Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations bkrike on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Search Crashing 1

Status
Not open for further replies.
Trevahaha

Trevahaha

Programmer
Nov 21, 2002
129
US
I was noticing that I have search dialogs throughout a database and if someone enters single-quote mark, ' , it crashes the code. Is there a way to maintain the search ability but prevent crashing?

I think it involves split and replacing ' with \' .. but are there other things I should be aware of (other ways that user may break it)?

Trevor
 
Sort by date Sort by votes
You wouldn't replace ' with \' - that's a C or C++ convention. In Visual Basic, you replace ' with '' (That's two apostrophes, not one quote).

You get this problem when the value of the field into which the users enter data is incorporated into a text literal in an SQL statement, where the text literal is enclosed in apostrophes. One solution is to enclose the literal in quotes instead of apostrophes (either is accepted in Jet SQL), but that just switches you to having a problem if the user keys a quote character.

Doubling apostrophes within the text entered by the user is the reliable solution. I usually use a function like the following:
Code: 
    Public Function DoubleCh(Value As String, Char As String) As String
        Dim i As Integer, result As String

        result = Value
        i = 1
        Do 
            i = InStr(i, result, Char)
            If i = 0 Then Exit Do
            result = Left$(result, i) & Mid$(result, i)
            i = i + 2
        Loop
        DoubleCh = result
    End Function

Use this function when building your SQL statement. For example,
Const Apost = "'" ' An apostrophe in quotes
SQL = ... & "WHERE CustName=" & Apost & DoubleCh([field], Apost) & Apost

Rick Sprague
Want the best answers? See faq181-2886
To write a program from scratch, first create the universe. - Paraphrased from Albert Einstein
 
Upvote 0 Downvote
Thanks Rick! Great explanation... yeah got confused w/ my ole' C++ days :p Thanks for the great function.
 
Upvote 0 Downvote
ooohh.. yeah, but the second part. Let's say someone enters a " into the field... ?
 
Upvote 0 Downvote
Whoa! If you are using the apostrophes as the literal delimiters, quotes within the literal have no syntactic significance, and vice versa. So don't double the quotes.

I wasn't sure if you thought you needed to double both apostrophes and quotes.

Rick Sprague
Want the best answers? See faq181-2886
To write a program from scratch, first create the universe. - Paraphrased from Albert Einstein
 
Upvote 0 Downvote
Oh no... I don't. I was thinking that using a " in the string (if a user put that in for some reason) caused it to crash as well, but I'm wrong, it doesn't. The DoubleCH(string, "'") works great - no more crashing!

Trevor
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

tlallen
  • Locked
  • Question
Need File Code and Search Code Updated. 1
Replies
5
Views
297
zandsc1
zandsc1
Lavenderchan
  • Locked
  • Question
VBA Code to Search for Numerical Range instead of Date
Replies
6
Views
220
Lavenderchan
Lavenderchan
Moss100
  • Locked
  • Question
How to Stop ONCurrent event on form crashing when there are no records
Replies
4
Views
197
Darrylles
Darrylles
Evecuz
  • Locked
  • Question
Wildcard "*" in combobox for searching
Replies
2
Views
217
Andrzejek
Andrzejek
Darrylles
  • Locked
  • Question
MS Access Module Key-Word Search (for External Apps)
Replies
0
Views
122
Darrylles
Darrylles

Part and Inventory Search

Sponsor

Back
Top