Movatterモバイル変換

Documentation →PostgreSQL devel (2025-12-17 20:34:52 - git commitab8af1db430)

Supported Versions:Current (18) /17 /16 /15 /14

Development Versions:devel

Unsupported versions:13 /12 /11 /10 /9.6 /9.5 /9.4 /9.3 /9.2 /9.1 /9.0 /8.4

This documentation is for an unsupported version of PostgreSQL.
You may want to view the same page for thecurrent version, or one of the other supported versions listed above instead.

SPI_execute_with_args
Prev	Up	45.1. Interface Functions	Home	Next

SPI_execute_with_args

SPI_execute_with_args — execute a command with out-of-line parameters

Synopsis

int SPI_execute_with_args(const char *command,                          intnargs, Oid *argtypes,                          const Datum *values, const char *nulls,                          boolread_only, longcount)

Description

SPI_execute_with_args executes a command that might include references to externally supplied parameters. The command text refers to a parameter as$n, and the call specifies data types and values for each such symbol.read_only andcount have the same interpretation as inSPI_execute.

The main advantage of this routine compared toSPI_execute is that data values can be inserted into the command without tedious quoting/escaping, and thus with much less risk of SQL-injection attacks.

Similar results can be achieved withSPI_prepare followed bySPI_execute_plan; however, when using this function the query plan is always customized to the specific parameter values provided. For one-time query execution, this function should be preferred. If the same command is to be executed with many different parameters, either method might be faster, depending on the cost of re-planning versus the benefit of custom plans.