- **SMB 3.0**: Windows 8/Server 2012 (0x0300) - AES-128-CCM encryption
- **SMB 3.0.2**: Windows 8.1/Server 2012R2 (0x0302) - Enhanced encryption
- **SMB 3.1.1**: Windows 10/Server 2016+ (0x0311) - AES-128-GCM + Pre-Auth Integrity

**Protocol Selection:**
- Default Range: SMB1 to SMB 3.1.1
- Automatic Negotiation: Client offers all supported dialects, server selects highest common version

 */

/**
 * Provides XML-specific services for reading and writing Maven's configuration files
 * and descriptors. These services handle XML parsing, transformation, and serialization
 * while maintaining Maven's model integrity.
 *
 * @since 4.0.0
 */

    /**
     * Context flag for confidentiality (encryption) capability
     */
    public static final int CONFIDENTIALITY = 0x04;
    /**
     * Context flag for integrity (signing) capability
     */
    public static final int INTEGRITY = 0x02;

    private static final ASN1ObjectIdentifier SPNEGO_OID = new ASN1ObjectIdentifier(SpnegoConstants.SPNEGO_MECHANISM);

    private ASN1ObjectIdentifier[] mechanisms;

 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
 */
package jcifs.smb;

/**
 * Exception thrown when SMB message signature validation fails.
 * Indicates that the integrity of an SMB message could not be verified.
 *
 * @author mbechler
 *
 */
public class SMBSignatureValidationException extends SmbException {

    /**

 *   <li>Retrieving version information and ranges</li>
 *   <li>Accessing plugin artifacts and their dependencies</li>
 * </ul>
 *
 * <p>Repository validation ensures data integrity by:
 * <ul>
 *   <li>Preventing duplicate repositories that could cause confusion</li>
 *   <li>Rejecting null repository entries that would cause failures</li>

import org.mockito.Mockito;

/**
 * Tests for {@link WinError} interface constants and static arrays.
 * The interface has no instance methods, so the tests focus on
 * value correctness and array integrity.  A tiny Mockito example
 * demonstrates that the interface can be mocked if another class
 * depends on it.
 */
public class WinErrorTest {

    @Nested
    @DisplayName("Constant value checks")

 */
package jcifs.internal;

/**
 * Interface for SMB message signing and verification operations.
 * Provides cryptographic signing capabilities for SMB protocol messages to ensure
 * message integrity and authenticity using MAC (Message Authentication Code) algorithms.
 *
 * @author mbechler
 */
public interface SMBSigningDigest {

    /**
     * Performs MAC signing of the SMB. This is done as follows.

import org.junit.jupiter.api.Test;

import jcifs.CIFSException;
import jcifs.smb.PreauthIntegrityService.PreauthIntegrityContext;

/**
 * Comprehensive tests for enhanced pre-authentication integrity service.
 */
public class PreauthIntegrityServiceTest {

    private PreauthIntegrityService preauthService;
    private SecureRandom secureRandom;

    @BeforeEach
    public void setUp() {

import jcifs.internal.util.SMBUtil;
import jcifs.util.Crypto;

/**
 * SMB2/SMB3 message signing digest implementation.
 *
 * This class handles cryptographic signing of SMB2/SMB3 messages to ensure
 * message integrity and authenticity. It supports different signing algorithms
 * used in various SMB2/SMB3 dialect versions.
 *
 * @author mbechler
 */
public class Smb2SigningDigest implements SMBSigningDigest, AutoCloseable {

    }

    @Test
    @DisplayName("Should handle null preauth integrity for SMB 3.0.0")
    void testDeriveKeys_NullPreauthForSMB300() {
        // Given
        int dialect = Smb2Constants.SMB2_DIALECT_0300;

        // When - SMB 3.0.0 doesn't use preauth integrity, so null should be acceptable
        byte[] signingKey = Smb3KeyDerivation.deriveSigningKey(dialect, sessionKey, null);