database.mysqli.inc

  1. drupal
    1. 4.7 includes/database.mysqli.inc
    2. 5 includes/database.mysqli.inc
    3. 6 includes/database.mysqli.inc

Database interface code for MySQL database servers using the mysqli client libraries. mysqli is included in PHP 5 by default and allows developers to use the advanced features of MySQL 4.1.x, 5.0.x and beyond.

Functions & methods

NameDescription
db_affected_rowsDetermine the number of rows changed by the preceding query.
db_connectInitialise a database connection.
db_decode_blobReturns text from a Binary Large OBject value.
db_distinct_fieldWraps the given table.field entry with a DISTINCT(). The wrapper is added to the SELECT list entry of the given query and the resulting query is returned. This function only applies the wrapper if a DISTINCT doesn't already exist in the query.
db_encode_blobReturns a properly formatted Binary Large Object value.
db_errorDetermine whether the previous query caused an error.
db_escape_stringPrepare user input for use in a database query, preventing SQL injection attacks.
db_fetch_arrayFetch one result row from the previous query as an array.
db_fetch_objectFetch one result row from the previous query as an object.
db_lock_tableLock a table.
db_next_idReturn a new unique ID in the given sequence.
db_num_rowsDetermine how many result rows were found by the preceding query.
db_query_rangeRuns a limited-range query in the active database.
db_query_temporaryRuns a SELECT query and stores its results in a temporary table.
db_resultReturn an individual result field from the previous query. *
db_unlock_tablesUnlock all locked tables.
_db_queryHelper function for db_query().

File

includes/database.mysqli.inc
View source
  1. <?php

  2. 

  3. /**

  4.  * @file

  5.  * Database interface code for MySQL database servers using the mysqli client libraries. mysqli is included in PHP 5 by default and allows developers to use the advanced features of MySQL 4.1.x, 5.0.x and beyond.

  6.  */

  7. 

  8. /* Maintainers of this file should consult

  9.  * http://www.php.net/manual/en/ref.mysqli.php

  10.  */

  11. 

  12. /**

  13.  * @ingroup database

  14.  * @{

  15.  */

  16. 

  17. /**

  18.  * Initialise a database connection.

  19.  *

  20.  * Note that mysqli does not support persistent connections.

  21.  */

  22. function db_connect($url) {

  23.   // Check if MySQLi support is present in PHP

  24.   if (!function_exists('mysqli_init') && !extension_loaded('mysqli')) {

  25.     drupal_maintenance_theme();

  26.     drupal_set_title('PHP MySQLi support not enabled');

  27.     print theme('maintenance_page', '<p>We were unable to use the MySQLi database because the MySQLi extension for PHP is not installed. Check your <code>PHP.ini</code> to see how you can enable it.</p>

  28. <p>For more help, see the <a href="http://drupal.org/node/258">Installation and upgrading handbook</a>. If you are unsure what these terms mean you should probably contact your hosting provider.</p>');

  29.     exit;

  30.   }

  31. 

  32.   $url = parse_url($url);

  33. 

  34.   // Decode url-encoded information in the db connection string

  35.   $url['user'] = urldecode($url['user']);

  36.   $url['pass'] = urldecode($url['pass']);

  37.   $url['host'] = urldecode($url['host']);

  38.   $url['path'] = urldecode($url['path']);

  39. 

  40.   $connection = mysqli_init();

  41.   @mysqli_real_connect($connection, $url['host'], $url['user'], $url['pass'], substr($url['path'], 1), $url['port'], NULL, MYSQLI_CLIENT_FOUND_ROWS);

  42. 

  43.   // Find all database connection errors and error 1045 for access denied for user account

  44.   if (mysqli_connect_errno() >= 2000 || mysqli_connect_errno() == 1045) {

  45.     drupal_maintenance_theme();

  46.     drupal_set_header('HTTP/1.1 503 Service Unavailable');

  47.     drupal_set_title('Unable to connect to database server');

  48.     print theme('maintenance_page', '<p>This either means that the username and password information in your <code>settings.php</code> file is incorrect or we can\'t contact the MySQL database server through the mysqli libraries. This could also mean your hosting provider\'s database server is down.</p>

  49. <p>The MySQL error was: '. theme('placeholder', mysqli_error($connection)) .'.</p>

  50. <p>Currently, the username is '. theme('placeholder', $url['user']) .' and the database server is '. theme('placeholder', $url['host']) .'.</p>

  51. <ul>

  52.   <li>Are you sure you have the correct username and password?</li>

  53.   <li>Are you sure that you have typed the correct hostname?</li>

  54.   <li>Are you sure that the database server is running?</li>

  55.   <li>Are you sure that the mysqli libraries are compiled in your PHP installation? Try using the mysql library instead by editing your <code>settings.php</code> configuration file in Drupal.</li>

  56. </ul>

  57. <p>For more help, see the <a href="http://drupal.org/node/258">Installation and upgrading handbook</a>. If you are unsure what these terms mean you should probably contact your hosting provider.</p>');

  58.     exit;

  59.   }

  60.   else if (mysqli_connect_errno() > 0) {

  61.     drupal_maintenance_theme();

  62.     drupal_set_title('Unable to select database');

  63.     print theme('maintenance_page', '<p>We were able to connect to the MySQL database server (which means your username and password are okay) but not able to select the database.</p>

  64. <p>The MySQL error was: '. theme('placeholder', mysqli_error($connection)) .'.</p>

  65. <p>Currently, the database is '. theme('placeholder', substr($url['path'], 1)) .'. The username is '. theme('placeholder', $url['user']) .' and the database server is '. theme('placeholder', $url['host']) .'.</p>

  66. <ul>

  67.   <li>Are you sure you have the correct database name?</li>

  68.   <li>Are you sure the database exists?</li>

  69.   <li>Are you sure the username has permission to access the database?</li>

  70. </ul>

  71. <p>For more help, see the <a href="http://drupal.org/node/258">Installation and upgrading handbook</a>. If you are unsure what these terms mean you should probably contact your hosting provider.</p>');

  72.     exit;

  73.   }

  74. 

  75.   /* Force UTF-8 */

  76.   mysqli_query($connection, 'SET NAMES "utf8"');

  77. 

  78.   return $connection;

  79. }

  80. 

  81. /**

  82.  * Helper function for db_query().

  83.  */

  84. function _db_query($query, $debug = 0) {

  85.   global $active_db, $queries;

  86. 

  87.   if (variable_get('dev_query', 0)) {

  88.     list($usec, $sec) = explode(' ', microtime());

  89.     $timer = (float)$usec + (float)$sec;

  90.   }

  91. 

  92.   $result = mysqli_query($active_db, $query);

  93. 

  94.   if (variable_get('dev_query', 0)) {

  95.     $bt = debug_backtrace();

  96.     $query = $bt[2]['function'] . "\n" . $query;

  97.     list($usec, $sec) = explode(' ', microtime());

  98.     $stop = (float)$usec + (float)$sec;

  99.     $diff = $stop - $timer;

  100.     $queries[] = array($query, $diff);

  101.   }

  102. 

  103.   if ($debug) {

  104.     print '<p>query: '. $query .'<br />error:'. mysqli_error($active_db) .'</p>';

  105.   }

  106. 

  107.   if (!mysqli_errno($active_db)) {

  108.     return $result;

  109.   }

  110.   else {

  111.     trigger_error(check_plain(mysqli_error($active_db) ."\nquery: ". $query), E_USER_WARNING);

  112.     return FALSE;

  113.   }

  114. }

  115. 

  116. /**

  117.  * Fetch one result row from the previous query as an object.

  118.  *

  119.  * @param $result

  120.  *   A database query result resource, as returned from db_query().

  121.  * @return

  122.  *   An object representing the next row of the result. The attributes of this

  123.  *   object are the table fields selected by the query.

  124.  */

  125. function db_fetch_object($result) {

  126.   if ($result) {

  127.     return mysqli_fetch_object($result);

  128.   }

  129. }

  130. 

  131. /**

  132.  * Fetch one result row from the previous query as an array.

  133.  *

  134.  * @param $result

  135.  *   A database query result resource, as returned from db_query().

  136.  * @return

  137.  *   An associative array representing the next row of the result. The keys of

  138.  *   this object are the names of the table fields selected by the query, and

  139.  *   the values are the field values for this result row.

  140.  */

  141. function db_fetch_array($result) {

  142.   if ($result) {

  143.     return mysqli_fetch_array($result, MYSQLI_ASSOC);

  144.   }

  145. }

  146. 

  147. /**

  148.  * Determine how many result rows were found by the preceding query.

  149.  *

  150.  * @param $result

  151.  *   A database query result resource, as returned from db_query().

  152.  * @return

  153.  *   The number of result rows.

  154.  */

  155. function db_num_rows($result) {

  156.   if ($result) {

  157.     return mysqli_num_rows($result);

  158.   }

  159. }

  160. 

  161. /**

  162. * Return an individual result field from the previous query.

  163. *

  164. * Only use this function if exactly one field is being selected; otherwise,

  165. * use db_fetch_object() or db_fetch_array().

  166. *

  167. * @param $result

  168. *   A database query result resource, as returned from db_query().

  169. * @param $row

  170. *   The index of the row whose result is needed.

  171. * @return

  172. *   The resulting field.

  173. */

  174. function db_result($result, $row = 0) {

  175.   if ($result && mysqli_num_rows($result) > $row) {

  176.     $array = mysqli_fetch_array($result, MYSQLI_NUM);

  177.     return $array[0];

  178.   }

  179. }

  180. 

  181. /**

  182.  * Determine whether the previous query caused an error.

  183.  */

  184. function db_error() {

  185.   global $active_db;

  186.   return mysqli_errno($active_db);

  187. }

  188. 

  189. /**

  190.  * Return a new unique ID in the given sequence.

  191.  *

  192.  * For compatibility reasons, Drupal does not use auto-numbered fields in its

  193.  * database tables. Instead, this function is used to return a new unique ID

  194.  * of the type requested. If necessary, a new sequence with the given name

  195.  * will be created.

  196.  */

  197. function db_next_id($name) {

  198.   $name = db_prefix_tables($name);

  199.   db_query('LOCK TABLES {sequences} WRITE');

  200.   $id = db_result(db_query("SELECT id FROM {sequences} WHERE name = '%s'", $name)) + 1;

  201.   db_query("REPLACE INTO {sequences} VALUES ('%s', %d)", $name, $id);

  202.   db_query('UNLOCK TABLES');

  203. 

  204.   return $id;

  205. }

  206. 

  207. /**

  208.  * Determine the number of rows changed by the preceding query.

  209.  */

  210. function db_affected_rows() {

  211.   global $active_db; /* mysqli connection resource */

  212.   return mysqli_affected_rows($active_db);

  213. }

  214. 

  215. /**

  216.  * Runs a limited-range query in the active database.

  217.  *

  218.  * Use this as a substitute for db_query() when a subset of the query is to be

  219.  * returned.

  220.  * User-supplied arguments to the query should be passed in as separate parameters

  221.  * so that they can be properly escaped to avoid SQL injection attacks.

  222.  *

  223.  * @param $query

  224.  *   A string containing an SQL query.

  225.  * @param ...

  226.  *   A variable number of arguments which are substituted into the query

  227.  *   using printf() syntax. The query arguments can be enclosed in one

  228.  *   array instead.

  229.  *   Valid %-modifiers are: %s, %d, %f, %b (binary data, do not enclose

  230.  *   in '') and %%.

  231.  *

  232.  *   NOTE: using this syntax will cast NULL and FALSE values to decimal 0,

  233.  *   and TRUE values to decimal 1.

  234.  *

  235.  * @param $from

  236.  *   The first result row to return.

  237.  * @param $count

  238.  *   The maximum number of result rows to return.

  239.  * @return

  240.  *   A database query result resource, or FALSE if the query was not executed

  241.  *   correctly.

  242.  */

  243. function db_query_range($query) {

  244.   $args = func_get_args();

  245.   $count = array_pop($args);

  246.   $from = array_pop($args);

  247.   array_shift($args);

  248. 

  249.   $query = db_prefix_tables($query);

  250.   if (isset($args[0]) and is_array($args[0])) { // 'All arguments in one array' syntax

  251.     $args = $args[0];

  252.   }

  253.   _db_query_callback($args, TRUE);

  254.   $query = preg_replace_callback(DB_QUERY_REGEXP, '_db_query_callback', $query);

  255.   $query .= ' LIMIT '. (int)$from .', '. (int)$count;

  256.   return _db_query($query);

  257. }

  258. 

  259. /**

  260.  * Runs a SELECT query and stores its results in a temporary table.

  261.  *

  262.  * Use this as a substitute for db_query() when the results need to stored

  263.  * in a temporary table. Temporary tables exist for the duration of the page

  264.  * request.

  265.  * User-supplied arguments to the query should be passed in as separate parameters

  266.  * so that they can be properly escaped to avoid SQL injection attacks.

  267.  *

  268.  * Note that if you need to know how many results were returned, you should do

  269.  * a SELECT COUNT(*) on the temporary table afterwards. db_num_rows() and

  270.  * db_affected_rows() do not give consistent result across different database

  271.  * types in this case.

  272.  *

  273.  * @param $query

  274.  *   A string containing a normal SELECT SQL query.

  275.  * @param ...

  276.  *   A variable number of arguments which are substituted into the query

  277.  *   using printf() syntax. The query arguments can be enclosed in one

  278.  *   array instead.

  279.  *   Valid %-modifiers are: %s, %d, %f, %b (binary data, do not enclose

  280.  *   in '') and %%.

  281.  *

  282.  *   NOTE: using this syntax will cast NULL and FALSE values to decimal 0,

  283.  *   and TRUE values to decimal 1.

  284.  *

  285.  * @param $table

  286.  *   The name of the temporary table to select into. This name will not be

  287.  *   prefixed as there is no risk of collision.

  288.  * @return

  289.  *   A database query result resource, or FALSE if the query was not executed

  290.  *   correctly.

  291.  */

  292. function db_query_temporary($query) {

  293.   $args = func_get_args();

  294.   $tablename = array_pop($args);

  295.   array_shift($args);

  296. 

  297.   $query = preg_replace('/^SELECT/i', 'CREATE TEMPORARY TABLE '. $tablename .' SELECT', db_prefix_tables($query));

  298.   if (isset($args[0]) and is_array($args[0])) { // 'All arguments in one array' syntax

  299.     $args = $args[0];

  300.   }

  301.   _db_query_callback($args, TRUE);

  302.   $query = preg_replace_callback(DB_QUERY_REGEXP, '_db_query_callback', $query);

  303.   return _db_query($query);

  304. }

  305. 

  306. /**

  307.  * Returns a properly formatted Binary Large Object value.

  308.  *

  309.  * @param $data

  310.  *   Data to encode.

  311.  * @return

  312.  *  Encoded data.

  313.  */

  314. function db_encode_blob($data) {

  315.   global $active_db;

  316.   return "'" . mysqli_real_escape_string($active_db, $data) . "'";

  317. }

  318. 

  319. /**

  320.  * Returns text from a Binary Large OBject value.

  321.  *

  322.  * @param $data

  323.  *   Data to decode.

  324.  * @return

  325.  *  Decoded data.

  326.  */

  327. function db_decode_blob($data) {

  328.   return $data;

  329. }

  330. 

  331. /**

  332.  * Prepare user input for use in a database query, preventing SQL injection attacks.

  333.  */

  334. function db_escape_string($text) {

  335.   global $active_db;

  336.   return mysqli_real_escape_string($active_db, $text);

  337. }

  338. 

  339. /**

  340.  * Lock a table.

  341.  */

  342. function db_lock_table($table) {

  343.   db_query('LOCK TABLES {'. db_escape_table($table) .'} WRITE');

  344. }

  345. 

  346. /**

  347.  * Unlock all locked tables.

  348.  */

  349. function db_unlock_tables() {

  350.   db_query('UNLOCK TABLES');

  351. }

  352. 

  353. /**

  354.  * Wraps the given table.field entry with a DISTINCT(). The wrapper is added to

  355.  * the SELECT list entry of the given query and the resulting query is returned.

  356.  * This function only applies the wrapper if a DISTINCT doesn't already exist in

  357.  * the query.

  358.  *

  359.  * @param $table Table containing the field to set as DISTINCT

  360.  * @param $field Field to set as DISTINCT

  361.  * @param $query Query to apply the wrapper to

  362.  * @return SQL query with the DISTINCT wrapper surrounding the given table.field.

  363.  */

  364. function db_distinct_field($table, $field, $query) {

  365.   $field_to_select = 'DISTINCT('. $table .'.'. $field .')';

  366.   // (?<!text) is a negative look-behind (no need to rewrite queries that already use DISTINCT).

  367.   return preg_replace('/(SELECT.*)('. $table .'\.)?(?<!DISTINCT\()(?<!DISTINCT\('. $table .'\.)'. $field .'(.*FROM )/AUsi', '\1'. $field_to_select .'\3', $query);

  368. }

  369. 

  370. /**

  371.  * @} End of "ingroup database".

  372.  */

  373. 

  374.
Login or register to post comments