microsoft
diff --git a/‎mssql_python/__init__.py‎
Lines changed: 2 additions & 27 deletions b/‎mssql_python/__init__.py‎
Lines changed: 2 additions & 27 deletions
diff --git a/‎mssql_python/connection.py‎
Lines changed: 18 additions & 26 deletions b/‎mssql_python/connection.py‎
Lines changed: 18 additions & 26 deletions
diff --git a/‎mssql_python/helpers.py‎
Lines changed: 132 additions & 2 deletions b/‎mssql_python/helpers.py‎
Lines changed: 132 additions & 2 deletions
@@ -53,37 +53,17 @@
 SQL_WMETADATA = -99
 
 # Export connection attribute constants for set_attr()
-# NOTE: Some attributes are only supported when using an ODBC Driver Manager.
-# Attributes marked with [NO-OP] are not supported directly by the SQL Server ODBC driver
-# and will have no effect in this implementation.
+# Only include driver-level attributes that the SQL Server ODBC driver can handle directly
 
+# Core driver-level attributes
 SQL_ATTR_ACCESS_MODE = ConstantsDDBC.SQL_ATTR_ACCESS_MODE.value
 SQL_ATTR_AUTOCOMMIT = ConstantsDDBC.SQL_ATTR_AUTOCOMMIT.value
 SQL_ATTR_CONNECTION_TIMEOUT = ConstantsDDBC.SQL_ATTR_CONNECTION_TIMEOUT.value
 SQL_ATTR_CURRENT_CATALOG = ConstantsDDBC.SQL_ATTR_CURRENT_CATALOG.value
 SQL_ATTR_LOGIN_TIMEOUT = ConstantsDDBC.SQL_ATTR_LOGIN_TIMEOUT.value
-SQL_ATTR_ODBC_CURSORS = ConstantsDDBC.SQL_ATTR_ODBC_CURSORS.value
 SQL_ATTR_PACKET_SIZE = ConstantsDDBC.SQL_ATTR_PACKET_SIZE.value
 SQL_ATTR_TXN_ISOLATION = ConstantsDDBC.SQL_ATTR_TXN_ISOLATION.value
 
-# The following attributes are [NO-OP] in this implementation (require Driver Manager):
-# SQL_ATTR_QUIET_MODE
-# SQL_ATTR_TRACE
-# SQL_ATTR_TRACEFILE
-# SQL_ATTR_TRANSLATE_LIB
-# SQL_ATTR_TRANSLATE_OPTION
-# SQL_ATTR_CONNECTION_POOLING
-# SQL_ATTR_CP_MATCH
-# SQL_ATTR_ASYNC_ENABLE
-# SQL_ATTR_ENLIST_IN_DTC
-# SQL_ATTR_ENLIST_IN_XA
-# SQL_ATTR_CONNECTION_DEAD
-# SQL_ATTR_ASYNC_DBC_FUNCTIONS_ENABLE
-# SQL_ATTR_ASYNC_DBC_EVENT
-# SQL_ATTR_SERVER_NAME
-# SQL_ATTR_RESET_CONNECTION
-# SQL_RESET_CONNECTION_YES
-
 # Transaction Isolation Level Constants
 SQL_TXN_READ_UNCOMMITTED = ConstantsDDBC.SQL_TXN_READ_UNCOMMITTED.value
 SQL_TXN_READ_COMMITTED = ConstantsDDBC.SQL_TXN_READ_COMMITTED.value
@@ -94,11 +74,6 @@
 SQL_MODE_READ_WRITE = ConstantsDDBC.SQL_MODE_READ_WRITE.value
 SQL_MODE_READ_ONLY = ConstantsDDBC.SQL_MODE_READ_ONLY.value
 
-# ODBC Cursors Constants
-SQL_CUR_USE_IF_NEEDED = ConstantsDDBC.SQL_CUR_USE_IF_NEEDED.value
-SQL_CUR_USE_ODBC = ConstantsDDBC.SQL_CUR_USE_ODBC.value
-SQL_CUR_USE_DRIVER = ConstantsDDBC.SQL_CUR_USE_DRIVER.value
-
 
 # GLOBALS
 # Read-Only
 
@@ -15,7 +15,7 @@
 import codecs
 from functools import lru_cache
 from mssql_python.cursor import Cursor
-from mssql_python.helpers import add_driver_to_connection_str, sanitize_connection_string, sanitize_user_input, log
+from mssql_python.helpers import add_driver_to_connection_str, sanitize_connection_string, log, validate_attribute_value, sanitize_user_input
 from mssql_python import ddbc_bindings
 from mssql_python.pooling import PoolingManager
 from mssql_python.exceptions import InterfaceError, ProgrammingError
@@ -534,8 +534,8 @@ def set_attr(self, attribute, value):
             attribute (int): The connection attribute to set. Should be one of the
                            SQL_ATTR_* constants (e.g., SQL_ATTR_AUTOCOMMIT,
                            SQL_ATTR_TXN_ISOLATION).
-            value: The value to set for the attribute. Can be an integer or bytes/bytearray
-                  depending on the attribute type.
+            value: The value to set for the attribute. Can be an integer, string, 
+                   bytes, or bytearray depending on the attribute type.
 
         Raises:
             InterfaceError: If the connection is closed or attribute is invalid.
@@ -548,35 +548,27 @@ def set_attr(self, attribute, value):
         if self._closed:
             raise InterfaceError("Cannot set attribute on closed connection", "Connection is closed")
 
-        # Validate attribute type and range
-        if not isinstance(attribute, int) or attribute < 0:
-            raise ProgrammingError("Connection attribute must be a non-negative integer", f"Invalid attribute: {attribute}")
-
-        # Validate value type - must be integer, bytes, bytearray, or string
-        if not isinstance(value, (int, bytes, bytearray, str)):
-            raise ProgrammingError("Attribute value must be an integer, bytes, bytearray, or string", 
-                                  f"Invalid value type: {type(value)}")
-
-        # For integer values
-        if isinstance(value, int):
-            if value < 0:
-                raise ProgrammingError(f"Attribute value must be non-negative", f"Invalid value: {value}")
-
-        # Sanitize user input for security
-        try:
-            sanitized_input = sanitize_user_input(str(attribute))
-            log('debug', f"Setting connection attribute: {sanitized_input}")
-        except Exception:
-            # If sanitization fails, log without user input
-            log('debug', "Setting connection attribute")
+        # Use the integrated validation helper function
+        is_valid, error_message, sanitized_attr, sanitized_val = validate_attribute_value(attribute, value)
+        
+        if not is_valid:
+            # Use the already sanitized values for logging
+            log('warning', f"Invalid attribute or value: {sanitized_attr}={sanitized_val}, {error_message}")
+            raise ProgrammingError(
+                driver_error=f"Invalid attribute or value: {error_message}",
+                ddbc_error=error_message
+            )
+        
+        # Log with sanitized values
+        log('debug', f"Setting connection attribute: {sanitized_attr}={sanitized_val}")
 
         try:
             # Call the underlying C++ method
             self._conn.set_attr(attribute, value)
-            log('info', f"Connection attribute {attribute} set successfully")
+            log('info', f"Connection attribute {sanitized_attr} set successfully")
 
         except Exception as e:
-            error_msg = f"Failed to set connection attribute {attribute}: {str(e)}"
+            error_msg = f"Failed to set connection attribute {sanitized_attr}: {str(e)}"
             log('error', error_msg)
 
             # Determine appropriate exception type based on error content
 
@@ -7,8 +7,8 @@
 from mssql_python import ddbc_bindings
 from mssql_python.exceptions import raise_exception
 from mssql_python.logging_config import get_logger
-import platform
-from pathlib import Path
+import re
+from mssql_python.constants import ConstantsDDBC
 from mssql_python.ddbc_bindings import normalize_architecture
 
 logger = get_logger()
@@ -155,6 +155,136 @@ def sanitize_user_input(user_input: str, max_length: int = 50) -> str:
     # Return placeholder if nothing remains after sanitization
     return sanitized if sanitized else "<invalid>"
 
+def validate_attribute_value(attribute, value, sanitize_logs=True, max_log_length=50):
+    """
+    Validates attribute and value pairs for connection attributes and optionally
+    sanitizes values for safe logging.
+    
+    This function performs comprehensive validation of ODBC connection attributes
+    and their values to ensure they are safe and valid before passing to the C++ layer.
+    
+    Args:
+        attribute (int): The connection attribute to validate (SQL_ATTR_*)
+        value: The value to set for the attribute (int, str, bytes, or bytearray)
+        sanitize_logs (bool): Whether to include sanitized versions for logging
+        max_log_length (int): Maximum length of sanitized output for logging
+        
+    Returns:
+        tuple: (is_valid, error_message, sanitized_attribute, sanitized_value) where:
+              - is_valid is a boolean
+              - error_message is None if valid, otherwise validation error message
+              - sanitized_attribute is attribute as a string safe for logging
+              - sanitized_value is value as a string safe for logging
+    
+    Note:
+        This validation acts as a security layer to prevent SQL injection, buffer 
+        overflows, and other attacks by validating all inputs before they reach C++ code.
+    """
+    
+    # Sanitize a value for logging
+    def _sanitize_for_logging(input_val, max_length=max_log_length):
+        if not isinstance(input_val, str):
+            try:
+                input_val = str(input_val)
+            except:
+                return "<non-string>"
+        
+        # Remove control characters and non-printable characters
+        # Allow alphanumeric, dash, underscore, and dot (common in encoding names)
+        sanitized = re.sub(r'[^\w\-\.]', '', input_val)
+        
+        # Limit length to prevent log flooding
+        if len(sanitized) > max_length:
+            sanitized = sanitized[:max_length] + "..."
+        
+        # Return placeholder if nothing remains after sanitization
+        return sanitized if sanitized else "<invalid>"
+    
+    # Create sanitized versions for logging regardless of validation result
+    sanitized_attr = _sanitize_for_logging(attribute) if sanitize_logs else str(attribute)
+    sanitized_val = _sanitize_for_logging(value) if sanitize_logs else str(value)
+    
+    # Attribute must be a non-negative integer
+    if not isinstance(attribute, int):
+        return False, f"Attribute must be an integer, got {type(attribute).__name__}", sanitized_attr, sanitized_val
+    
+    if attribute < 0:
+        return False, f"Attribute value cannot be negative: {attribute}", sanitized_attr, sanitized_val
+    
+    # Define attribute limits based on SQL specifications
+    MAX_STRING_SIZE = 8192  # 8KB maximum for string values
+    MAX_BINARY_SIZE = 32768  # 32KB maximum for binary data
+    
+    # Attribute-specific validation
+    if isinstance(value, int):
+        # General integer validation
+        if value < 0 and attribute not in [
+            # List of attributes that can accept negative values (very few)
+        ]:
+            return False, f"Integer value cannot be negative: {value}", sanitized_attr, sanitized_val
+            
+        # Attribute-specific integer validation
+        if attribute == ConstantsDDBC.SQL_ATTR_CONNECTION_TIMEOUT.value:
+            # Connection timeout has a maximum of UINT_MAX (4294967295)
+            if value > 4294967295:
+                return False, f"Connection timeout cannot exceed 4294967295: {value}", sanitized_attr, sanitized_val
+                
+        elif attribute == ConstantsDDBC.SQL_ATTR_LOGIN_TIMEOUT.value:
+            # Login timeout has a maximum of UINT_MAX (4294967295)
+            if value > 4294967295:
+                return False, f"Login timeout cannot exceed 4294967295: {value}", sanitized_attr, sanitized_val
+                
+        elif attribute == ConstantsDDBC.SQL_ATTR_AUTOCOMMIT.value:
+            # Autocommit can only be 0 or 1
+            if value not in [0, 1]:
+                return False, f"Autocommit value must be 0 or 1: {value}", sanitized_attr, sanitized_val
+                
+        elif attribute == ConstantsDDBC.SQL_ATTR_TXN_ISOLATION.value:
+            # Transaction isolation must be one of the predefined values
+            valid_isolation_levels = [
+                ConstantsDDBC.SQL_TXN_READ_UNCOMMITTED.value,
+                ConstantsDDBC.SQL_TXN_READ_COMMITTED.value, 
+                ConstantsDDBC.SQL_TXN_REPEATABLE_READ.value,
+                ConstantsDDBC.SQL_TXN_SERIALIZABLE.value
+            ]
+            if value not in valid_isolation_levels:
+                return False, f"Invalid transaction isolation level: {value}", sanitized_attr, sanitized_val
+    
+    elif isinstance(value, str):
+        # String validation
+        if len(value) > MAX_STRING_SIZE:
+            return False, f"String value too large: {len(value)} bytes (max {MAX_STRING_SIZE})", sanitized_attr, sanitized_val
+            
+        # SQL injection pattern detection for strings
+        sql_injection_patterns = [
+            '--', ';', '/*', '*/', 'UNION', 'SELECT', 'INSERT', 'UPDATE', 
+            'DELETE', 'DROP', 'EXEC', 'EXECUTE', '@@', 'CHAR(', 'CAST('
+        ]
+        
+        # Case-insensitive check for SQL injection patterns
+        value_upper = value.upper()
+        for pattern in sql_injection_patterns:
+            if pattern.upper() in value_upper:
+                return False, f"String value contains potentially unsafe SQL pattern: {pattern}", sanitized_attr, sanitized_val
+        
+    elif isinstance(value, (bytes, bytearray)):
+        # Binary data validation
+        if len(value) > MAX_BINARY_SIZE:
+            return False, f"Binary value too large: {len(value)} bytes (max {MAX_BINARY_SIZE})", sanitized_attr, sanitized_val
+            
+        # Check for suspicious binary patterns
+        # Count null bytes (could indicate manipulation)
+        null_count = value.count(0)
+        # Too many nulls might indicate padding attack
+        if null_count > len(value) // 4:  # More than 25% nulls
+            return False, "Binary data contains suspicious patterns", sanitized_attr, sanitized_val
+    
+    else:
+        return False, f"Unsupported attribute value type: {type(value).__name__}", sanitized_attr, sanitized_val
+    
+    # If we got here, all validations passed
+    return True, None, sanitized_attr, sanitized_val
+
 
 def log(level: str, message: str, *args) -> None:
     """