verify(pipe, times(1)).ensureTreeConnected();
        verify(tree, times(2)).acquire();
    }

    @Test
    @DisplayName("isOpen and isStale reflect underlying handle validity")
    void testIsOpenAndIsStale() throws CIFSException {
        when(pipe.ensureTreeConnected()).thenReturn(tree);
        when(tree.acquire()).thenReturn(tree);
        when(tree.isSMB2()).thenReturn(true);

        assertEquals(12345, handle.getPipeType());
        assertSame(pipe, handle.getPipe());
    }

    @Test
    @DisplayName("isOpen/isStale reflect handle validity and lifecycle")
    void isOpen_isStale_transitions() throws Exception {
        SmbPipeHandleImpl handle = newHandleWithBasicStubs(0, "\\\\pipe\\\\w");
        assertFalse(handle.isOpen(), "Initially not open");

     * @return active tree handle
     * @throws CIFSException if connection fails
     *
     */
    synchronized SmbTreeHandleImpl ensureTreeConnected() throws CIFSException {
        // Optimization: Check connection validity more efficiently
        if (this.treeHandle != null && this.treeHandle.isConnected()) {
            // Connection is still valid - reuse it
            return this.treeHandle.acquire();
        }

     *
     * @param form the search form
     * @return HTML response for the index page
     */
    @Execute
    @Secured({ ROLE, ROLE + VIEW })
    public HtmlResponse index(final SearchForm form) {
        validate(form, messages -> {}, this::asDictIndexHtml);
        stopwordsPager.clear();
        return asHtml(path_AdminDictStopwords_AdminDictStopwordsJsp).renderWith(data -> {
            searchPaging(data, form);
        });

    private final AtomicLong bufferOverflowsPrevented = new AtomicLong(0);
    private final AtomicLong integerOverflowsPrevented = new AtomicLong(0);

    /**
     * Validate SMB response buffer bounds
     *
     * @param buffer the buffer to validate
     * @param expectedSize expected minimum size
     * @param maxSize maximum allowed size
     * @throws SmbException if validation fails
     */

     * @return HTML response for the duplicate host edit form
     */
    @Execute
    @Secured({ ROLE })
    public HtmlResponse edit(final EditForm form) {
        validate(form, messages -> {}, this::asListHtml);
        final String id = form.id;
        duplicateHostService.getDuplicateHost(id).ifPresent(entity -> {
            copyBeanToBean(entity, form, op -> {});

    private static final Pattern INVALID_PATH_CHARS = Pattern.compile("[\\x00-\\x1f\"*:<>?|]");

    /**
     * Validates buffer size to prevent overflow
     *
     * @param size the buffer size to validate
     * @param maxSize the maximum allowed size
     * @param fieldName the field name for error reporting
     * @throws IllegalArgumentException if size is invalid
     */

     * @param form The search form.
     * @return The HTML response.
     */
    @Execute
    @Secured({ ROLE, ROLE + VIEW })
    public HtmlResponse index(final SearchForm form) {
        validate(form, messages -> {}, this::asDictIndexHtml);
        protwordsPager.clear();
        return asHtml(path_AdminDictProtwords_AdminDictProtwordsJsp).renderWith(data -> {
            searchPaging(data, form);
        });

        this.strictMode = strictMode;
        this.blacklistedPaths = new HashSet<>();
        this.whitelistedPaths = new HashSet<>();
    }

    /**
     * Validate and normalize a path
     *
     * @param path the path to validate
     * @return normalized safe path
     * @throws SmbException if path is invalid or dangerous
     */
    public String validatePath(String path) throws SmbException {

     *
     * @param form the edit form
     * @return HTML response for the edit page
     */
    @Execute
    @Secured({ ROLE })
    public HtmlResponse edit(final EditForm form) {
        validate(form, messages -> {}, this::asListHtml);
        final String id = form.id;
        keyMatchService.getKeyMatch(id).ifPresent(entity -> {
            copyBeanToBean(entity, form, op -> {});
        }).orElse(() -> {