我刚刚将所有 sql 查询更改为使用 mysqli 准备好的语句。为了加快这个过程,我创建了一个函数(称为
performQuerymysql_querymysqli_resultget_result()这意味着我可以更改我的旧代码:
$query = "SELECT x FROM y WHERE z = $var";
$result = mysql_query($query);
while ($row = mysql_fetch_assoc($result)){
echo $row['x'];
}
到
$query = "SELECT x FROM y WHERE z = ?";
$result = performQuery($query,"s",$var);
while ($row = mysql_fetch_assoc($result)){
echo $row['x'];
}
这在本地主机上工作正常,但我的网络托管服务器没有可用的 mysqlnd,因此
get_result()离开这里的最佳方式是什么?我可以创建一个替换
get_result()这是一个更简洁的解决方案,基于与 lx 答案相同的原理:
function get_result(mysqli_stmt $Statement): array
{
$RESULT = array();
$Statement->store_result();
$Metadata = $Statement->result_metadata();
for ($i = 0; $i < $Statement->num_rows; $i++) {
$PARAMS = array();
while ($Field = $Metadata->fetch_field()) {
$PARAMS[] = &$RESULT[$i][$Field->name];
}
$Statement->bind_result(...$PARAMS);
$Statement->fetch();
}
return $RESULT;
}
使用mysqlnd你通常会这样做:
$Statement = $Database->prepare( 'SELECT x FROM y WHERE z = ?' );
$Statement->bind_param( 's', $z );
$Statement->execute();
$Result = $Statement->get_result();
while ( $DATA = $Result->fetch_array() ) {
// Do stuff with the data
}
并且没有mysqlnd:
$Statement = $Database->prepare( 'SELECT x FROM y WHERE z = ?' );
$Statement->bind_param( 's', $z );
$Statement->execute();
$RESULT = get_result( $Statement );
while ( $DATA = array_shift( $RESULT ) ) {
// Do stuff with the data
}
所以用法和语法几乎相同。主要区别在于替换函数返回结果数组,而不是结果对象。
我遇到了同样的问题并使用答案中提供的代码解决了它 mysqli::get_result 有什么问题吗?
我的函数现在看起来像这样(为了清楚起见,删除了错误处理):
function db_bind_array($stmt, &$row)
{
$md = $stmt->result_metadata();
$params = array();
while($field = $md->fetch_field()) {
$params[] = &$row[$field->name];
}
return call_user_func_array(array($stmt, 'bind_result'), $params);
}
function db_query($db, $query, $types, $params)
{
$ret = FALSE;
$stmt = $db->prepare($query);
call_user_func_array(array($stmt,'bind_param'),
array_merge(array($types), $params));
$stmt->execute();
$result = array();
if (db_bind_array($stmt, $result) !== FALSE) {
$ret = array($stmt, $result);
}
$stmt->close();
return $ret;
}
这样使用:
$userId = $_GET['uid'];
$sql = 'SELECT name, mail FROM users WHERE user_id = ?';
if (($qryRes = db_query($db, $sql, 'd', array(&$userId))) !== FALSE) {
$stmt = $qryRes[0];
$row = $qryRes[1];
while ($stmt->fetch()) {
echo '<p>Name: '.$row['name'].'<br>'
.'Mail: '.$row['mail'].'</p>';
}
$stmt->close();
}
我发现 mysqli_stmt::get_result 的 API 文档页面上的匿名建议 作为注释发布非常有用(我想不出比 eval 技巧更好的方法),因为我们经常想要 fetch_array( )关于我们的结果。但是,因为我想满足通用数据库对象的需求,所以我发现了一个问题,即代码假定数字数组适用于所有调用站点,并且我需要专门使用关联数组来满足所有调用者的需求。我想出了这个:
class IImysqli_result {
public $stmt, $ncols;
}
class DBObject {
function iimysqli_get_result($stmt) {
$metadata = $stmt->result_metadata();
$ret = new IImysqli_result;
if (!$ret || !$metadata) return NULL; //the latter because this gets called whether we are adding/updating as well as returning
$ret->ncols = $metadata->field_count;
$ret->stmt = $stmt;
$metadata->free_result();
return $ret;
}
//this mimics mysqli_fetch_array by returning a new row each time until exhausted
function iimysqli_result_fetch_array(&$result) {
$stmt = $result->stmt;
$stmt->store_result();
$resultkeys = array();
$thisName = "";
for ( $i = 0; $i < $stmt->num_rows; $i++ ) {
$metadata = $stmt->result_metadata();
while ( $field = $metadata->fetch_field() ) {
$thisName = $field->name;
$resultkeys[] = $thisName;
}
}
$ret = array();
$code = "return mysqli_stmt_bind_result(\$result->stmt ";
for ($i=0; $i<$result->ncols; $i++) {
$ret[$i] = NULL;
$theValue = $resultkeys[$i];
$code .= ", \$ret['$theValue']";
}
$code .= ");";
if (!eval($code)) {
return NULL;
}
// This should advance the "$stmt" cursor.
if (!mysqli_stmt_fetch($result->stmt)) {
return NULL;
}
// Return the array we built.
return $ret;
}
}