mysqli 语句和mysql语句一样吗,如何在PHP中使用mysqli准备的语句？

I am trying out prepared statements, but the below code is not working. I am getting the error:

Fatal error: Call to a member function execute() on a non-object in

/var/www/prepared.php on line 12

$mysqli = new mysqli("localhost", "root", "root", "test");

if ($mysqli->connect_errno) {

echo "Failed to connect to MySQL: " . $mysqli->connect_error;

}

$stmt = $mysqli->prepare("INSERT INTO users (name, age) VALUES (?,?)");

// insert one row

$stmt->execute(array('one',1));

// insert another row with different values

$stmt->execute(array('two',1));

?>

Also, do i need to use mysqli for prepared statements? Can anyone point me to a complete example on prepared statements from connection to insertion to selection with error handling?

解决方案

The parameter markers must be bound to application variables using mysqli_stmt_bind_param() and/or mysqli_stmt_bind_result() before executing the statement or fetching rows.

i.e.:

$name = 'one';

$age = 1;

$stmt = $mysqli->prepare("INSERT INTO users (name, age) VALUES (?,?)");

// bind parameters. I'm guessing 'string' & 'integer', but read documentation.

$stmt->bind_param('si', $name, $age);

// *now* we can execute

$stmt->execute();