$sql="SELECT [..snip..] and password='password_verify($password, $hashAndSalt)'";
^^^^^^^^^^^^^^^
You cannot embed PHP code in a string and expect PHP to execute it, nor will MySQl execute PHP code for you, since MySQL has absolutely no idea what PHP is.
Even if that php function call did magically somehow get executed, it can only ever return a boolean value, so your code would (in the magic kingdom) boil down to two possiblities:
... password = false
... password = true
4
solved password_verify won’t work [closed]