{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 乱世女痞 的问题《PHP/mysqli: Inserting IP address with mysqli_stmt_》','https://www.manongdao.com/q-863780.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I have a database table which contains an unsigned integer field to store the visitor's IP address:
`user_ip` INT(10) UNSIGNED DEFAULT NULL,
Here's the snippet of PHP code which tries to store the IP address:
$ipaddr = $_SERVER['REMOTE_ADDR'];
if ($stmt = mysqli_prepare($dbconn, 'INSERT INTO visitors(user_email, user_ip) VALUES (?,?)'))
{
$remote_ip = "INET_ATON('$ipaddr')";
mysqli_stmt_bind_param($stmt, 'ss', $email, $remote_ip);
if (mysqli_stmt_execute($stmt) === FALSE) return FALSE;
$rows_affected = mysqli_stmt_affected_rows($stmt);
mysqli_stmt_close($stmt);
}
The INSERT operation succeeds, however the user_ip field contains a null value. I have also tried changing the parameter type in mysqli_stmt_bind_param() (which was set to string in the above example) to integer, i.e. mysqli_bind_param(... 'si',...) - but to no avail.
I've also tried using the following bit of code instead of mysql's INET_ATON() SQL function:
function IP_ATON($ipaddr)
{
$trio = intval(substr($ipaddr,0,3));
return ($trio>127) ? ((ip2long($ipaddr) & 0x7FFFFFFF) + 0x80000000) : ip2long($ipaddr);
}
It still doesn't work - the 'user_ip' field is still set to null. I've tried passing the $ip_addr variable as both integer & string in mysqli_bind_param() - to no avail.
It seems the problem lies with the parameterized insert.
The following "old-style" code works without any problem:
mysqli_query(..., "INSERT INTO visitors(user_email, user_ip) VALUES ('$email',INET_ATON('$ipaddr'))");
What am I doing wrong here?
Thanks in advance!
Bound SQL query parameters can be used only for a value, not an expression or a function call. So when you do this:
It binds the string "INET_ATON('value of $ipaddr')", not the result of a SQL function by that name. When a string value is inserted to an integer column, MySQL takes the numeric value of any leading digits, and in this case there are no leading digits. So the value 0 is inserted.
I would recommend you use PHP's built-in function
ip2long().Although
$remote_ipis now an integer, I've read that mysqli has trouble binding unsigned integers, so you should just use 's' as the type when you bind.Re your comment: You're right, because PHP doesn't support unsigned integers,
ip2long()will return a negative number if your IP address is 128.0.0.0 or greater. You can convert to a string representation of the unsigned integer withsprintf():I think it should look like this:
Note the change by the second ? and what parameters are sent into mysqli_stmt_bind_param.
Since the parameters you pass into mysqli_stmt_bind_param should be the actual values to be inserted, and not any functions.