// Verify customData part (should be truncated)
        byte[] expectedCustomData = { 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08 };
        byte[] actualCustomData = new byte[8];
        System.arraycopy(value, 8, actualCustomData, 0, 8);
        assertArrayEquals(expectedCustomData, actualCustomData);

        // Verify machineId part (should be truncated)
        byte[] expectedMachineId = new byte[32];

        });

        assertEquals("Invalid avLen for AvEOL", exception.getMessage(), "Should throw exception for invalid EOL");
    }

    /**
     * Test decode with truncated data
     */
    @Test
    @DisplayName("Decode should handle truncated data")
    void testDecodeTruncatedData() {
        byte[] truncatedData = new byte[3]; // Less than 4 bytes

import java.security.MessageDigest;

/**
 * This is an implementation of the HMACT64 keyed hashing algorithm.
 * HMACT64 is defined by Luke Leighton as a modified HMAC-MD5 (RFC 2104)
 * in which the key is truncated at 64 bytes (rather than being hashed
 * via MD5).
 */
public class HMACT64 extends MessageDigest implements Cloneable {

    private static final int BLOCK_LENGTH = 64;

import java.security.MessageDigest;

/**
 * This is an implementation of the HMACT64 keyed hashing algorithm.
 * HMACT64 is defined by Luke Leighton as a modified HMAC-MD5 (RFC 2104)
 * in which the key is truncated at 64 bytes (rather than being hashed
 * via MD5).
 */
class HMACT64 extends MessageDigest implements Cloneable {

    private static final int BLOCK_LENGTH = 64;

    private static final byte IPAD = (byte) 0x36;

        byte[] trunc = new byte[8];
        System.arraycopy(dgst, 0, trunc, 0, 8);

        if (log.isDebugEnabled()) {
            log.debug("Digest " + Hexdump.toHexString(dgst));
            log.debug("Truncated " + Hexdump.toHexString(trunc));
        }

        if ((this.ntlmsspFlags & NtlmFlags.NTLMSSP_NEGOTIATE_KEY_EXCH) != 0) {
            try {
                trunc = this.sealClientHandle.doFinal(trunc);

            // Challenge bytes would be at 24-31 but we're truncated

            // When & Then
            assertThrows(ArrayIndexOutOfBoundsException.class, () -> new Type2Message(truncatedMessage));
        }

        @Test
        @DisplayName("parse should handle truncated message missing target info")
        void testParse_InputLengthTooSmallForTargetInfo() {
            // Given

     * @param usage the Kerberos key usage number for this operation
     * @param baseKey the base Kerberos key for key derivation
     * @param input the data to calculate the MAC for
     * @return the calculated MAC bytes (truncated to 12 bytes)
     * @throws GeneralSecurityException if cryptographic operations fail
     */
    public static byte[] calculateMacHMACAES(int usage, KerberosKey baseKey, byte[] input) throws GeneralSecurityException {

        }
        String longText = sb.toString();
        String id = SuggestUtil.createSuggestTextId(longText);
        assertNotNull(id);
        assertEquals(445, id.length()); // Should be truncated to ID_MAX_LENGTH
    }

    @Test
    public void testParseQuery() {
        // Test normal query
        String query = "test query";
        String field = "content";

    }

    @Test
    @DisplayName("byte[] ctor: malformed DER is wrapped as PACDecodingException (IOException path)")
    void byteArrayConstructor_malformedDER_throwsWrapped() {
        // Arrange: Truncated SEQUENCE (0x30 len=2 but only 1 byte of content)
        byte[] malformed = new byte[] { 0x30, 0x02, 0x01 };

        // Act + Assert

        return this.hexCode;
    }

    /**
     * Constructs a NetBIOS name with the specified parameters.
     *
     * @param cfg the configuration to use
     * @param name the NetBIOS name (will be truncated to 15 characters if longer)
     * @param hexCode the NetBIOS name type code
     * @param scope the NetBIOS scope identifier
     */
    public Name(final Configuration cfg, String name, final int hexCode, final String scope) {