Windows LiveWindows Live
 
 
Damian's profileDamo's spot on the webPhotosBlogLists Tools Help

Blog
    June 07

    Updated: Oracle, .NET & Bind Variables

    If you use Oracle as the database for your .NET applications then you must use bind variables in your SQL queries, I repeat YOU MUST USE BIND VARIABLES! The performance benefits of using bind variables are HUGE and cannot be underestimated.
     
    So instead of doing this:  
    string sql = "select * from SOME_TABLE where ID = " + id.ToString();
    OracleCommand cmd = new OracleCommand(sql, _conn);
    OracleDataReader rdr = cmd.ExecuteReader();
    Do this:
    string sql = "select * from SOME_TABLE where ID = :p_id";
    OracleCommand cmd = new OracleCommand(sql, _conn);
    cmd.Parameters.Add("p_id", OracleDbType.Decimal, Convert.ToDecimal(id), ParameterDirection.Input);
    OracleDataReader rdr = cmd.ExecuteReader(); 
    The project I'm currently working on is a new release of an internally developed app I worked on 2 years ago. It was our first .NET on Oracle project and we didn't know of the many benefits of using bind variables in our SQL & DML statements. I have spent the last few days refactoring as much of the DAL code as I can to use bind variables and the effects on performance are astonishing. My understanding of the reasons is limited but basically if you use bind variables to pass in variable values to your queries, the Oracle SQL parsing engine can re-use much of the work it does when executing the queries when the values of the variables change. Plainly put, the query never changes, only the values do, and this means that execution plans can be re-used, etc. An added bonus is that it effectively paramaterises your queries, making them immune to SQL injection attacks.
     
    I found a handy article today in relation to using bind variable to pass a list of values to a SQL IN statement. I've implemented the suggested pattern and it works a treat! Just note that you'll have to read a fair way down the page to get to the example code that relates to the more recent versions of Oracle (9 & above). Just search the page for "Delimiter  December 29, 2004" to find it.
     
    Update: Found another great getting started article today on bind variables on OTN at http://www.oracle.com/technology/oramag/oracle/05-sep/o55odpnet.html. Check it out.
    4:57 PM | Blog it | Development

    Comments

    Please wait...
    Sorry, the comment you entered is too long. Please shorten it.
    You didn't enter anything. Please try again.
    Sorry, we can't add your comment right now. Please try again later.
    To add a comment, you need permission from your parent. Ask for permission
    Your parent has turned off comments.
    Sorry, we can't delete your comment right now. Please try again later.
    You've exceeded the maximum number of comments that can be left in one day. Please try again in 24 hours.
    Your account has had the ability to leave comments disabled because our systems indicate that you may be spamming other users. If you believe that your account has been disabled in error please contact Windows Live support.
    Complete the security check below to finish leaving your comment.
    The characters you type in the security check must match the characters in the picture or audio.
    Damian Edwards has turned off comments on this page.

    Trackbacks

    The trackback URL for this entry is:
    http://damianpedwards.spaces.live.com/blog/cns!A079DE667E1958B3!354.trak
    Weblogs that reference this entry
    • None