assertFailsWith<ProtocolException> {
      clientReader.processNextFrame()
    }.also { expected ->
      assertThat(expected.message)
        .isEqualTo("Malformed close payload length of 1.")
    }
  }

  @Test fun closeCallsCallback() {
    data.write("880703e848656c6c6f".decodeHex()) // Close with code and reason
    clientReader.processNextFrame()

  fun readBitString(): BitString {
    if (bytesLeft == -1L || constructed) {
      throw ProtocolException("constructed bit strings not supported for DER")
    }
    if (bytesLeft < 1) {
      throw ProtocolException("malformed bit string")
    }
    val unusedBitCount = source.readByte().toInt() and 0xff
    val byteString = source.readByteString(bytesLeft)
    return BitString(byteString, unusedBitCount)
  }

            assertEquals("Expected structureSize = 4", exception.getMessage());
        }

        @Test
        @DisplayName("Should handle malformed buffer gracefully")
        void testMalformedBuffer() {
            // Given - buffer with random data
            byte[] buffer = new byte[10];
            for (int i = 0; i < buffer.length; i++) {

    assertFailsWith<EOFException> {
      part.body.readUtf8()
    }

    assertFailsWith<EOFException> {
      assertThat(parts.nextPart()).isNull()
    }
  }

  @Test fun `malformed headers`() {
    val multipart =
      """
      |--simple boundary
      |abcd
      |
      """.trimMargin()
        .replace("\n", "\r\n")

    val parts =
      MultipartReader(

## Changelog since v1.17.12

## Changes by Kind

### Design

- Prevent logging of docker config contents if file is malformed ([#95348](https://github.com/kubernetes/kubernetes/pull/95348), [@sfowl](https://github.com/sfowl)) [SIG Auth and Node]

### Bug or Regression

 *
 * Features:
 * - Buffer bounds checking
 * - Integer overflow prevention
 * - Size validation
 * - Protocol compliance checking
 * - Malformed response detection
 */
public class ServerResponseValidator {

    private static final Logger log = LoggerFactory.getLogger(ServerResponseValidator.class);

    // Protocol limits

     *
     * @param url the SMB URL to read from
     * @param tc
     *            context to use
     * @throws SmbException if an SMB error occurs
     * @throws MalformedURLException if the URL is malformed
     */
    @SuppressWarnings("resource")
    public SmbFileInputStream(final String url, final CIFSContext tc) throws SmbException, MalformedURLException {

    ```

 *  Fix: Don't miss cancels when sending HTTP/2 request headers.
 *  Fix: Don't miss whole operation timeouts when calls redirect.
 *  Fix: Don't leak connections if web sockets have malformed responses or if `onOpen()` throws.
 *  Fix: Don't retry when request bodies fail due to `FileNotFoundException`.
 *  Fix: Don't crash when URLs have IPv4-mapped IPv6 addresses.

	// Verify if the parent claim matches the parentUser.
	p, ok := args.Claims[parentClaim]
	if ok {
		parentInClaim, ok := p.(string)
		if !ok {
			// Reject malformed/malicious requests.
			return false
		}
		// The parent claim in the session token should be equal
		// to the parent detected in the backend
		if parentInClaim != parentUser {
			return false
		}

        assertEquals(1, notifications.size());
        assertEquals(unicodeName, notifications.get(0).getFileName());
    }

    @Test
    @DisplayName("Should handle malformed next entry offset")
    void testMalformedNextEntryOffset() throws Exception {
        // Given - notification with invalid next entry offset
        byte[] buffer = new byte[512];
        int offset = 0;