*            SMB dialect version
     * @param encryptionKey
     *            key for client->server encryption
     * @param decryptionKey
     *            key for server->client decryption
     */
    public Smb2EncryptionContext(final int cipherId, final DialectVersion dialect, final byte[] encryptionKey, final byte[] decryptionKey) {
        this(cipherId, dialect, encryptionKey, decryptionKey, null, null, null);
    }

        System.arraycopy(domainBytes, 0, buffer, bufferIndex, domainBytes.length);

        response.readBytesWireFormat(buffer, 0);

        assertArrayEquals(key, response.getServerData().encryptionKey);
        assertEquals("DOMAIN", response.getServerData().oemDomainName);
    }

    @Test
    public void testReadBytesWireFormatWithUnicode() throws UnsupportedEncodingException {

    public int serverTimeZone;
    /**
     * Length of the encryption key.
     */
    public int encryptionKeyLength;
    /**
     * Encryption key for password encryption.
     */
    public byte[] encryptionKey;
    /**
     * Server's globally unique identifier.
     */
    public byte[] guid;

		return
	}
}

func parseJSONBody(ctx context.Context, body io.Reader, v any, encryptionKey string) error {
	data, err := io.ReadAll(body)
	if err != nil {
		return SRError{
			Cause: err,
			Code:  ErrSiteReplicationInvalidRequest,
		}
	}
	if encryptionKey != "" {
		data, err = madmin.DecryptData(encryptionKey, bytes.NewReader(data))
		if err != nil {
			return SRError{
				Cause: err,

            final byte[] encryptionKey = Smb3KeyDerivation.deriveEncryptionKey(dialectInt, sessionKey, preauthHash);
            final byte[] decryptionKey = Smb3KeyDerivation.deriveDecryptionKey(dialectInt, sessionKey, preauthHash);

            // Pass session key and preauthHash to enable automatic key rotation
            return new Smb2EncryptionContext(cipherId, dialect, encryptionKey, decryptionKey, sessionKey, preauthHash);

     */
    @Test
    @DisplayName("Test byte array fields (encryptionKey and guid)")
    public void testByteArrayFields() {
        // Test encryptionKey
        byte[] key = new byte[] { 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08 };
        serverData.encryptionKey = key;
        assertNotNull(serverData.encryptionKey);
        assertArrayEquals(key, serverData.encryptionKey);

        // Test with empty array

                this.server.encryptionKey = new byte[this.server.encryptionKeyLength];
                System.arraycopy(buffer, bufferIndex, this.server.encryptionKey, 0, this.server.encryptionKeyLength);
                if (log.isDebugEnabled()) {
                    log.debug(String.format("Have initial token %s",
                            Hexdump.toHexString(this.server.encryptionKey, 0, this.server.encryptionKeyLength)));

                } else if (session.transport.server.encryptedPasswords) {
                    lmHash = auth.getAnsiHash(session.transport.server.encryptionKey);
                    ntHash = auth.getUnicodeHash(session.transport.server.encryptionKey);
                    // prohibit HTTP auth attempts for the null session
                    if (lmHash.length == 0 && ntHash.length == 0) {

                    if (server.encryptedPasswords) {
                        this.lmHash = a.getAnsiHash(tc, server.encryptionKey);
                        this.ntHash = a.getUnicodeHash(tc, server.encryptionKey);
                        // prohibit HTTP auth attempts for the null session
                        if (this.lmHash.length == 0 && this.ntHash.length == 0) {

            final SmbSession ssn = trans.getSmbSession(NtlmPasswordAuthentication.DEFAULT);
            ssn.getSmbTree(LOGON_SHARE, null).treeConnect(null, null);
        }
        return new NtlmChallenge(trans.server.encryptionKey, dc);
    }

    /**
     * Retrieves an NTLM challenge from a domain controller for the configured domain.
     *
     * @return the NTLM challenge from the domain controller