Incorrect syntax near ' '

Question

0.00/5 (No votes)

See more:

Hey guys,
I'm having a very long SQL statement which gets created in code depending on the filter values the user sets.
Unforuntatelly the SQL statement was not logged when the exception accured and now my only thing I can hold on is the error message from System.Data.SqlClient.SqlException: " Incorrect syntax near ' ' ".
I know this is very vague, but probably someone of you has an idea what to check on this exception.
"Error at blank"... Hehe, nice played SQL, I have no idea :P

Thanks, Markus

Posted 6-Jan-14 23:23pm

NeonMika

Add a Solution

Comments

Kornfeld Eliyahu Peter 7-Jan-14 5:24am

Show us the SQL statement...

NeonMika 7-Jan-14 5:39am

Sorry, I can't because it's business code...
The "GetQuery"-method is about 500 lines of code and mostly contains of "if the filter is set add following line to the query" like
if (Translator.CurrentLanguageID == LanguageID.DE)
{
query = query.Replace("%%Language%%", "GD_Translation.TranslatedTextDE");
}

Furthermore the problem is that I don't have the exact executed SQL (I don't know which filters were set)

I'm sorry that i cannot post code, probably someone has some basic idea what an errer "near ' '" could point to.

Kornfeld Eliyahu Peter 7-Jan-14 5:44am

Sorry but don't think someone can help. It seems like you need an expert, who can spot the problem with no or minimum help from the error, but there is nothing to spot...

Karthik_Mahalingam 7-Jan-14 5:26am

post your code as well.

Richard MacCutchan 7-Jan-14 5:34am

This is a rather pointless question. You have no code or debug information and yet you expect someone to guess what is wrong with your SQL statement. Go back to the person who forgot to put the logging in the code at this point and show them the error of their ways.

NeonMika 7-Jan-14 5:40am

Yeah I know that it's as good as nothing, but I thought probably someone knows a little better than me how to interpret MS SQL Server error messages...
You can find countless internet threads on Incorrect syntax near ',' or Incorrect syntax near '(' but I cannot find any about Incorrect syntax near ' '...
I don't want to know where exaclty the error is, but I could probably minimize the space where to search.

phil.o 7-Jan-14 5:54am

The problem is that it's impossible to tell where the error is without seeing any code.
The problem obviously occurs during the building of the SQL statement; without any knowledge of the code which generates this statement, we are just able to guess - and guessing is not an acceptable way of debugging applications.

Richard MacCutchan 7-Jan-14 6:00am

Well the server message tells you exactly what is wrong: you have a syntax error in your SQL statement. But there is no way anyone can guess what that error is without seeing the full statement.

2 solutions

Solution 2

You can refer this link for escape sequence in sql for single quotes. This is the problem you are facing.

http://stackoverflow.com/questions/1586560/how-do-i-escape-a-single-quote-in-sqlserver[^]

Posted 6-Jan-14 23:53pm

Gandalf_TheWhite

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

OriginalGriff · Accepted Answer · 2014-01-06T23:37:00

Without the SQL that generated it, we can't even begin to be definitive about a solution.
But...the error message would indicate that you are concatenating strings to form an SQL statement, which would also explain why you can't show it to us.

Don't. Never concatenate strings to build a SQL command. It leaves you wide open to accidental or deliberate SQL Injection attack which can destroy your entire database. Use Parametrized queries instead - it will improve your code reliability, readability, and safety, as well as probably curing your problem at the same time.