dotnet/Documentation/compatibility/aescryptoserviceprovider-de...

## AesCryptoServiceProvider decryptor provides a reusable transform

### Scope
Minor

### Version Introduced
4.6.2

### Source Analyzer Status
Investigating

### Change Description

Starting with apps that target the .NET Framework 4.6.2, the
<xref:System.Security.Cryptography.AesCryptoServiceProvider> decryptor provides
a reusable transform. After a call to
<xref:System.Security.Cryptography.CryptoAPITransform.TransformFinalBlock(System.Byte[],System.Int32,System.Int32)?displayProperty=name>,
the transform is reinitialized and can be reused. For apps that
target earlier versions of the .NET Framework, attempting to reuse the decryptor
by calling
<xref:System.Security.Cryptography.CryptoAPITransform.TransformBlock(System.Byte[],System.Int32,System.Int32,System.Byte[],System.Int32)?displayProperty=name>
after a call to <xref:System.Security.Cryptography.CryptoAPITransform.TransformFinalBlock(System.Byte[],System.Int32,System.Int32)?displayProperty=name>
throws a <xref:System.Security.Cryptography.CryptographicException> or
produces corrupted data.

- [X] Quirked
- [ ] Build-time break

### Recommended Action
The impact of this change should be minimal, since this is the expected behavior.

Applications that depend on the previous behavior can opt out of it using it by adding the following configuration setting to the `<runtime>` section of the application's configuration file:

   ```xml
   <runtime>
      <AppContextSwitchOverrides value="Switch.System.Security.Cryptography.AesCryptoServiceProvider.DontCorrectlyResetDecryptor=true"/>
   </runtime>
   ```

In addition, applications that target a previous version of the .NET Framework but are running under a version of the .NET Framework starting with .NET Framework 4.6.2 can opt in to it by adding the following configuration setting to the `<runtime>` section of the application's configuration file:

   ```xml
   <runtime>
      <AppContextSwitchOverrides value="Switch.System.Security.Cryptography.AesCryptoServiceProvider.DontCorrectlyResetDecryptor=false"/>
   </runtime>
   ```

### Affected APIs
- `M:System.Security.Cryptography.AesCryptoServiceProvider.CreateDecryptor`

### Category
Core

<!--
    ### Original Bug
    205301
-->

<!-- breaking change id: 165 -->
Update spelling error in compat change 165 2017-09-01 01:44:10 +08:00			`## AesCryptoServiceProvider decryptor provides a reusable transform`
Add breaking change docs (#371) * Add breaking change docs * Update README 2017-04-06 04:52:19 +08:00
			`### Scope`
			`Minor`

			`### Version Introduced`
			`4.6.2`

			`### Source Analyzer Status`
			`Investigating`

			`### Change Description`
Updating change description and recommended actions to use UIDs that can be mapped in docs.microsoft.com 2017-04-21 02:19:05 +08:00
			`Starting with apps that target the .NET Framework 4.6.2, the`
			`<xref:System.Security.Cryptography.AesCryptoServiceProvider> decryptor provides`
			`a reusable transform. After a call to`
			`<xref:System.Security.Cryptography.CryptoAPITransform.TransformFinalBlock(System.Byte[],System.Int32,System.Int32)?displayProperty=name>,`
			`the transform is reinitialized and can be reused. For apps that`
			`target earlier versions of the .NET Framework, attempting to reuse the decryptor`
			`by calling`
			`<xref:System.Security.Cryptography.CryptoAPITransform.TransformBlock(System.Byte[],System.Int32,System.Int32,System.Byte[],System.Int32)?displayProperty=name>`
			`after a call to <xref:System.Security.Cryptography.CryptoAPITransform.TransformFinalBlock(System.Byte[],System.Int32,System.Int32)?displayProperty=name>`
			`throws a <xref:System.Security.Cryptography.CryptographicException> or`
			`produces corrupted data.`
Add breaking change docs (#371) * Add breaking change docs * Update README 2017-04-06 04:52:19 +08:00
Compatibility diagnostic wording fixes (#413) * Update breaking changes based on PR feedback * Split breaking change 181 into multiple categories * Fix incorrect xrefs 2017-05-31 02:57:12 +08:00			`- [X] Quirked`
Add breaking change docs (#371) * Add breaking change docs * Update README 2017-04-06 04:52:19 +08:00			`- [ ] Build-time break`

			`### Recommended Action`
			`The impact of this change should be minimal, since this is the expected behavior.`

			Applications that depend on the previous behavior can opt out of it using it by adding the following configuration setting to the `<runtime>` section of the application's configuration file:

			```xml
			`<runtime>`
			`<AppContextSwitchOverrides value="Switch.System.Security.Cryptography.AesCryptoServiceProvider.DontCorrectlyResetDecryptor=true"/>`
Updating change description and recommended actions to use UIDs that can be mapped in docs.microsoft.com 2017-04-21 02:19:05 +08:00			`</runtime>`
Add breaking change docs (#371) * Add breaking change docs * Update README 2017-04-06 04:52:19 +08:00			```

			In addition, applications that target a previous version of the .NET Framework but are running under a version of the .NET Framework starting with .NET Framework 4.6.2 can opt in to it by adding the following configuration setting to the `<runtime>` section of the application's configuration file:

			```xml
			`<runtime>`
			`<AppContextSwitchOverrides value="Switch.System.Security.Cryptography.AesCryptoServiceProvider.DontCorrectlyResetDecryptor=false"/>`
			`</runtime>`
			```

			`### Affected APIs`
			- `M:System.Security.Cryptography.AesCryptoServiceProvider.CreateDecryptor`

			`### Category`
			`Core`

			`<!--`
			`### Original Bug`
			`205301`
			`-->`

Update READMEs and compatibility docs (#379) * Update breaking change doc formatting * Update release and breaking change READMEs * Update Readme with BC Links 1 * Add BC changes for releases * Update TOC for BC README * Update 4.6.1 release * Move breaking-change to compatibility * Update compatiblity links * Update compatiblity links * Update breaking change wording * Add testing with RyuJIT doc * Update breaking change wording 2017-04-18 07:52:04 +08:00			`<!-- breaking change id: 165 -->`