconnect=true, Connector/J checks in PreparedStatement.execute (also called by CallableStatement.execute) to determine if the first character of the statement is an āSā, in an attempt to block all statements that are not read-only-safe, for example non-SELECT statements. However, this also blocked CALLs to stored procedures, even if the stored procedures were defined as SQL READ DATA or NO SQL.