Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

"Invalid use of a side-effecting operator 'OPEN SYMMETRIC KEY' within a function." error while opening a symmetric key

Tags:

security

sql-server

sql-server-2008

sql-server-2012

encryption-symmetric

I am trying to open symmetric key inside two functions. Like this:

CREATE FUNCTION DECRYPTDATA 
(
    @CipherText NVARCHAR(MAX)
)
RETURNS NVARCHAR(MAX)
AS
BEGIN
    DECLARE @Result NVARCHAR(MAX)
    OPEN SYMMETRIC KEY MyKEY DECRYPTION BY CERTIFICATE MyCERT
    SELECT @Result = CONVERT(VARCHAR(MAX),DECRYPTBYKEY(@CipherText))
    RETURN @Result

END
GO
CREATE FUNCTION ENCRYPTDATA 
(
    @Text NVARCHAR(MAX)
)
RETURNS NVARCHAR(MAX)
AS
BEGIN
    DECLARE @Result NVARCHAR(MAX)
    OPEN SYMMETRIC KEY MyKEY DECRYPTION BY CERTIFICATE MyCERT
    SELECT @Result = ENCRYPTBYKEY(Key_GUID('MyKEY'),@Text)
    RETURN @Result

END
GO

But I am getting this error:

Invalid use of a side-effecting operator 'OPEN SYMMETRIC KEY' within a function.

Why this is happening?

like image 721
Aishwarya Shiva Avatar asked Dec 14 '22 13:12

Aishwarya Shiva

1 Answers

Actually, you can do this in function without opening the symmetric key using the DECRYPTBYKEYAUTOCERT function:

Decrypts by using a symmetric key that is automatically decrypted with a certificate.

The following example demonstrates this:

CREATE MASTER KEY ENCRYPTION
BY PASSWORD = 'sm_long_password@'
GO

CREATE CERTIFICATE CERT_01
WITH SUBJECT = 'CERT_01'
GO

CREATE SYMMETRIC KEY SK_01
WITH ALGORITHM = AES_256 ENCRYPTION
BY CERTIFICATE CERT_01
GO

CREATE FUNCTION [dbo].[TEST] (@encryptedValue VARBINARY(256))
RETURNS NVARCHAR(128)
AS
BEGIN;
    RETURN CONVERT(NVARCHAR(128),DECRYPTBYKEYAUTOCERT(CERT_ID('CERT_01'), NULL, @encryptedValue));
END
GO


DECLARE @encryptedValue VARBINARY(256);


OPEN SYMMETRIC KEY SK_01 DECRYPTION
BY CERTIFICATE CERT_01

SET @encryptedValue = ENCRYPTBYKEY(KEY_GUID('SK_01'), N'Stack Overflow')

CLOSE SYMMETRIC KEY SK_01;


SELECT [dbo].[TEST] (@encryptedValue);


DROP FUNCTION [dbo].[TEST];
DROP SYMMETRIC KEY SK_01;
DROP CERTIFICATE CERT_01;
DROP MASTER KEY;
like image 184
gotqn Avatar answered Dec 22 '22 00:12

gotqn
Sign in to Comment

Related questions

Return IDENT_CURRENT which was inserted
Convert nvarchar(max) to varbinary(max)
Understanding of nested SQL in C#
How do I select from a specific number of rows?
MS SQL Temporary table
How to use sql reserve keyword in column name
Default server name for Microsoft SQL Server Management Studio 2012
SQL Server: Arithmetic overflow error converting expression to data type bigint
Inserting a ROW at the end of a query with Totals for SUM columns
tsql between two dates which can be null [closed]
How to update a table using stored procedures in SQL Server
How can I actually close a sql connection
SQL Server SELECT with READONLY clause
Cannot Call function sqlsrv_connect()
SCOPE_IDENTITY, multiple inserts, carries value from previous insert if current insert doesn't insert
In SQL, how can I delete duplicate rows based on multiple columns?
tinyint in SQL Server to byte in C#
Remove auto appearing BEGIN TRAN and ROLLBACK in SQL Server 2008 R2
SQL - How to count records for each status in one line per day?
Invalid cast exception from SqlDataReader when reading bit

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!