Description:
I was trying to do a single-query median statement using subselects, as in:

SELECT year(now())-birth_year 
FROM customers 
WHERE birth_year is not null 
ORDER BY birth_year 
LIMIT truncate(select count(*)/2 from customers where birth_year is not null),1

Unfortunately, it appears that no expressions, including subselects, can be used as LIMIT clause parameters.

How to repeat:
Try using an expression as a limit parameter.

Suggested fix:
Allow expressions.

Please see: http://dev.mysql.com/doc/mysql/en/SELECT.html

where you should find that the LIMIT clause can takes 2 arguments
and must be integers constants.

Thank you for the bug report

So? Why should it be limited to integer constants? The fact that it's written up that way doesn't make it the correct, or most useful, behaviour.

While it make be useful to have expressions in LIMIT, inability to do so is not a bug. I'm chaning this into a feature request

Thank you for a valid feature request.

See also Bug#8094 Variables in the LIMIT Clause

Unless I am looking at this wrong, it seems as if the prepared statement approach could create a serious security hole in an application.  In conventional  stored procedures, everything is compiled so a user should not be able to perform basic sql injection attacks.  In the prepared statement approach, a user could pass in anything that may slip past the data validation.

Set bug #33856 as duplicate of this bug here.

I really hope you do this soon, though the quickest way would be to allow a variable in the limit clause: http://bugs.mysql.com/bug.php?id=8094 and then you could do the expression before and asign it to the variable.

Please add this. Not having this leads to horrible code in stored procedures.

Bug http://bugs.mysql.com/bug.php?id=41479 marked as duplicate of this one.

Bug #27184 was marked as a duplicate of this one.