[Bug 488600] [NEW] MySQLi Prepared Statements Not Working Correctly With UPDATEs

Wed, 25 Nov 2009 22:10:50 -0800 

Public bug reported:

Binary package hint: php5-mysql

When using MySQLi and prepared statements, it seems as though some 
write-based queries (such as UPDATE) end up getting bad values. 
Specifically, items after a WHERE clause are getting values of 0 or 
things like \0\0 where they should be getting a proper ID (such as 
123).

This issue was encountered on Ubuntu 9.10 with PHP 5.2.10. This issue 
does not occur on Ubuntu 9.04 with PHP 5.2.6. Same version of MySQL. 
Same php.ini and my.cnf.

To reproduce:

1. Grab files from: http://www.moocowproductions.org/tmp/test_cases/
2. Run .SQL script through MySQL
3. Enable gereral query log in MySQL
3a. For MySQL 5.0, edit /etc/my.cnf and add 'log' and restart
3b. For MySQL 5.1, run "SET GLOBAL general_log=1"
4. Edit mysqli_bug.php and modify $dbPassword
5. Run mysqli_bug.php
6. Check General Log (See Expected and Actual results)

The expected output of the MySQL general log should be something like:

The MySQL general log should look like this:

                61649 Query     SET sql_mode='TRADITIONAL'
                61649 Query     set autocommit=0
                61649 Prepare   UPDATE t1 SET
        itemID = ? WHERE num1 = ?
                61649 Execute   UPDATE t1 SET
        itemID = 4 WHERE num1 = 5
                61649 Close stmt        
                61649 Query     commit
                61649 Quit

The actual result is:

The log, instead, looks like this:

                  124 Query     SET sql_mode='TRADITIONAL'
                  124 Query     set autocommit=0
                  124 Prepare   UPDATE t1 SET
        itemID = ? WHERE num1 = ?
                  124 Execute   UPDATE t1 SET
        itemID = 4 WHERE num1 = 0
                  124 Close stmt        
                  124 Query     commit
                  124 Quit

(Note that num1 = 0 and it should be 5)

So far, this only appears to be happening with UPDATE queries. SELECTs
do not have this problem, and neither do INSERTs. I did not run into an
issue with DELETEs, though I did not test this thoroughly.

** Affects: php5 (Ubuntu)
     Importance: Undecided
         Status: New

-- 
MySQLi Prepared Statements Not Working Correctly With UPDATEs
https://bugs.launchpad.net/bugs/488600
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to php5 in ubuntu.

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

Reply via email to