using System;
using System.IO;
using System.Text;
using System.Security.Cryptography;
 
/// <summary>
/// This class uses a symmetric key algorithm (Rijndael/AES) to encrypt and 
/// decrypt data. As long as encryption and decryption routines use the same
/// parameters to generate the keys, the keys are guaranteed to be the same.
/// The class uses static functions with duplicate code to make it easier to
/// demonstrate encryption and decryption logic. In a real-life application, 
/// this may not be the most efficient way of handling encryption, so - as
/// soon as you feel comfortable with it - you may want to redesign this class.
/// </summary>
public class RijndaelSimple
{
    /// <summary>
    /// Encrypts specified plaintext using Rijndael symmetric key algorithm
    /// and returns a base64-encoded result.
    /// </summary>
    /// <param name="plainText">
    /// Plaintext value to be encrypted.
    /// </param>
    /// <param name="passPhrase">
    /// Passphrase from which a pseudo-random password will be derived. The
    /// derived password will be used to generate the encryption key.
    /// Passphrase can be any string. In this example we assume that this
    /// passphrase is an ASCII string.
    /// </param>
    /// <param name="saltValue">
    /// Salt value used along with passphrase to generate password. Salt can
    /// be any string. In this example we assume that salt is an ASCII string.
    /// </param>
    /// <param name="hashAlgorithm">
    /// Hash algorithm used to generate password. Allowed values are: "MD5" and
    /// "SHA1". SHA1 hashes are a bit slower, but more secure than MD5 hashes.
    /// </param>
    /// <param name="passwordIterations">
    /// Number of iterations used to generate password. One or two iterations
    /// should be enough.
    /// </param>
    /// <param name="initVector">
    /// Initialization vector (or IV). This value is required to encrypt the
    /// first block of plaintext data. For RijndaelManaged class IV must be 
    /// exactly 16 ASCII characters long.
    /// </param>
    /// <param name="keySize">
    /// Size of encryption key in bits. Allowed values are: 128, 192, and 256. 
    /// Longer keys are more secure than shorter keys.
    /// </param>
    /// <returns>
    /// Encrypted value formatted as a base64-encoded string.
    /// </returns>
    public static string Encrypt
    (
        string  plainText,
        string  passPhrase,
        string  saltValue,
        string  hashAlgorithm,
        int     passwordIterations,
        string  initVector,
        int     keySize
    )
    {
        // Convert strings into byte arrays.
        // Let us assume that strings only contain ASCII codes.
        // If strings include Unicode characters, use Unicode, UTF7, or UTF8 
        // encoding.
        byte[] initVectorBytes = Encoding.ASCII.GetBytes(initVector);
        byte[] saltValueBytes = Encoding.ASCII.GetBytes(saltValue);
 
        // Convert our plaintext into a byte array.
        // Let us assume that plaintext contains UTF8-encoded characters.
        byte[] plainTextBytes = Encoding.UTF8.GetBytes(plainText);
 
        // First, we must create a password, from which the key will be derived.
        // This password will be generated from the specified passphrase and 
        // salt value. The password will be created using the specified hash 
        // algorithm. Password creation can be done in several iterations.
        PasswordDeriveBytes password = new PasswordDeriveBytes
        (
            passPhrase,
            saltValueBytes,
            hashAlgorithm,
            passwordIterations
        );
 
        // Use the password to generate pseudo-random bytes for the encryption
        // key. Specify the size of the key in bytes (instead of bits).
        byte[] keyBytes = password.GetBytes(keySize / 8);
 
        // Create uninitialized Rijndael encryption object.
        RijndaelManaged symmetricKey = new RijndaelManaged();
 
        // It is reasonable to set encryption mode to Cipher Block Chaining
        // (CBC). Use default options for other symmetric key parameters.
        symmetricKey.Mode = CipherMode.CBC;
 
        // Generate encryptor from the existing key bytes and initialization 
        // vector. Key size will be defined based on the number of the key 
        // bytes.
        ICryptoTransform encryptor = symmetricKey.CreateEncryptor
        (
            keyBytes,
            initVectorBytes
        );
 
        // Define memory stream which will be used to hold encrypted data.
        MemoryStream memoryStream = new MemoryStream();
 
        // Define cryptographic stream (always use Write mode for encryption).
        CryptoStream cryptoStream = new CryptoStream
        (
            memoryStream,
            encryptor,
            CryptoStreamMode.Write
        );
 
        // Start encrypting.
        cryptoStream.Write(plainTextBytes, 0, plainTextBytes.Length);
 
        // Finish encrypting.
        cryptoStream.FlushFinalBlock();
 
        // Convert our encrypted data from a memory stream into a byte array.
        byte[] cipherTextBytes = memoryStream.ToArray();
 
        // Close both streams.
        memoryStream.Close();
        cryptoStream.Close();
 
        // Convert encrypted data into a base64-encoded string.
        string cipherText = Convert.ToBase64String(cipherTextBytes);
 
        // Return encrypted string.
        return cipherText;
    }
 
    /// <summary>
    /// Decrypts specified ciphertext using Rijndael symmetric key algorithm.
    /// </summary>
    /// <param name="cipherText">
    /// Base64-formatted ciphertext value.
    /// </param>
    /// <param name="passPhrase">
    /// Passphrase from which a pseudo-random password will be derived. The
    /// derived password will be used to generate the encryption key.
    /// Passphrase can be any string. In this example we assume that this
    /// passphrase is an ASCII string.
    /// </param>
    /// <param name="saltValue">
    /// Salt value used along with passphrase to generate password. Salt can
    /// be any string. In this example we assume that salt is an ASCII string.
    /// </param>
    /// <param name="hashAlgorithm">
    /// Hash algorithm used to generate password. Allowed values are: "MD5" and
    /// "SHA1". SHA1 hashes are a bit slower, but more secure than MD5 hashes.
    /// </param>
    /// <param name="passwordIterations">
    /// Number of iterations used to generate password. One or two iterations
    /// should be enough.
    /// </param>
    /// <param name="initVector">
    /// Initialization vector (or IV). This value is required to encrypt the
    /// first block of plaintext data. For RijndaelManaged class IV must be
    /// exactly 16 ASCII characters long.
    /// </param>
    /// <param name="keySize">
    /// Size of encryption key in bits. Allowed values are: 128, 192, and 256.
    /// Longer keys are more secure than shorter keys.
    /// </param>
    /// <returns>
    /// Decrypted string value.
    /// </returns>
    /// <remarks>
    /// Most of the logic in this function is similar to the Encrypt
    /// logic. In order for decryption to work, all parameters of this function
    /// - except cipherText value - must match the corresponding parameters of
    /// the Encrypt function which was called to generate the
    /// ciphertext.
    /// </remarks>
    public static string Decrypt
    (
        string  cipherText,
        string  passPhrase,
        string  saltValue,
        string  hashAlgorithm,
        int     passwordIterations,
        string  initVector,
        int     keySize
    )
    {
        // Convert strings defining encryption key characteristics into byte
        // arrays. Let us assume that strings only contain ASCII codes.
        // If strings include Unicode characters, use Unicode, UTF7, or UTF8
        // encoding.
        byte[] initVectorBytes = Encoding.ASCII.GetBytes(initVector);
        byte[] saltValueBytes = Encoding.ASCII.GetBytes(saltValue);
 
        // Convert our ciphertext into a byte array.
        byte[] cipherTextBytes = Convert.FromBase64String(cipherText);
 
        // First, we must create a password, from which the key will be 
        // derived. This password will be generated from the specified 
        // passphrase and salt value. The password will be created using
        // the specified hash algorithm. Password creation can be done in
        // several iterations.
        PasswordDeriveBytes password = new PasswordDeriveBytes
        (
            passPhrase,
            saltValueBytes,
            hashAlgorithm,
            passwordIterations
        );
 
        // Use the password to generate pseudo-random bytes for the encryption
        // key. Specify the size of the key in bytes (instead of bits).
        byte[] keyBytes = password.GetBytes(keySize / 8);
 
        // Create uninitialized Rijndael encryption object.
        RijndaelManaged symmetricKey = new RijndaelManaged();
 
        // It is reasonable to set encryption mode to Cipher Block Chaining
        // (CBC). Use default options for other symmetric key parameters.
        symmetricKey.Mode = CipherMode.CBC;
 
        // Generate decryptor from the existing key bytes and initialization 
        // vector. Key size will be defined based on the number of the key 
        // bytes.
        ICryptoTransform decryptor = symmetricKey.CreateDecryptor
        (
            keyBytes,
            initVectorBytes
        );
 
        // Define memory stream which will be used to hold encrypted data.
        MemoryStream memoryStream = new MemoryStream(cipherTextBytes);
 
        // Define cryptographic stream (always use Read mode for encryption).
        CryptoStream cryptoStream = new CryptoStream
        (
            memoryStream,
            decryptor,
            CryptoStreamMode.Read
        );
 
        // Since at this point we don't know what the size of decrypted data
        // will be, allocate the buffer long enough to hold ciphertext;
        // plaintext is never longer than ciphertext.
        byte[] plainTextBytes = new byte[cipherTextBytes.Length];
 
        // Start decrypting.
        int decryptedByteCount = cryptoStream.Read
        (
            plainTextBytes,
            0,
            plainTextBytes.Length
        );
 
        // Close both streams.
        memoryStream.Close();
        cryptoStream.Close();
 
        // Convert decrypted data into a string. 
        // Let us assume that the original plaintext string was UTF8-encoded.
        string plainText = Encoding.UTF8.GetString
        (
            plainTextBytes,
            0,
            decryptedByteCount
        );
 
        // Return decrypted string.   
        return plainText;
    }
}
 
/// <summary>
/// Illustrates the use of RijndaelSimple class to encrypt and decrypt data.
/// </summary>
public class RijndaelSimpleTest
{
    /// <summary>
    /// The main entry point for the application.
    /// </summary>
    [STAThread]
    static void Main(string[] args)
    {
        string  plainText       = "1231231231";    // original plaintext
 
        string  passPhrase      = "Status#1";        // can be any string
        string  saltValue       = "Ep1kS@lt";        // can be any string
        string  hashAlgorithm   = "SHA1";             // can be "MD5"
        int     passwordIterations= 2;                // can be any number
        string  initVector      = "@1G2c7A4r5T6H7J4"; // must be 16 bytes
        int     keySize         = 256;                // can be 192 or 128
 
        Console.WriteLine(String.Format("Plaintext : {0}", plainText));
 
        string cipherText = RijndaelSimple.Encrypt
        (
            plainText,
            passPhrase,
            saltValue,
            hashAlgorithm,
            passwordIterations,
            initVector,
            keySize
        );
 
        Console.WriteLine(String.Format("Encrypted : {0}", cipherText));
 
        plainText = RijndaelSimple.Decrypt
        (
            cipherText,
            passPhrase,
            saltValue,
            hashAlgorithm,
            passwordIterations,
            initVector,
            keySize
        );
 
        Console.WriteLine(String.Format("Decrypted : {0}", plainText));
    }
}

dXNpbmcgU3lzdGVtOwp1c2luZyBTeXN0ZW0uSU87CnVzaW5nIFN5c3RlbS5UZXh0Owp1c2luZyBTeXN0ZW0uU2VjdXJpdHkuQ3J5cHRvZ3JhcGh5OwoKLy8vIDxzdW1tYXJ5PgovLy8gVGhpcyBjbGFzcyB1c2VzIGEgc3ltbWV0cmljIGtleSBhbGdvcml0aG0gKFJpam5kYWVsL0FFUykgdG8gZW5jcnlwdCBhbmQgCi8vLyBkZWNyeXB0IGRhdGEuIEFzIGxvbmcgYXMgZW5jcnlwdGlvbiBhbmQgZGVjcnlwdGlvbiByb3V0aW5lcyB1c2UgdGhlIHNhbWUKLy8vIHBhcmFtZXRlcnMgdG8gZ2VuZXJhdGUgdGhlIGtleXMsIHRoZSBrZXlzIGFyZSBndWFyYW50ZWVkIHRvIGJlIHRoZSBzYW1lLgovLy8gVGhlIGNsYXNzIHVzZXMgc3RhdGljIGZ1bmN0aW9ucyB3aXRoIGR1cGxpY2F0ZSBjb2RlIHRvIG1ha2UgaXQgZWFzaWVyIHRvCi8vLyBkZW1vbnN0cmF0ZSBlbmNyeXB0aW9uIGFuZCBkZWNyeXB0aW9uIGxvZ2ljLiBJbiBhIHJlYWwtbGlmZSBhcHBsaWNhdGlvbiwgCi8vLyB0aGlzIG1heSBub3QgYmUgdGhlIG1vc3QgZWZmaWNpZW50IHdheSBvZiBoYW5kbGluZyBlbmNyeXB0aW9uLCBzbyAtIGFzCi8vLyBzb29uIGFzIHlvdSBmZWVsIGNvbWZvcnRhYmxlIHdpdGggaXQgLSB5b3UgbWF5IHdhbnQgdG8gcmVkZXNpZ24gdGhpcyBjbGFzcy4KLy8vIDwvc3VtbWFyeT4KcHVibGljIGNsYXNzIFJpam5kYWVsU2ltcGxlCnsKICAgIC8vLyA8c3VtbWFyeT4KICAgIC8vLyBFbmNyeXB0cyBzcGVjaWZpZWQgcGxhaW50ZXh0IHVzaW5nIFJpam5kYWVsIHN5bW1ldHJpYyBrZXkgYWxnb3JpdGhtCiAgICAvLy8gYW5kIHJldHVybnMgYSBiYXNlNjQtZW5jb2RlZCByZXN1bHQuCiAgICAvLy8gPC9zdW1tYXJ5PgogICAgLy8vIDxwYXJhbSBuYW1lPSJwbGFpblRleHQiPgogICAgLy8vIFBsYWludGV4dCB2YWx1ZSB0byBiZSBlbmNyeXB0ZWQuCiAgICAvLy8gPC9wYXJhbT4KICAgIC8vLyA8cGFyYW0gbmFtZT0icGFzc1BocmFzZSI+CiAgICAvLy8gUGFzc3BocmFzZSBmcm9tIHdoaWNoIGEgcHNldWRvLXJhbmRvbSBwYXNzd29yZCB3aWxsIGJlIGRlcml2ZWQuIFRoZQogICAgLy8vIGRlcml2ZWQgcGFzc3dvcmQgd2lsbCBiZSB1c2VkIHRvIGdlbmVyYXRlIHRoZSBlbmNyeXB0aW9uIGtleS4KICAgIC8vLyBQYXNzcGhyYXNlIGNhbiBiZSBhbnkgc3RyaW5nLiBJbiB0aGlzIGV4YW1wbGUgd2UgYXNzdW1lIHRoYXQgdGhpcwogICAgLy8vIHBhc3NwaHJhc2UgaXMgYW4gQVNDSUkgc3RyaW5nLgogICAgLy8vIDwvcGFyYW0+CiAgICAvLy8gPHBhcmFtIG5hbWU9InNhbHRWYWx1ZSI+CiAgICAvLy8gU2FsdCB2YWx1ZSB1c2VkIGFsb25nIHdpdGggcGFzc3BocmFzZSB0byBnZW5lcmF0ZSBwYXNzd29yZC4gU2FsdCBjYW4KICAgIC8vLyBiZSBhbnkgc3RyaW5nLiBJbiB0aGlzIGV4YW1wbGUgd2UgYXNzdW1lIHRoYXQgc2FsdCBpcyBhbiBBU0NJSSBzdHJpbmcuCiAgICAvLy8gPC9wYXJhbT4KICAgIC8vLyA8cGFyYW0gbmFtZT0iaGFzaEFsZ29yaXRobSI+CiAgICAvLy8gSGFzaCBhbGdvcml0aG0gdXNlZCB0byBnZW5lcmF0ZSBwYXNzd29yZC4gQWxsb3dlZCB2YWx1ZXMgYXJlOiAiTUQ1IiBhbmQKICAgIC8vLyAiU0hBMSIuIFNIQTEgaGFzaGVzIGFyZSBhIGJpdCBzbG93ZXIsIGJ1dCBtb3JlIHNlY3VyZSB0aGFuIE1ENSBoYXNoZXMuCiAgICAvLy8gPC9wYXJhbT4KICAgIC8vLyA8cGFyYW0gbmFtZT0icGFzc3dvcmRJdGVyYXRpb25zIj4KICAgIC8vLyBOdW1iZXIgb2YgaXRlcmF0aW9ucyB1c2VkIHRvIGdlbmVyYXRlIHBhc3N3b3JkLiBPbmUgb3IgdHdvIGl0ZXJhdGlvbnMKICAgIC8vLyBzaG91bGQgYmUgZW5vdWdoLgogICAgLy8vIDwvcGFyYW0+CiAgICAvLy8gPHBhcmFtIG5hbWU9ImluaXRWZWN0b3IiPgogICAgLy8vIEluaXRpYWxpemF0aW9uIHZlY3RvciAob3IgSVYpLiBUaGlzIHZhbHVlIGlzIHJlcXVpcmVkIHRvIGVuY3J5cHQgdGhlCiAgICAvLy8gZmlyc3QgYmxvY2sgb2YgcGxhaW50ZXh0IGRhdGEuIEZvciBSaWpuZGFlbE1hbmFnZWQgY2xhc3MgSVYgbXVzdCBiZSAKICAgIC8vLyBleGFjdGx5IDE2IEFTQ0lJIGNoYXJhY3RlcnMgbG9uZy4KICAgIC8vLyA8L3BhcmFtPgogICAgLy8vIDxwYXJhbSBuYW1lPSJrZXlTaXplIj4KICAgIC8vLyBTaXplIG9mIGVuY3J5cHRpb24ga2V5IGluIGJpdHMuIEFsbG93ZWQgdmFsdWVzIGFyZTogMTI4LCAxOTIsIGFuZCAyNTYuIAogICAgLy8vIExvbmdlciBrZXlzIGFyZSBtb3JlIHNlY3VyZSB0aGFuIHNob3J0ZXIga2V5cy4KICAgIC8vLyA8L3BhcmFtPgogICAgLy8vIDxyZXR1cm5zPgogICAgLy8vIEVuY3J5cHRlZCB2YWx1ZSBmb3JtYXR0ZWQgYXMgYSBiYXNlNjQtZW5jb2RlZCBzdHJpbmcuCiAgICAvLy8gPC9yZXR1cm5zPgogICAgcHVibGljIHN0YXRpYyBzdHJpbmcgRW5jcnlwdAogICAgKAogICAgICAgIHN0cmluZyAgcGxhaW5UZXh0LAogICAgICAgIHN0cmluZyAgcGFzc1BocmFzZSwKICAgICAgICBzdHJpbmcgIHNhbHRWYWx1ZSwKICAgICAgICBzdHJpbmcgIGhhc2hBbGdvcml0aG0sCiAgICAgICAgaW50ICAgICBwYXNzd29yZEl0ZXJhdGlvbnMsCiAgICAgICAgc3RyaW5nICBpbml0VmVjdG9yLAogICAgICAgIGludCAgICAga2V5U2l6ZQogICAgKQogICAgewogICAgICAgIC8vIENvbnZlcnQgc3RyaW5ncyBpbnRvIGJ5dGUgYXJyYXlzLgogICAgICAgIC8vIExldCB1cyBhc3N1bWUgdGhhdCBzdHJpbmdzIG9ubHkgY29udGFpbiBBU0NJSSBjb2Rlcy4KICAgICAgICAvLyBJZiBzdHJpbmdzIGluY2x1ZGUgVW5pY29kZSBjaGFyYWN0ZXJzLCB1c2UgVW5pY29kZSwgVVRGNywgb3IgVVRGOCAKICAgICAgICAvLyBlbmNvZGluZy4KICAgICAgICBieXRlW10gaW5pdFZlY3RvckJ5dGVzID0gRW5jb2RpbmcuQVNDSUkuR2V0Qnl0ZXMoaW5pdFZlY3Rvcik7CiAgICAgICAgYnl0ZVtdIHNhbHRWYWx1ZUJ5dGVzID0gRW5jb2RpbmcuQVNDSUkuR2V0Qnl0ZXMoc2FsdFZhbHVlKTsKCiAgICAgICAgLy8gQ29udmVydCBvdXIgcGxhaW50ZXh0IGludG8gYSBieXRlIGFycmF5LgogICAgICAgIC8vIExldCB1cyBhc3N1bWUgdGhhdCBwbGFpbnRleHQgY29udGFpbnMgVVRGOC1lbmNvZGVkIGNoYXJhY3RlcnMuCiAgICAgICAgYnl0ZVtdIHBsYWluVGV4dEJ5dGVzID0gRW5jb2RpbmcuVVRGOC5HZXRCeXRlcyhwbGFpblRleHQpOwoKICAgICAgICAvLyBGaXJzdCwgd2UgbXVzdCBjcmVhdGUgYSBwYXNzd29yZCwgZnJvbSB3aGljaCB0aGUga2V5IHdpbGwgYmUgZGVyaXZlZC4KICAgICAgICAvLyBUaGlzIHBhc3N3b3JkIHdpbGwgYmUgZ2VuZXJhdGVkIGZyb20gdGhlIHNwZWNpZmllZCBwYXNzcGhyYXNlIGFuZCAKICAgICAgICAvLyBzYWx0IHZhbHVlLiBUaGUgcGFzc3dvcmQgd2lsbCBiZSBjcmVhdGVkIHVzaW5nIHRoZSBzcGVjaWZpZWQgaGFzaCAKICAgICAgICAvLyBhbGdvcml0aG0uIFBhc3N3b3JkIGNyZWF0aW9uIGNhbiBiZSBkb25lIGluIHNldmVyYWwgaXRlcmF0aW9ucy4KICAgICAgICBQYXNzd29yZERlcml2ZUJ5dGVzIHBhc3N3b3JkID0gbmV3IFBhc3N3b3JkRGVyaXZlQnl0ZXMKICAgICAgICAoCiAgICAgICAgICAgIHBhc3NQaHJhc2UsCiAgICAgICAgICAgIHNhbHRWYWx1ZUJ5dGVzLAogICAgICAgICAgICBoYXNoQWxnb3JpdGhtLAogICAgICAgICAgICBwYXNzd29yZEl0ZXJhdGlvbnMKICAgICAgICApOwoKICAgICAgICAvLyBVc2UgdGhlIHBhc3N3b3JkIHRvIGdlbmVyYXRlIHBzZXVkby1yYW5kb20gYnl0ZXMgZm9yIHRoZSBlbmNyeXB0aW9uCiAgICAgICAgLy8ga2V5LiBTcGVjaWZ5IHRoZSBzaXplIG9mIHRoZSBrZXkgaW4gYnl0ZXMgKGluc3RlYWQgb2YgYml0cykuCiAgICAgICAgYnl0ZVtdIGtleUJ5dGVzID0gcGFzc3dvcmQuR2V0Qnl0ZXMoa2V5U2l6ZSAvIDgpOwoKICAgICAgICAvLyBDcmVhdGUgdW5pbml0aWFsaXplZCBSaWpuZGFlbCBlbmNyeXB0aW9uIG9iamVjdC4KICAgICAgICBSaWpuZGFlbE1hbmFnZWQgc3ltbWV0cmljS2V5ID0gbmV3IFJpam5kYWVsTWFuYWdlZCgpOwoKICAgICAgICAvLyBJdCBpcyByZWFzb25hYmxlIHRvIHNldCBlbmNyeXB0aW9uIG1vZGUgdG8gQ2lwaGVyIEJsb2NrIENoYWluaW5nCiAgICAgICAgLy8gKENCQykuIFVzZSBkZWZhdWx0IG9wdGlvbnMgZm9yIG90aGVyIHN5bW1ldHJpYyBrZXkgcGFyYW1ldGVycy4KICAgICAgICBzeW1tZXRyaWNLZXkuTW9kZSA9IENpcGhlck1vZGUuQ0JDOwoKICAgICAgICAvLyBHZW5lcmF0ZSBlbmNyeXB0b3IgZnJvbSB0aGUgZXhpc3Rpbmcga2V5IGJ5dGVzIGFuZCBpbml0aWFsaXphdGlvbiAKICAgICAgICAvLyB2ZWN0b3IuIEtleSBzaXplIHdpbGwgYmUgZGVmaW5lZCBiYXNlZCBvbiB0aGUgbnVtYmVyIG9mIHRoZSBrZXkgCiAgICAgICAgLy8gYnl0ZXMuCiAgICAgICAgSUNyeXB0b1RyYW5zZm9ybSBlbmNyeXB0b3IgPSBzeW1tZXRyaWNLZXkuQ3JlYXRlRW5jcnlwdG9yCiAgICAgICAgKAogICAgICAgICAgICBrZXlCeXRlcywKICAgICAgICAgICAgaW5pdFZlY3RvckJ5dGVzCiAgICAgICAgKTsKCiAgICAgICAgLy8gRGVmaW5lIG1lbW9yeSBzdHJlYW0gd2hpY2ggd2lsbCBiZSB1c2VkIHRvIGhvbGQgZW5jcnlwdGVkIGRhdGEuCiAgICAgICAgTWVtb3J5U3RyZWFtIG1lbW9yeVN0cmVhbSA9IG5ldyBNZW1vcnlTdHJlYW0oKTsKCiAgICAgICAgLy8gRGVmaW5lIGNyeXB0b2dyYXBoaWMgc3RyZWFtIChhbHdheXMgdXNlIFdyaXRlIG1vZGUgZm9yIGVuY3J5cHRpb24pLgogICAgICAgIENyeXB0b1N0cmVhbSBjcnlwdG9TdHJlYW0gPSBuZXcgQ3J5cHRvU3RyZWFtCiAgICAgICAgKAogICAgICAgICAgICBtZW1vcnlTdHJlYW0sCiAgICAgICAgICAgIGVuY3J5cHRvciwKICAgICAgICAgICAgQ3J5cHRvU3RyZWFtTW9kZS5Xcml0ZQogICAgICAgICk7CgogICAgICAgIC8vIFN0YXJ0IGVuY3J5cHRpbmcuCiAgICAgICAgY3J5cHRvU3RyZWFtLldyaXRlKHBsYWluVGV4dEJ5dGVzLCAwLCBwbGFpblRleHRCeXRlcy5MZW5ndGgpOwoKICAgICAgICAvLyBGaW5pc2ggZW5jcnlwdGluZy4KICAgICAgICBjcnlwdG9TdHJlYW0uRmx1c2hGaW5hbEJsb2NrKCk7CgogICAgICAgIC8vIENvbnZlcnQgb3VyIGVuY3J5cHRlZCBkYXRhIGZyb20gYSBtZW1vcnkgc3RyZWFtIGludG8gYSBieXRlIGFycmF5LgogICAgICAgIGJ5dGVbXSBjaXBoZXJUZXh0Qnl0ZXMgPSBtZW1vcnlTdHJlYW0uVG9BcnJheSgpOwoKICAgICAgICAvLyBDbG9zZSBib3RoIHN0cmVhbXMuCiAgICAgICAgbWVtb3J5U3RyZWFtLkNsb3NlKCk7CiAgICAgICAgY3J5cHRvU3RyZWFtLkNsb3NlKCk7CgogICAgICAgIC8vIENvbnZlcnQgZW5jcnlwdGVkIGRhdGEgaW50byBhIGJhc2U2NC1lbmNvZGVkIHN0cmluZy4KICAgICAgICBzdHJpbmcgY2lwaGVyVGV4dCA9IENvbnZlcnQuVG9CYXNlNjRTdHJpbmcoY2lwaGVyVGV4dEJ5dGVzKTsKCiAgICAgICAgLy8gUmV0dXJuIGVuY3J5cHRlZCBzdHJpbmcuCiAgICAgICAgcmV0dXJuIGNpcGhlclRleHQ7CiAgICB9CgogICAgLy8vIDxzdW1tYXJ5PgogICAgLy8vIERlY3J5cHRzIHNwZWNpZmllZCBjaXBoZXJ0ZXh0IHVzaW5nIFJpam5kYWVsIHN5bW1ldHJpYyBrZXkgYWxnb3JpdGhtLgogICAgLy8vIDwvc3VtbWFyeT4KICAgIC8vLyA8cGFyYW0gbmFtZT0iY2lwaGVyVGV4dCI+CiAgICAvLy8gQmFzZTY0LWZvcm1hdHRlZCBjaXBoZXJ0ZXh0IHZhbHVlLgogICAgLy8vIDwvcGFyYW0+CiAgICAvLy8gPHBhcmFtIG5hbWU9InBhc3NQaHJhc2UiPgogICAgLy8vIFBhc3NwaHJhc2UgZnJvbSB3aGljaCBhIHBzZXVkby1yYW5kb20gcGFzc3dvcmQgd2lsbCBiZSBkZXJpdmVkLiBUaGUKICAgIC8vLyBkZXJpdmVkIHBhc3N3b3JkIHdpbGwgYmUgdXNlZCB0byBnZW5lcmF0ZSB0aGUgZW5jcnlwdGlvbiBrZXkuCiAgICAvLy8gUGFzc3BocmFzZSBjYW4gYmUgYW55IHN0cmluZy4gSW4gdGhpcyBleGFtcGxlIHdlIGFzc3VtZSB0aGF0IHRoaXMKICAgIC8vLyBwYXNzcGhyYXNlIGlzIGFuIEFTQ0lJIHN0cmluZy4KICAgIC8vLyA8L3BhcmFtPgogICAgLy8vIDxwYXJhbSBuYW1lPSJzYWx0VmFsdWUiPgogICAgLy8vIFNhbHQgdmFsdWUgdXNlZCBhbG9uZyB3aXRoIHBhc3NwaHJhc2UgdG8gZ2VuZXJhdGUgcGFzc3dvcmQuIFNhbHQgY2FuCiAgICAvLy8gYmUgYW55IHN0cmluZy4gSW4gdGhpcyBleGFtcGxlIHdlIGFzc3VtZSB0aGF0IHNhbHQgaXMgYW4gQVNDSUkgc3RyaW5nLgogICAgLy8vIDwvcGFyYW0+CiAgICAvLy8gPHBhcmFtIG5hbWU9Imhhc2hBbGdvcml0aG0iPgogICAgLy8vIEhhc2ggYWxnb3JpdGhtIHVzZWQgdG8gZ2VuZXJhdGUgcGFzc3dvcmQuIEFsbG93ZWQgdmFsdWVzIGFyZTogIk1ENSIgYW5kCiAgICAvLy8gIlNIQTEiLiBTSEExIGhhc2hlcyBhcmUgYSBiaXQgc2xvd2VyLCBidXQgbW9yZSBzZWN1cmUgdGhhbiBNRDUgaGFzaGVzLgogICAgLy8vIDwvcGFyYW0+CiAgICAvLy8gPHBhcmFtIG5hbWU9InBhc3N3b3JkSXRlcmF0aW9ucyI+CiAgICAvLy8gTnVtYmVyIG9mIGl0ZXJhdGlvbnMgdXNlZCB0byBnZW5lcmF0ZSBwYXNzd29yZC4gT25lIG9yIHR3byBpdGVyYXRpb25zCiAgICAvLy8gc2hvdWxkIGJlIGVub3VnaC4KICAgIC8vLyA8L3BhcmFtPgogICAgLy8vIDxwYXJhbSBuYW1lPSJpbml0VmVjdG9yIj4KICAgIC8vLyBJbml0aWFsaXphdGlvbiB2ZWN0b3IgKG9yIElWKS4gVGhpcyB2YWx1ZSBpcyByZXF1aXJlZCB0byBlbmNyeXB0IHRoZQogICAgLy8vIGZpcnN0IGJsb2NrIG9mIHBsYWludGV4dCBkYXRhLiBGb3IgUmlqbmRhZWxNYW5hZ2VkIGNsYXNzIElWIG11c3QgYmUKICAgIC8vLyBleGFjdGx5IDE2IEFTQ0lJIGNoYXJhY3RlcnMgbG9uZy4KICAgIC8vLyA8L3BhcmFtPgogICAgLy8vIDxwYXJhbSBuYW1lPSJrZXlTaXplIj4KICAgIC8vLyBTaXplIG9mIGVuY3J5cHRpb24ga2V5IGluIGJpdHMuIEFsbG93ZWQgdmFsdWVzIGFyZTogMTI4LCAxOTIsIGFuZCAyNTYuCiAgICAvLy8gTG9uZ2VyIGtleXMgYXJlIG1vcmUgc2VjdXJlIHRoYW4gc2hvcnRlciBrZXlzLgogICAgLy8vIDwvcGFyYW0+CiAgICAvLy8gPHJldHVybnM+CiAgICAvLy8gRGVjcnlwdGVkIHN0cmluZyB2YWx1ZS4KICAgIC8vLyA8L3JldHVybnM+CiAgICAvLy8gPHJlbWFya3M+CiAgICAvLy8gTW9zdCBvZiB0aGUgbG9naWMgaW4gdGhpcyBmdW5jdGlvbiBpcyBzaW1pbGFyIHRvIHRoZSBFbmNyeXB0CiAgICAvLy8gbG9naWMuIEluIG9yZGVyIGZvciBkZWNyeXB0aW9uIHRvIHdvcmssIGFsbCBwYXJhbWV0ZXJzIG9mIHRoaXMgZnVuY3Rpb24KICAgIC8vLyAtIGV4Y2VwdCBjaXBoZXJUZXh0IHZhbHVlIC0gbXVzdCBtYXRjaCB0aGUgY29ycmVzcG9uZGluZyBwYXJhbWV0ZXJzIG9mCiAgICAvLy8gdGhlIEVuY3J5cHQgZnVuY3Rpb24gd2hpY2ggd2FzIGNhbGxlZCB0byBnZW5lcmF0ZSB0aGUKICAgIC8vLyBjaXBoZXJ0ZXh0LgogICAgLy8vIDwvcmVtYXJrcz4KICAgIHB1YmxpYyBzdGF0aWMgc3RyaW5nIERlY3J5cHQKICAgICgKICAgICAgICBzdHJpbmcgIGNpcGhlclRleHQsCiAgICAgICAgc3RyaW5nICBwYXNzUGhyYXNlLAogICAgICAgIHN0cmluZyAgc2FsdFZhbHVlLAogICAgICAgIHN0cmluZyAgaGFzaEFsZ29yaXRobSwKICAgICAgICBpbnQgICAgIHBhc3N3b3JkSXRlcmF0aW9ucywKICAgICAgICBzdHJpbmcgIGluaXRWZWN0b3IsCiAgICAgICAgaW50ICAgICBrZXlTaXplCiAgICApCiAgICB7CiAgICAgICAgLy8gQ29udmVydCBzdHJpbmdzIGRlZmluaW5nIGVuY3J5cHRpb24ga2V5IGNoYXJhY3RlcmlzdGljcyBpbnRvIGJ5dGUKICAgICAgICAvLyBhcnJheXMuIExldCB1cyBhc3N1bWUgdGhhdCBzdHJpbmdzIG9ubHkgY29udGFpbiBBU0NJSSBjb2Rlcy4KICAgICAgICAvLyBJZiBzdHJpbmdzIGluY2x1ZGUgVW5pY29kZSBjaGFyYWN0ZXJzLCB1c2UgVW5pY29kZSwgVVRGNywgb3IgVVRGOAogICAgICAgIC8vIGVuY29kaW5nLgogICAgICAgIGJ5dGVbXSBpbml0VmVjdG9yQnl0ZXMgPSBFbmNvZGluZy5BU0NJSS5HZXRCeXRlcyhpbml0VmVjdG9yKTsKICAgICAgICBieXRlW10gc2FsdFZhbHVlQnl0ZXMgPSBFbmNvZGluZy5BU0NJSS5HZXRCeXRlcyhzYWx0VmFsdWUpOwoKICAgICAgICAvLyBDb252ZXJ0IG91ciBjaXBoZXJ0ZXh0IGludG8gYSBieXRlIGFycmF5LgogICAgICAgIGJ5dGVbXSBjaXBoZXJUZXh0Qnl0ZXMgPSBDb252ZXJ0LkZyb21CYXNlNjRTdHJpbmcoY2lwaGVyVGV4dCk7CgogICAgICAgIC8vIEZpcnN0LCB3ZSBtdXN0IGNyZWF0ZSBhIHBhc3N3b3JkLCBmcm9tIHdoaWNoIHRoZSBrZXkgd2lsbCBiZSAKICAgICAgICAvLyBkZXJpdmVkLiBUaGlzIHBhc3N3b3JkIHdpbGwgYmUgZ2VuZXJhdGVkIGZyb20gdGhlIHNwZWNpZmllZCAKICAgICAgICAvLyBwYXNzcGhyYXNlIGFuZCBzYWx0IHZhbHVlLiBUaGUgcGFzc3dvcmQgd2lsbCBiZSBjcmVhdGVkIHVzaW5nCiAgICAgICAgLy8gdGhlIHNwZWNpZmllZCBoYXNoIGFsZ29yaXRobS4gUGFzc3dvcmQgY3JlYXRpb24gY2FuIGJlIGRvbmUgaW4KICAgICAgICAvLyBzZXZlcmFsIGl0ZXJhdGlvbnMuCiAgICAgICAgUGFzc3dvcmREZXJpdmVCeXRlcyBwYXNzd29yZCA9IG5ldyBQYXNzd29yZERlcml2ZUJ5dGVzCiAgICAgICAgKAogICAgICAgICAgICBwYXNzUGhyYXNlLAogICAgICAgICAgICBzYWx0VmFsdWVCeXRlcywKICAgICAgICAgICAgaGFzaEFsZ29yaXRobSwKICAgICAgICAgICAgcGFzc3dvcmRJdGVyYXRpb25zCiAgICAgICAgKTsKCiAgICAgICAgLy8gVXNlIHRoZSBwYXNzd29yZCB0byBnZW5lcmF0ZSBwc2V1ZG8tcmFuZG9tIGJ5dGVzIGZvciB0aGUgZW5jcnlwdGlvbgogICAgICAgIC8vIGtleS4gU3BlY2lmeSB0aGUgc2l6ZSBvZiB0aGUga2V5IGluIGJ5dGVzIChpbnN0ZWFkIG9mIGJpdHMpLgogICAgICAgIGJ5dGVbXSBrZXlCeXRlcyA9IHBhc3N3b3JkLkdldEJ5dGVzKGtleVNpemUgLyA4KTsKCiAgICAgICAgLy8gQ3JlYXRlIHVuaW5pdGlhbGl6ZWQgUmlqbmRhZWwgZW5jcnlwdGlvbiBvYmplY3QuCiAgICAgICAgUmlqbmRhZWxNYW5hZ2VkIHN5bW1ldHJpY0tleSA9IG5ldyBSaWpuZGFlbE1hbmFnZWQoKTsKCiAgICAgICAgLy8gSXQgaXMgcmVhc29uYWJsZSB0byBzZXQgZW5jcnlwdGlvbiBtb2RlIHRvIENpcGhlciBCbG9jayBDaGFpbmluZwogICAgICAgIC8vIChDQkMpLiBVc2UgZGVmYXVsdCBvcHRpb25zIGZvciBvdGhlciBzeW1tZXRyaWMga2V5IHBhcmFtZXRlcnMuCiAgICAgICAgc3ltbWV0cmljS2V5Lk1vZGUgPSBDaXBoZXJNb2RlLkNCQzsKCiAgICAgICAgLy8gR2VuZXJhdGUgZGVjcnlwdG9yIGZyb20gdGhlIGV4aXN0aW5nIGtleSBieXRlcyBhbmQgaW5pdGlhbGl6YXRpb24gCiAgICAgICAgLy8gdmVjdG9yLiBLZXkgc2l6ZSB3aWxsIGJlIGRlZmluZWQgYmFzZWQgb24gdGhlIG51bWJlciBvZiB0aGUga2V5IAogICAgICAgIC8vIGJ5dGVzLgogICAgICAgIElDcnlwdG9UcmFuc2Zvcm0gZGVjcnlwdG9yID0gc3ltbWV0cmljS2V5LkNyZWF0ZURlY3J5cHRvcgogICAgICAgICgKICAgICAgICAgICAga2V5Qnl0ZXMsCiAgICAgICAgICAgIGluaXRWZWN0b3JCeXRlcwogICAgICAgICk7CgogICAgICAgIC8vIERlZmluZSBtZW1vcnkgc3RyZWFtIHdoaWNoIHdpbGwgYmUgdXNlZCB0byBob2xkIGVuY3J5cHRlZCBkYXRhLgogICAgICAgIE1lbW9yeVN0cmVhbSBtZW1vcnlTdHJlYW0gPSBuZXcgTWVtb3J5U3RyZWFtKGNpcGhlclRleHRCeXRlcyk7CgogICAgICAgIC8vIERlZmluZSBjcnlwdG9ncmFwaGljIHN0cmVhbSAoYWx3YXlzIHVzZSBSZWFkIG1vZGUgZm9yIGVuY3J5cHRpb24pLgogICAgICAgIENyeXB0b1N0cmVhbSBjcnlwdG9TdHJlYW0gPSBuZXcgQ3J5cHRvU3RyZWFtCiAgICAgICAgKAogICAgICAgICAgICBtZW1vcnlTdHJlYW0sCiAgICAgICAgICAgIGRlY3J5cHRvciwKICAgICAgICAgICAgQ3J5cHRvU3RyZWFtTW9kZS5SZWFkCiAgICAgICAgKTsKCiAgICAgICAgLy8gU2luY2UgYXQgdGhpcyBwb2ludCB3ZSBkb24ndCBrbm93IHdoYXQgdGhlIHNpemUgb2YgZGVjcnlwdGVkIGRhdGEKICAgICAgICAvLyB3aWxsIGJlLCBhbGxvY2F0ZSB0aGUgYnVmZmVyIGxvbmcgZW5vdWdoIHRvIGhvbGQgY2lwaGVydGV4dDsKICAgICAgICAvLyBwbGFpbnRleHQgaXMgbmV2ZXIgbG9uZ2VyIHRoYW4gY2lwaGVydGV4dC4KICAgICAgICBieXRlW10gcGxhaW5UZXh0Qnl0ZXMgPSBuZXcgYnl0ZVtjaXBoZXJUZXh0Qnl0ZXMuTGVuZ3RoXTsKCiAgICAgICAgLy8gU3RhcnQgZGVjcnlwdGluZy4KICAgICAgICBpbnQgZGVjcnlwdGVkQnl0ZUNvdW50ID0gY3J5cHRvU3RyZWFtLlJlYWQKICAgICAgICAoCiAgICAgICAgICAgIHBsYWluVGV4dEJ5dGVzLAogICAgICAgICAgICAwLAogICAgICAgICAgICBwbGFpblRleHRCeXRlcy5MZW5ndGgKICAgICAgICApOwoKICAgICAgICAvLyBDbG9zZSBib3RoIHN0cmVhbXMuCiAgICAgICAgbWVtb3J5U3RyZWFtLkNsb3NlKCk7CiAgICAgICAgY3J5cHRvU3RyZWFtLkNsb3NlKCk7CgogICAgICAgIC8vIENvbnZlcnQgZGVjcnlwdGVkIGRhdGEgaW50byBhIHN0cmluZy4gCiAgICAgICAgLy8gTGV0IHVzIGFzc3VtZSB0aGF0IHRoZSBvcmlnaW5hbCBwbGFpbnRleHQgc3RyaW5nIHdhcyBVVEY4LWVuY29kZWQuCiAgICAgICAgc3RyaW5nIHBsYWluVGV4dCA9IEVuY29kaW5nLlVURjguR2V0U3RyaW5nCiAgICAgICAgKAogICAgICAgICAgICBwbGFpblRleHRCeXRlcywKICAgICAgICAgICAgMCwKICAgICAgICAgICAgZGVjcnlwdGVkQnl0ZUNvdW50CiAgICAgICAgKTsKCiAgICAgICAgLy8gUmV0dXJuIGRlY3J5cHRlZCBzdHJpbmcuICAgCiAgICAgICAgcmV0dXJuIHBsYWluVGV4dDsKICAgIH0KfQoKLy8vIDxzdW1tYXJ5PgovLy8gSWxsdXN0cmF0ZXMgdGhlIHVzZSBvZiBSaWpuZGFlbFNpbXBsZSBjbGFzcyB0byBlbmNyeXB0IGFuZCBkZWNyeXB0IGRhdGEuCi8vLyA8L3N1bW1hcnk+CnB1YmxpYyBjbGFzcyBSaWpuZGFlbFNpbXBsZVRlc3QKewogICAgLy8vIDxzdW1tYXJ5PgogICAgLy8vIFRoZSBtYWluIGVudHJ5IHBvaW50IGZvciB0aGUgYXBwbGljYXRpb24uCiAgICAvLy8gPC9zdW1tYXJ5PgogICAgW1NUQVRocmVhZF0KICAgIHN0YXRpYyB2b2lkIE1haW4oc3RyaW5nW10gYXJncykKICAgIHsKICAgICAgICBzdHJpbmcgIHBsYWluVGV4dCAgICAgICA9ICIxMjMxMjMxMjMxIjsgICAgLy8gb3JpZ2luYWwgcGxhaW50ZXh0CgogICAgICAgIHN0cmluZyAgcGFzc1BocmFzZSAgICAgID0gIlN0YXR1cyMxIjsgICAgICAgIC8vIGNhbiBiZSBhbnkgc3RyaW5nCiAgICAgICAgc3RyaW5nICBzYWx0VmFsdWUgICAgICAgPSAiRXAxa1NAbHQiOyAgICAgICAgLy8gY2FuIGJlIGFueSBzdHJpbmcKICAgICAgICBzdHJpbmcgIGhhc2hBbGdvcml0aG0gICA9ICJTSEExIjsgICAgICAgICAgICAgLy8gY2FuIGJlICJNRDUiCiAgICAgICAgaW50ICAgICBwYXNzd29yZEl0ZXJhdGlvbnM9IDI7ICAgICAgICAgICAgICAgIC8vIGNhbiBiZSBhbnkgbnVtYmVyCiAgICAgICAgc3RyaW5nICBpbml0VmVjdG9yICAgICAgPSAiQDFHMmM3QTRyNVQ2SDdKNCI7IC8vIG11c3QgYmUgMTYgYnl0ZXMKICAgICAgICBpbnQgICAgIGtleVNpemUgICAgICAgICA9IDI1NjsgICAgICAgICAgICAgICAgLy8gY2FuIGJlIDE5MiBvciAxMjgKCiAgICAgICAgQ29uc29sZS5Xcml0ZUxpbmUoU3RyaW5nLkZvcm1hdCgiUGxhaW50ZXh0IDogezB9IiwgcGxhaW5UZXh0KSk7CgogICAgICAgIHN0cmluZyBjaXBoZXJUZXh0ID0gUmlqbmRhZWxTaW1wbGUuRW5jcnlwdAogICAgICAgICgKICAgICAgICAgICAgcGxhaW5UZXh0LAogICAgICAgICAgICBwYXNzUGhyYXNlLAogICAgICAgICAgICBzYWx0VmFsdWUsCiAgICAgICAgICAgIGhhc2hBbGdvcml0aG0sCiAgICAgICAgICAgIHBhc3N3b3JkSXRlcmF0aW9ucywKICAgICAgICAgICAgaW5pdFZlY3RvciwKICAgICAgICAgICAga2V5U2l6ZQogICAgICAgICk7CgogICAgICAgIENvbnNvbGUuV3JpdGVMaW5lKFN0cmluZy5Gb3JtYXQoIkVuY3J5cHRlZCA6IHswfSIsIGNpcGhlclRleHQpKTsKCiAgICAgICAgcGxhaW5UZXh0ID0gUmlqbmRhZWxTaW1wbGUuRGVjcnlwdAogICAgICAgICgKICAgICAgICAgICAgY2lwaGVyVGV4dCwKICAgICAgICAgICAgcGFzc1BocmFzZSwKICAgICAgICAgICAgc2FsdFZhbHVlLAogICAgICAgICAgICBoYXNoQWxnb3JpdGhtLAogICAgICAgICAgICBwYXNzd29yZEl0ZXJhdGlvbnMsCiAgICAgICAgICAgIGluaXRWZWN0b3IsCiAgICAgICAgICAgIGtleVNpemUKICAgICAgICApOwoKICAgICAgICBDb25zb2xlLldyaXRlTGluZShTdHJpbmcuRm9ybWF0KCJEZWNyeXB0ZWQgOiB7MH0iLCBwbGFpblRleHQpKTsKICAgIH0KfQ==