MySQL REGEX with prepared statement: "?" being misunderstood

Asked Apr 06 '14 at 17:49

Active Apr 06 '14 at 22:06

Viewed 767 times

I've consulted this question for this problem, but couldn't seem to see the answer.

I have a prepared statement with a ? placeholder for a param I'm binding. Problem is, MySQL doesn't seem to like this because it's inside a REGEX block, like so:

$sql = 'SELECT id FROM teams WHERE name REGEXP "^(?)"';
$stmt = $db->prepare($sql);
$stmt->bind_param('s', implode('|', $letters));

This throws:

"Got error 'repetition-operator operand invalid' from regexp"

Is there a way of escaping the ? or something?

[EDIT]

Based on the comment below, I tried:

$sql = 'SELECT id FROM teams WHERE name REGEXP "^(:letters)"';
$stmt = $db->prepare($sql);
$stmt->bind_param(':letters', implode('|', $letters));

Now I get the error

"Warning: mysqli_stmt::bind_param(): Number of elements in type definition string doesn't match number of bind variables"

Interestingly, I note I'm using bind_param() but the PHP docs say bindParam(). For me, the latter is an undefined method.

edited May 23 '17 at 12:28

Community

asked Apr 06 '14 at 17:49

Mitya

33,629
9
60
107

can you tell me what this regex expression for? – Gaurav Parashar Apr 06 '14 at 17:58
Isn't `WHERE substr(name,0,1) IN (?)` better here? – vp_arth Apr 06 '14 at 17:59
re: `bind_param` vs. `bindParam` - that's because the former is [`mysqli`](http://uk1.php.net/manual/en/mysqli.quickstart.prepared-statements.php) syntax and the latter is pdo syntax, and you are using the former. 2 diff db extensions/objects – CrayonViolent Apr 06 '14 at 22:12

MySQL REGEX with prepared statement: "?" being misunderstood

0 Answers0