* The NTLMSSP "preamble".
     */
    protected static final byte[] NTLMSSP_SIGNATURE =
            { (byte) 'N', (byte) 'T', (byte) 'L', (byte) 'M', (byte) 'S', (byte) 'S', (byte) 'P', (byte) 0 };

    /**
     * NTLM version
     */
    protected static final byte[] NTLMSSP_VERSION = { 6, 1, 0, 0, 0, 0, 0, 15 };

    /**
     * NTLMSSP Type 1 message identifier.
     */
    protected static final int NTLMSSP_TYPE1 = 0x1;

package jcifs.smb1.smb1;

import java.io.Serializable;

import jcifs.smb1.UniAddress;
import jcifs.smb1.util.Hexdump;

/**
 * Represents an NTLM authentication challenge in SMB1 protocol.
 */
public final class NtlmChallenge implements Serializable {

    /**
     * The NTLM challenge bytes received from the server.
     */
    public byte[] challenge;
    /**
     * The domain controller address that issued the challenge.

import org.junit.jupiter.api.DisplayName;
import org.junit.jupiter.api.Nested;
import org.junit.jupiter.api.Test;

/**
 * Test suite for jcifs.https.Handler class.
 * Tests HTTPS URL stream handler functionality with NTLM authentication support.
 */
@DisplayName("HTTPS Handler Tests")
class HandlerTest {

    private Handler handler;

    @BeforeEach
    void setUp() {
        handler = new Handler(null);
    }

                if (currentAuthMethod.startsWith("NTLM")) {
                    if (currentAuthMethod.length() == 4) {
                        this.authMethod = "NTLM";
                        break;
                    }
                    if (currentAuthMethod.indexOf(' ') != 4) {
                        continue;
                    }
                    this.authMethod = "NTLM";

 * retry the exceptional operation with different credentials. Read <a href="../../../authhandler.html">jCIFS Exceptions
 * and NtlmAuthenticator</a> for complete details.
 */

/**
 * An abstract class for NTLM authentication.
 * Provides a callback mechanism for retrieving user credentials when authentication is required.
 */
public abstract class NtlmAuthenticator {

    /**
     * Default constructor.
     */

        verify(response).setStatus(HttpServletResponse.SC_UNAUTHORIZED);
        verify(response).setHeader("WWW-Authenticate", "NTLM");
        verify(response).flushBuffer();
    }

    /**
     * Test doGet with NTLM authentication for directory listing
     * This test verifies the authentication flow without actual network operations
     */
    @Test

        }
        return new NtlmChallenge(trans.server.encryptionKey, dc);
    }

    /**
     * Retrieves an NTLM challenge from a domain controller for the configured domain.
     *
     * @return the NTLM challenge from the domain controller
     * @throws SmbException if an SMB error occurs
     * @throws UnknownHostException if the domain controller cannot be resolved
     */

- **Secure Key Management**: Proper key derivation and nonce generation

### Core Features
- **Per-context configuration**: No global state, each context encapsulates configuration
- **Authentication**: NTLM, Kerberos, SPNEGO unified subsystem
- **SLF4J Logging**: Comprehensive logging throughout the codebase
- **Resource Management**: AutoCloseable patterns for file handles and connections

    /**
     * ??? According to spec this is a reserved bit and must be set to zero
     */
    int NTLMSSP_NEGOTIATE_NETWARE = 0x00000100;

    /**
     * Indicates support for NTLM authentication.
     */
    int NTLMSSP_NEGOTIATE_NTLM = 0x00000200;

    /**
     * Indicates that this is an anonymous connection
     */
    int NTLMSSP_NEGOTIATE_ANONYMOUS = 0x00000800;

    /**

 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
 */
package jcifs.ntlmssp.av;

import jcifs.internal.util.SMBUtil;

/**
 * NTLMSSP AV pair representing timestamp information in NTLM authentication.
 * Contains time-based data used to prevent replay attacks and ensure message freshness.
 *
 * @author mbechler
 */
public class AvTimestamp extends AvPair {

    /**