```java
// In SmbFile.java
private Smb2LeaseKey leaseKey;
private int leaseState;
private LeaseManager leaseManager;

protected void doConnect() throws IOException {
    // ... existing connection logic ...
    
    if (context.getConfig().isUseLeases() && tree.getSession().supports(SMB3_0)) {
        // Request lease when opening file
        leaseManager = tree.getSession().getLeaseManager();

        <otherArchive>http://maven.notifications.markmail.org/</otherArchive>
      </otherArchives>
    </mailingList>
  </mailingLists>
  <scm>
    <connection>scm:svn:http://svn.apache.org/repos/asf/maven/components/trunk</connection>
    <developerConnection>scm:svn:https://svn.apache.org/repos/asf/maven/components/trunk</developerConnection>
    <url>http://svn.apache.org/viewcvs.cgi/maven/components/trunk</url>

        dstIndex += this.scope.length();

        dst[dstIndex++] = (byte) 0x00;

        // now go over scope backwards converting '.' to label length

        int i = dstIndex - 2;
        final int e = i - this.scope.length();
        int c = 0;

        do {
            if (dst[i] == '.') {
                dst[i] = (byte) c;

                if (offerBasic) {
                    resp.addHeader("WWW-Authenticate", "Basic realm=\"" + realm + "\"");
                }
                resp.setHeader("Connection", "close");
                resp.setStatus(HttpServletResponse.SC_UNAUTHORIZED);
                resp.flushBuffer();
                return;
            }
        }

        try {

    private FileEntry next;
    private int ridx;

    private boolean closed = false;

    /**
     * Creates a directory entry enumeration iterator.
     *
     * @param th the SMB tree handle for the connection
     * @param parent the parent resource being enumerated
     * @param wildcard the wildcard pattern for filtering entries
     * @param filter additional resource name filter to apply

Now, the STS certificate-based authentication happens in 4 steps:

- Client sends HTTP `POST` request over a TLS connection hitting the MinIO TLS STS API.
- MinIO verifies that the client certificate is valid.
- MinIO tries to find a policy that matches the `CN` of the client certificate.

/**
 * Test class for SmbConstants interface constants
 */
@DisplayName("SmbConstants Tests")
class SmbConstantsTest extends BaseTest {

    @Test
    @DisplayName("Should define default connection constants")
    void testDefaultConstants() {
        assertEquals(445, SmbConstants.DEFAULT_PORT);
        assertEquals(10, SmbConstants.DEFAULT_MAX_MPX_COUNT);

	shardSize  int64
	hashBytes  []byte
}

func (b *streamingBitrotReader) Close() error {
	if b.rc == nil {
		return nil
	}
	if closer, ok := b.rc.(io.Closer); ok {
		// drain the body for connection reuse at network layer.
		xhttp.DrainBody(io.NopCloser(b.rc))
		return closer.Close()
	}
	return nil
}

func (b *streamingBitrotReader) ReadAt(buf []byte, offset int64) (int, error) {
	var err error

                    ' ', ' ', ' ', ' ', ' ', ' ', ' ', ' ', ' ', ' ', ' ', ' ', ' ', ' ', ' ', ' ', ' ', ' ', ' ', ' ', ' ', ' ', ' ' };

    /**
     * Array of hexadecimal digit characters used for converting binary data to hex representation.
     */
    public static final char[] HEX_DIGITS = { '0', '1', '2', '3', '4', '5', '6', '7', '8', '9', 'A', 'B', 'C', 'D', 'E', 'F' };

    /**

You should never save plaintext passwords, so, we'll use the (fake) password hashing system.

If the passwords don't match, we return the same error.

#### Password hashing { #password-hashing }

"Hashing" means: converting some content (a password in this case) into a sequence of bytes (just a string) that looks like gibberish.

Whenever you pass exactly the same content (exactly the same password) you get exactly the same gibberish.