FIX: validate numeric data for range (upper and lower bound) (#77)

gargsaumya · web-flow · commit 77c287ec4a60 · 2025-06-17T12:42:07.000+05:30
[AB#37475](https://sqlclientdrivers.visualstudio.com/c6d89619-62de-46a0-8b46-70b92a84d85e/_workitems/edit/37475) This pull request enhances the `BindParameters` function in `mssql_python/pybind/ddbc_bindings.cpp` by introducing range validation for various parameter types to ensure data integrity and prevent out-of-range errors. Below are the key changes grouped by parameter type: ### Integer Parameter Validations * **Signed 16-bit integer (`short`)**: Added range validation to ensure the value is within the limits of a signed 16-bit integer. Throws an exception if the value is out of range. * **Unsigned 16-bit integer (`unsigned short`)**: Added validation to check that the value does not exceed the maximum limit of an unsigned 16-bit integer. * **Signed 64-bit integer (`int64_t`)**: Introduced range validation to confirm the value is within the bounds of a signed 64-bit integer. * **Unsigned 64-bit integer (`uint64_t`)**: Added a check to ensure the value does not exceed the maximum limit for an unsigned 64-bit integer. ### Date Parameter Validation * **SQL Server Date Range**: Implemented validation for `year` attributes in date parameters to ensure they fall within the valid SQL Server date range (1753-9999). ### Checklist - [x] **Tests Passed** (if applicable) : All pytests passed.
diff --git a/mssql_python/pybind/ddbc_bindings.cpp b/mssql_python/pybind/ddbc_bindings.cpp
@@ -265,6 +265,11 @@ SQLRETURN BindParameters(SQLHANDLE hStmt, const py::list& params,
                 if (!py::isinstance<py::int_>(param)) {
                     ThrowStdException(MakeParamMismatchErrorStr(paramInfo.paramCType, paramIndex));
                 }
+                int value = param.cast<int>();
+                // Range validation for signed 16-bit integer
+                if (value < std::numeric_limits<short>::min() || value > std::numeric_limits<short>::max()) {
+                    ThrowStdException("Signed short integer parameter out of range at paramIndex " + std::to_string(paramIndex));
+                }
                 dataPtr =
                     static_cast<void*>(AllocateParamBuffer<int>(paramBuffers, param.cast<int>()));
                 break;
@@ -274,6 +279,10 @@ SQLRETURN BindParameters(SQLHANDLE hStmt, const py::list& params,
                 if (!py::isinstance<py::int_>(param)) {
                     ThrowStdException(MakeParamMismatchErrorStr(paramInfo.paramCType, paramIndex));
                 }
+                unsigned int value = param.cast<unsigned int>();
+                if (value > std::numeric_limits<unsigned short>::max()) {
+                    ThrowStdException("Unsigned short integer parameter out of range at paramIndex " + std::to_string(paramIndex));
+                }
                 dataPtr = static_cast<void*>(
                     AllocateParamBuffer<unsigned int>(paramBuffers, param.cast<unsigned int>()));
                 break;
@@ -284,6 +293,11 @@ SQLRETURN BindParameters(SQLHANDLE hStmt, const py::list& params,
                 if (!py::isinstance<py::int_>(param)) {
                     ThrowStdException(MakeParamMismatchErrorStr(paramInfo.paramCType, paramIndex));
                 }
+                int64_t value = param.cast<int64_t>();
+                // Range validation for signed 64-bit integer
+                if (value < std::numeric_limits<int64_t>::min() || value > std::numeric_limits<int64_t>::max()) {
+                    ThrowStdException("Signed 64-bit integer parameter out of range at paramIndex " + std::to_string(paramIndex));
+                }
                 dataPtr = static_cast<void*>(
                     AllocateParamBuffer<int64_t>(paramBuffers, param.cast<int64_t>()));
                 break;
@@ -293,6 +307,11 @@ SQLRETURN BindParameters(SQLHANDLE hStmt, const py::list& params,
                 if (!py::isinstance<py::int_>(param)) {
                     ThrowStdException(MakeParamMismatchErrorStr(paramInfo.paramCType, paramIndex));
                 }
+                uint64_t value = param.cast<uint64_t>();
+                // Range validation for unsigned 64-bit integer
+                if (value > std::numeric_limits<uint64_t>::max()) {
+                    ThrowStdException("Unsigned 64-bit integer parameter out of range at paramIndex " + std::to_string(paramIndex));
+                }
                 dataPtr = static_cast<void*>(
                     AllocateParamBuffer<uint64_t>(paramBuffers, param.cast<uint64_t>()));
                 break;
@@ -318,6 +337,10 @@ SQLRETURN BindParameters(SQLHANDLE hStmt, const py::list& params,
                 if (!py::isinstance(param, dateType)) {
                     ThrowStdException(MakeParamMismatchErrorStr(paramInfo.paramCType, paramIndex));
                 }
+                int year = param.attr("year").cast<int>();
+                if (year < 1753 || year > 9999) {
+                    ThrowStdException("Date out of range for SQL Server (1753-9999) at paramIndex " + std::to_string(paramIndex));
+                }
                 // TODO: can be moved to python by registering SQL_DATE_STRUCT in pybind
                 SQL_DATE_STRUCT* sqlDatePtr = AllocateParamBuffer<SQL_DATE_STRUCT>(paramBuffers);
                 sqlDatePtr->year = static_cast<SQLSMALLINT>(param.attr("year").cast<int>());
