throw new CIFSException("No preauth integrity context found for session: " + sessionId);
            }
            log.warn("No preauth integrity context for session {}, skipping update", sessionId);
            return;
        }

        if (!context.isValid()) {
            throw new CIFSException("Preauth integrity context is invalid for session: " + sessionId);
        }

        try {

        init.setContextFlag(NegTokenInit.INTEGRITY, true);
        assertTrue(init.getContextFlag(NegTokenInit.INTEGRITY));
        assertEquals(NegTokenInit.CONFIDENTIALITY | NegTokenInit.INTEGRITY, init.getContextFlags());

        init.setContextFlag(NegTokenInit.CONFIDENTIALITY, false);
        assertFalse(init.getContextFlag(NegTokenInit.CONFIDENTIALITY));
        assertEquals(NegTokenInit.INTEGRITY, init.getContextFlags());
    }

        private ASN1ObjectIdentifier[] supportedMechs;
        private int flags;
        private boolean integrity;
        private boolean disposed;

        DummySSPContext(byte[] signingKey, boolean established, String nbName, ASN1ObjectIdentifier[] supportedMechs, int flags,
                boolean integrity) {
            this.signingKey = signingKey;
            this.established = established;
            this.nbName = nbName;

        transport = new SmbTransportImpl(context, address, 445, null, 0, false);
    }

    /**
     * Test that pre-auth integrity hash is properly synchronized
     */
    @Test
    @DisplayName("Pre-auth integrity hash should be thread-safe")
    void testPreauthHashThreadSafety() throws Exception {
        // Setup SMB3.1.1 negotiation

    /**
     * Context flag for confidentiality (encryption) capability
     */
    public static final int CONFIDENTIALITY = 0x04;
    /**
     * Context flag for integrity (signing) capability
     */
    public static final int INTEGRITY = 0x02;

    private static final ASN1ObjectIdentifier SPNEGO_OID = new ASN1ObjectIdentifier(SpnegoConstants.SPNEGO_MECHANISM);

    private ASN1ObjectIdentifier[] mechanisms;

import org.junit.jupiter.api.Test;

import jcifs.CIFSException;
import jcifs.smb.PreauthIntegrityService.PreauthIntegrityContext;

/**
 * Comprehensive tests for enhanced pre-authentication integrity service.
 */
public class PreauthIntegrityServiceTest {

    private PreauthIntegrityService preauthService;
    private SecureRandom secureRandom;

    @BeforeEach
    public void setUp() {

import jcifs.internal.util.SMBUtil;
import jcifs.util.Crypto;

/**
 * SMB2/SMB3 message signing digest implementation.
 *
 * This class handles cryptographic signing of SMB2/SMB3 messages to ensure
 * message integrity and authenticity. It supports different signing algorithms
 * used in various SMB2/SMB3 dialect versions.
 *
 * @author mbechler
 */
public class Smb2SigningDigest implements SMBSigningDigest, AutoCloseable {

    }

    @Test
    @DisplayName("Should handle null preauth integrity for SMB 3.0.0")
    void testDeriveKeys_NullPreauthForSMB300() {
        // Given
        int dialect = Smb2Constants.SMB2_DIALECT_0300;

        // When - SMB 3.0.0 doesn't use preauth integrity, so null should be acceptable
        byte[] signingKey = Smb3KeyDerivation.deriveSigningKey(dialect, sessionKey, null);

        assertEquals(4, response.getMessageLength());
        assertEquals(0, response.getData().length);
        assertEquals(16, bytesDecoded);
    }

    @Test
    @DisplayName("Test decode preserves data integrity")
    void testDecodeDataIntegrity() throws SMBProtocolDecodingException {
        // Prepare buffer with specific pattern
        byte[] buffer = new byte[32];
        byte[] expectedData = new byte[16];

        this.sessionKey = sessionKey;
    }

    /**
     * Returns the message integrity code (MIC) for this Type-3 message.
     *
     * @return A <code>byte[]</code> containing the message integrity code.
     */
    public byte[] getMic() {
        return this.mic;
    }

    /**
     * Sets the message integrity code (MIC) for this Type-3 message.
     *
     * @param mic